RepoMirrors/osquery-defense-kit
1
0
Fork 0
mirror of https://github.com/chainguard-dev/osquery-defense-kit synced 2025-03-08 03:37:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
d1f6aede22
osquery-defense-kit/detection/persistence
History
Thomas Stromberg f22d27b1a6
fix Chrome merge conflict
2024-02-16 17:23:23 -05:00
..
fake-apple-launchd.sql Run make reformat, update max rows for incident response 2023-02-02 17:58:19 -05:00
listening-from-unusual-location.sql massive fpr: Rapid7, Elastic, everything 2024-01-26 14:07:37 -05:00
low-fd-socket.sql Run reformat 2024-02-16 17:21:00 -05:00
minimal-socket-client-linux.sql Run reformat 2024-02-16 17:21:00 -05:00
minimal-socket-client-macos.sql Add more Elastic exceptions 2024-01-08 17:55:30 -05:00
unexpected-active-systemd-units.sql massive fpr: Rapid7, Elastic, everything 2024-01-26 14:07:37 -05:00
unexpected-chrome-extensions.sql fix Chrome merge conflict 2024-02-16 17:23:23 -05:00
unexpected-cron-entries.sql fpr: snap, mutedeck, idea, Chrome exts 2024-01-18 17:15:37 -05:00
unexpected-device.sql fpr: Elastic Defend, gcloud, Warp, etc 2024-02-05 10:45:17 -05:00
unexpected-global-lock.sql Fix errors 2023-08-15 18:29:27 -04:00
unexpected-launchd-program-arguments.sql fpr: Elastic, IR, Velociraptor, BitDefender, incus, Adguard 2024-02-16 17:14:11 -05:00
unexpected-launchd-program-macos.sql massive fpr: Rapid7, Elastic, everything 2024-01-26 14:07:37 -05:00
unexpected-listening-port-linux.sql fpr: Elastic, IR, Velociraptor, BitDefender, incus, Adguard 2024-02-16 17:14:11 -05:00
unexpected-listening-port-macos.sql Run reformat 2024-02-16 17:21:00 -05:00
unexpected-lock-opener.sql fpr: Velociraptor, Hyprland, iio 2023-07-12 15:00:36 -04:00
unexpected-small-udev-entry-linux.sql fpr: kind of everything 2023-12-15 17:10:06 -05:00
unexpected-ssh-authorized-keys.sql make reformat 2023-05-08 13:20:47 -04:00
unexpected-systemctl-calls-linux.sql Add many exceptions 2023-08-15 18:13:06 -04:00
unexpected-uid0-daemon-linux.sql fpr: Elastic Defend, gcloud, Warp, etc 2024-02-05 10:45:17 -05:00
unexpected-uid0-daemon-macos.sql fpr: Elastic, IR, Velociraptor, BitDefender, incus, Adguard 2024-02-16 17:14:11 -05:00
yara-libtomcrypt-process.sql Optimize YARA process queries by deduping paths 2023-11-02 09:53:26 -04:00
yara-suspicious-strings-process-linux.sql fpr: Elastic, IR, Velociraptor, BitDefender, incus, Adguard 2024-02-16 17:14:11 -05:00