RepoMirrors/osquery-defense-kit
1
0
Fork 0
mirror of https://github.com/chainguard-dev/osquery-defense-kit synced 2025-01-07 05:49:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
710ca28ed9
osquery-defense-kit/detection
History
Thomas Stromberg 710ca28ed9
False positives: apt-daily, github runner, Slack helper, Foxit, syncthing
2023-01-19 11:52:31 -05:00
..
c2 False positives: apt-daily, github runner, Slack helper, Foxit, syncthing 2023-01-19 11:52:31 -05:00
collection False positives: apt-daily, github runner, Slack helper, Foxit, syncthing 2023-01-19 11:52:31 -05:00
credentials FP removal: Selenium, PolKit helper, gephi, docker-credential-gcloud, firejail, etc 2023-01-16 12:56:39 -05:00
discovery New detectors: unexpected netutil calls 2023-01-19 11:39:02 -05:00
evasion False positives: apt-daily, github runner, Slack helper, Foxit, syncthing 2023-01-19 11:52:31 -05:00
execution False positives: apt-daily, github runner, Slack helper, Foxit, syncthing 2023-01-19 11:52:31 -05:00
exfil FP removal: Selenium, PolKit helper, gephi, docker-credential-gcloud, firejail, etc 2023-01-16 12:56:39 -05:00
impact Filter out new false positives 2023-01-13 15:24:18 -05:00
initial_access False positives: apt-daily, github runner, Slack helper, Foxit, syncthing 2023-01-19 11:52:31 -05:00
persistence False positives: apt-daily, github runner, Slack helper, Foxit, syncthing 2023-01-19 11:52:31 -05:00
privesc False positives: homekit, setxid overflows, buildx, tmp files 2023-01-18 10:57:43 -05:00