├── .github
    └── workflows
    │   ├── filesystem_hook.yml
    │   ├── filesystem_hook_git.yml
    │   ├── lint.yml
    │   ├── process_hook.yml
    │   ├── security_hook.yml
    │   └── syscall_hook.yml
├── .gitignore
├── .gitmodules
├── LICENSE
├── README.md
├── db
    ├── README.md
    └── create_db.sh
├── debug
    └── test_guestfs.py
├── hooks.json
├── hooks
    ├── __init__.py
    ├── filesystem.py
    ├── memory.py
    ├── process.py
    ├── security.py
    ├── static_analyzer.py
    └── syscall.py
├── oswatcher
    ├── __init__.py
    ├── __main__.py
    ├── capture.py
    ├── model.py
    └── utils
    │   ├── __init__.py
    │   └── asn1.py
├── requirements.txt
├── setup.cfg
└── setup.py


/.github/workflows/filesystem_hook.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/.github/workflows/filesystem_hook.yml


--------------------------------------------------------------------------------
/.github/workflows/filesystem_hook_git.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/.github/workflows/filesystem_hook_git.yml


--------------------------------------------------------------------------------
/.github/workflows/lint.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/.github/workflows/lint.yml


--------------------------------------------------------------------------------
/.github/workflows/process_hook.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/.github/workflows/process_hook.yml


--------------------------------------------------------------------------------
/.github/workflows/security_hook.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/.github/workflows/security_hook.yml


--------------------------------------------------------------------------------
/.github/workflows/syscall_hook.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/.github/workflows/syscall_hook.yml


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/.gitignore


--------------------------------------------------------------------------------
/.gitmodules:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/.gitmodules


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/LICENSE


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/README.md


--------------------------------------------------------------------------------
/db/README.md:
--------------------------------------------------------------------------------
1 | # oswatcher DB
2 | 
3 | run the container with `./create_db.sh`
4 | 
5 | 


--------------------------------------------------------------------------------
/db/create_db.sh:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/db/create_db.sh


--------------------------------------------------------------------------------
/debug/test_guestfs.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/debug/test_guestfs.py


--------------------------------------------------------------------------------
/hooks.json:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/hooks.json


--------------------------------------------------------------------------------
/hooks/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/hooks/filesystem.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/hooks/filesystem.py


--------------------------------------------------------------------------------
/hooks/memory.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/hooks/memory.py


--------------------------------------------------------------------------------
/hooks/process.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/hooks/process.py


--------------------------------------------------------------------------------
/hooks/security.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/hooks/security.py


--------------------------------------------------------------------------------
/hooks/static_analyzer.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/hooks/static_analyzer.py


--------------------------------------------------------------------------------
/hooks/syscall.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/hooks/syscall.py


--------------------------------------------------------------------------------
/oswatcher/__init__.py:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/oswatcher/__main__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/oswatcher/__main__.py


--------------------------------------------------------------------------------
/oswatcher/capture.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/oswatcher/capture.py


--------------------------------------------------------------------------------
/oswatcher/model.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/oswatcher/model.py


--------------------------------------------------------------------------------
/oswatcher/utils/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/oswatcher/utils/__init__.py


--------------------------------------------------------------------------------
/oswatcher/utils/asn1.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/oswatcher/utils/asn1.py


--------------------------------------------------------------------------------
/requirements.txt:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/requirements.txt


--------------------------------------------------------------------------------
/setup.cfg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/setup.cfg


--------------------------------------------------------------------------------
/setup.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Wenzel/oswatcher/HEAD/setup.py


--------------------------------------------------------------------------------