├── .gitignore ├── .readthedocs.yaml ├── LICENSE ├── Makefile ├── README.md ├── conf.py ├── deploying-grr-clients ├── how-to-check-if-client-talks-back.md ├── index.md ├── life-of-grr-client.md ├── on-linux.md ├── on-mac-os-x.md ├── on-windows.md ├── overview.md ├── protection.md └── troubleshooting.md ├── developing-grr ├── codelabs │ ├── assets │ │ ├── client-id-on-terminal.png │ │ ├── dummy-flow-result.png │ │ ├── how-to-add-a-client-action.png │ │ ├── how-to-add-a-flow.png │ │ └── start-dummy-flow.png │ ├── how-to-add-a-client-action.md │ ├── how-to-add-a-flow.md │ └── index.md ├── contributing-docs.md ├── contributing.md ├── implementation-details │ ├── authorizating-and-auditing.md │ ├── client-path-spec.md │ ├── foreman.md │ ├── grr-messages.md │ └── index.md ├── index.md ├── running-tests.md ├── setting-up-compose-dev-env.md ├── setting-up-dev-env.md └── workstation │ ├── Dockerfile │ ├── index.md │ ├── settings.json │ └── workstation_startup_d │ ├── 011_mount_filestore.sh │ ├── 200_install-demo.sh │ └── 250_default-ide-color-theme.sh ├── faq.md ├── images ├── client-approval-dialog.png ├── client-approval-review-page.png ├── client-installers.png ├── client_view.png ├── collect_from_client.png ├── collected_from_client.png ├── create_hunt_from_flow.png ├── cron_job_viewer.png ├── distributed_fleetspeak.png ├── download.png ├── downloaded_file.png ├── fleetspeak_database.png ├── flow_details.png ├── flow_results.png ├── grr_certs_keys.png ├── grr_changes_applied.png ├── grr_claat.png ├── grr_client_details.png ├── grr_clients.png ├── grr_code_explore.png ├── grr_code_menu.png ├── grr_code_oss.png ├── grr_code_terminal.png ├── grr_codelab_client.png ├── grr_codelab_flow.png ├── grr_components.png ├── grr_components_up.png ├── grr_compose_up.png ├── grr_database.png ├── grr_debug_mode.png ├── grr_dev_ready.png ├── grr_development.png ├── grr_flow_success.png ├── grr_logo_real_sm.png ├── grr_run_flow.png ├── grr_ws_config.png ├── hexview.png ├── hostname_multiple_versions.png ├── how_to_check_if_client_talks_back.png ├── hunt_rules.png ├── icons │ ├── copy.png │ ├── editdelete.png │ ├── modify.png │ ├── new.png │ ├── pause_button.png │ ├── play_button.png │ ├── play_force_button.png │ ├── robot.png │ └── stop.png ├── manage_flows.png ├── rapid-hunting-eligible.png ├── refresh_buttons.png ├── sandbox_fleetspeak.png ├── settings_view.png ├── signed_url_impersonation.png ├── signed_url_overview.png ├── signed_url_sa_key.png ├── signed_url_workload_identity.png ├── stat_info.png ├── timeline.png └── vfs_full.png ├── index.md ├── installing-and-running-grr ├── advanced-usecases │ ├── index.md │ ├── sandbox.md │ ├── sandbox │ │ ├── config │ │ │ ├── fleetspeak-admin │ │ │ │ ├── components.textproto │ │ │ │ └── services.textproto │ │ │ ├── fleetspeak-frontend │ │ │ │ ├── components.textproto │ │ │ │ └── services.textproto │ │ │ ├── grr-client │ │ │ │ ├── client.yaml │ │ │ │ ├── communicator.txt │ │ │ │ ├── config.textproto │ │ │ │ └── textservices │ │ │ │ │ └── grr.service │ │ │ └── grr-server │ │ │ │ └── server.local.yaml │ │ ├── containers │ │ │ └── envoy │ │ │ │ └── Dockerfile │ │ ├── createConfig.sh │ │ ├── docker-compose.yaml │ │ └── envoy-https-https.yaml │ └── scaling.md ├── from-released-pip.md ├── from-source.md ├── index.md ├── overview.md ├── securing-access.md ├── troubleshooting.md ├── via-docker-compose.md └── via-docker.md ├── investigating-with-grr ├── artifacts │ ├── collecting.md │ ├── defining.md │ ├── index.md │ └── overview.md ├── automation-with-api.md ├── client-server-communication.md ├── collect-large-file.md ├── cron-jobs.md ├── flows │ ├── index.md │ ├── literal-and-regex-matching.md │ ├── specifying-file-paths.md │ ├── specifying-windows-registry-paths.md │ ├── starting.md │ ├── what-are-flows.md │ └── working-with-results.md ├── glossary.md ├── hunts │ ├── controlling-hunts.md │ ├── index.md │ ├── limits.md │ ├── rapid-hunts.md │ ├── rules.md │ ├── starting.md │ ├── troubleshooting.md │ ├── what-are-hunts.md │ └── working-with-results.md ├── index.md ├── interactive-scripting.md ├── osquery.md ├── output-plugins.md ├── overview.md ├── pushing-code.md ├── searching-for-client.md ├── security-considerations.md └── vfs │ ├── index.md │ ├── navigation.md │ ├── timelines.md │ └── virtual-file-system.md ├── maintaining-and-tuning ├── approval-based-workflow.md ├── building-custom-client-templates.md ├── configuration │ ├── contexts.md │ ├── file-organization.md │ ├── filtering.md │ ├── index.md │ └── parameter-expansion.md ├── email-configuration.md ├── grr-datastore.md ├── index.md ├── key-management │ ├── index.md │ ├── rotating.md │ └── which-keys-and-how.md ├── low-level-maintenance-with-console.md ├── monitoring.md ├── repacking-clients.md ├── scaling.md ├── screenshots │ └── add_notification_channel.png ├── troubleshooting.md └── user-management │ ├── authentication.md │ ├── index.md │ ├── limiting-access-with-routers.md │ ├── running-behind-apache.md │ └── running-behind-nginx.md ├── publications.md ├── quickstart.md ├── release-notes.md ├── requirements.txt └── what-is-grr.md /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/.gitignore -------------------------------------------------------------------------------- /.readthedocs.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/.readthedocs.yaml -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/Makefile -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/README.md -------------------------------------------------------------------------------- /conf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/conf.py -------------------------------------------------------------------------------- /deploying-grr-clients/how-to-check-if-client-talks-back.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/deploying-grr-clients/how-to-check-if-client-talks-back.md -------------------------------------------------------------------------------- /deploying-grr-clients/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/deploying-grr-clients/index.md -------------------------------------------------------------------------------- /deploying-grr-clients/life-of-grr-client.