RepoMirrors/osquery-defense-kit
1
0
Fork 0
mirror of https://github.com/chainguard-dev/osquery-defense-kit synced 2024-12-19 04:24:30 +00:00
Code Issues Packages Projects Releases Wiki Activity
c9ae0805e2
osquery-defense-kit/detection
History
egibs c9ae0805e2
Add exceptions for Docker's kubectl, ngrok, SAFEQ, and Zed 
Signed-off-by: egibs <20933572+egibs@users.noreply.github.com>
2024-07-18 07:25:04 -05:00
..
c2 Add exceptions for Docker's kubectl, ngrok, SAFEQ, and Zed 2024-07-18 07:25:04 -05:00
collection fpr: lima, rpm-ostree, gitsign, kde, python, etc 2024-07-01 21:56:28 -04:00
credentials fpr: kas, bitnami, redis, bincapz, kolide, docker, whatsapp 2024-07-12 16:55:49 -04:00
discovery Massive false-positive reduction, particularly for uBlue 2024-06-27 09:23:52 -04:00
evasion Add google-cloud-sdk log-streaming 2024-07-12 17:01:34 -04:00
execution fpr: kas, bitnami, redis, bincapz, kolide, docker, whatsapp 2024-07-12 16:55:49 -04:00
exfil fpr: kas, bitnami, redis, bincapz, kolide, docker, whatsapp 2024-07-12 16:55:49 -04:00
impact fpr: snap, mutedeck, idea, Chrome exts 2024-01-18 17:15:37 -05:00
initial_access fpr: kas, bitnami, redis, bincapz, kolide, docker, whatsapp 2024-07-12 16:55:49 -04:00
persistence Add allows for various alerts seen 2024-07-15 2024-07-15 13:27:27 -05:00
privesc fpr: lima, rpm-ostree, gitsign, kde, python, etc 2024-07-01 21:56:28 -04:00