RepoMirrors/osquery-defense-kit
1
0
Fork 0
mirror of https://github.com/chainguard-dev/osquery-defense-kit synced 2024-12-11 08:34:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
e57f03b89f
osquery-defense-kit/detection/privesc
History
Thomas Stromberg 2634e9d45b
Monday morning false-positive purge
2023-02-08 14:37:09 -05:00
..
docker-container-mounting-root.sql Add spacing (sqlformat) 2022-10-21 17:39:53 -04:00
setxid-cmdline-overflow-attempt.sql Run make reformat, update max rows for incident response 2023-02-02 17:58:19 -05:00
setxid-env-overflow-attempt.sql Run make reformat, update max rows for incident response 2023-02-02 17:58:19 -05:00
sketchy-docker-image-creator.sql Apply 'npx sql-formatter -l sqlite' 2022-10-17 19:06:17 -04:00
unexpected-elevated-children-events_linux.sql Run make reformat, update max rows for incident response 2023-02-02 17:58:19 -05:00
unexpected-elevated-children-events_macos.sql Run make reformat, update max rows for incident response 2023-02-02 17:58:19 -05:00
unexpected-privilege-escalation_linux.sql Monday morning false-positive purge 2023-02-08 14:37:09 -05:00
unexpected-privilege-escalation_macos.sql Include more process information across queries 2023-02-01 13:55:55 -05:00
unexpected-privileged-containers.sql fpr: minikube, tailscale, dex, pacman, virtualbox, steam, lsmod, busybox, etc 2023-01-23 20:33:52 -05:00
unexpected-setxid-process.sql FP removal: Selenium, PolKit helper, gephi, docker-credential-gcloud, firejail, etc 2023-01-16 12:56:39 -05:00