mirror of
https://github.com/chainguard-dev/osquery-defense-kit
synced 2025-01-05 21:09:29 +00:00
9 lines
280 B
SQL
9 lines
280 B
SQL
-- Retrieves the memory map per process in the target Linux system.
|
|
--
|
|
-- interval: 86400
|
|
-- platform: linux
|
|
-- value: Ability to compare with known good. Identify mapped regions corresponding with or containing injected code.
|
|
-- version: 1.4.5
|
|
|
|
select * from process_memory_map;
|