RepoMirrors
/
osquery-defense-kit
mirror of https://github.com/chainguard-dev/osquery-defense-kit
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
osquery-defense-kit/process
History
Thomas Stromberg 89cbf9dacf
Detect unexpected uid0 programs on Linux 		2022-09-29 15:42:06 -04:00
..
empty_environ.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
exotic-cmdline.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
hidden-cwd.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
hidden-parent-pid.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
high-disk-bytes-written.sql More false-positive removal 2022-09-27 11:54:17 -04:00
high_disk_bytes_read.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
low_start_time_ctime_delta.sql Add exception for Logitech auto-updating software 2022-09-29 12:33:23 -04:00
missing-from-disk-linux.sql Add exceptions for gnome, python, pipewire 2022-09-26 18:09:00 -04:00
missing-from-disk-macos.sql Be more leniant with lack-of-info filter 2022-09-29 12:29:55 -04:00
name_path_mismatch.sql More false-positive removal 2022-09-27 11:54:17 -04:00
old-binaries-running.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
parent-missing-from-disk.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
reverse-shell-socket.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
sketchy-fetcher.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
unexpected-env-values.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
unexpected-executable-directory.sql Add teams exception 2022-09-29 12:36:26 -04:00
unexpected-executable-permissions.sql Remove numerous false positives 2022-09-26 18:27:43 -04:00
unexpected-privilege-escalation.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
unexpected-privileged-executable.sql Format everything with 'npx sql-formatter -l sqlite' 2022-09-24 11:12:23 -04:00
unexpected-shell-parents.sql More false-positive removal 2022-09-27 11:54:17 -04:00
unexpected-uid0-process-linux.sql Detect unexpected uid0 programs on Linux 2022-09-29 15:42:06 -04:00