osquery-defense-kit

mirror of https://github.com/chainguard-dev/osquery-defense-kit synced 2025-01-08 06:19:28 +00:00

History

Thomas Stromberg ef5d8afdd0 False positives: homekit, setxid overflows, buildx, tmp files		2023-01-18 10:57:43 -05:00
..
docker-container-mounting-root.sql
setxid-cmdline-overflow-attempt.sql	False positives: homekit, setxid overflows, buildx, tmp files	2023-01-18 10:57:43 -05:00
setxid-env-overflow-attempt.sql	Refactor execdir, remove false positives	2022-11-07 20:36:37 -05:00
sketchy-docker-image-creator.sql
unexpected-elevated-children-events_linux.sql	Weekend false-positive flush	2023-01-14 08:19:26 -05:00
unexpected-elevated-children-events_macos.sql	Reformat and reduce false positives	2023-01-09 15:10:48 -05:00
unexpected-privilege-escalation_linux.sql	New Years cleanup: monitorix, snap-confine, steam, spotify, etc	2023-01-03 08:50:19 -05:00
unexpected-privilege-escalation_macos.sql	Pre-Thanksgiving False Positive cleanup, including Pop!OS support	2022-11-22 09:21:03 -05:00
unexpected-privileged-containers.sql	False positives: homekit, setxid overflows, buildx, tmp files	2023-01-18 10:57:43 -05:00
unexpected-setxid-process.sql	FP removal: Selenium, PolKit helper, gephi, docker-credential-gcloud, firejail, etc	2023-01-16 12:56:39 -05:00