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/deploying-grr-clients/life-of-grr-client.md -------------------------------------------------------------------------------- /deploying-grr-clients/on-linux.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/deploying-grr-clients/on-linux.md -------------------------------------------------------------------------------- /deploying-grr-clients/on-mac-os-x.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/deploying-grr-clients/on-mac-os-x.md -------------------------------------------------------------------------------- /deploying-grr-clients/on-windows.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/deploying-grr-clients/on-windows.md -------------------------------------------------------------------------------- /deploying-grr-clients/overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/deploying-grr-clients/overview.md -------------------------------------------------------------------------------- /deploying-grr-clients/protection.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/deploying-grr-clients/protection.md -------------------------------------------------------------------------------- /deploying-grr-clients/troubleshooting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/deploying-grr-clients/troubleshooting.md -------------------------------------------------------------------------------- /developing-grr/codelabs/assets/client-id-on-terminal.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/codelabs/assets/client-id-on-terminal.png -------------------------------------------------------------------------------- /developing-grr/codelabs/assets/dummy-flow-result.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/codelabs/assets/dummy-flow-result.png -------------------------------------------------------------------------------- /developing-grr/codelabs/assets/how-to-add-a-client-action.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/codelabs/assets/how-to-add-a-client-action.png -------------------------------------------------------------------------------- /developing-grr/codelabs/assets/how-to-add-a-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/codelabs/assets/how-to-add-a-flow.png -------------------------------------------------------------------------------- /developing-grr/codelabs/assets/start-dummy-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/codelabs/assets/start-dummy-flow.png -------------------------------------------------------------------------------- /developing-grr/codelabs/how-to-add-a-client-action.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/codelabs/how-to-add-a-client-action.md -------------------------------------------------------------------------------- /developing-grr/codelabs/how-to-add-a-flow.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/codelabs/how-to-add-a-flow.md -------------------------------------------------------------------------------- /developing-grr/codelabs/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/codelabs/index.md -------------------------------------------------------------------------------- /developing-grr/contributing-docs.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/contributing-docs.md -------------------------------------------------------------------------------- /developing-grr/contributing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/contributing.md -------------------------------------------------------------------------------- /developing-grr/implementation-details/authorizating-and-auditing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/implementation-details/authorizating-and-auditing.md -------------------------------------------------------------------------------- /developing-grr/implementation-details/client-path-spec.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/implementation-details/client-path-spec.md -------------------------------------------------------------------------------- /developing-grr/implementation-details/foreman.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/implementation-details/foreman.md -------------------------------------------------------------------------------- /developing-grr/implementation-details/grr-messages.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/implementation-details/grr-messages.md -------------------------------------------------------------------------------- /developing-grr/implementation-details/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/implementation-details/index.md -------------------------------------------------------------------------------- /developing-grr/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/index.md -------------------------------------------------------------------------------- /developing-grr/running-tests.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/running-tests.md -------------------------------------------------------------------------------- /developing-grr/setting-up-compose-dev-env.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/setting-up-compose-dev-env.md -------------------------------------------------------------------------------- /developing-grr/setting-up-dev-env.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/setting-up-dev-env.md -------------------------------------------------------------------------------- /developing-grr/workstation/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/workstation/Dockerfile -------------------------------------------------------------------------------- /developing-grr/workstation/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/workstation/index.md -------------------------------------------------------------------------------- /developing-grr/workstation/settings.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/workstation/settings.json -------------------------------------------------------------------------------- /developing-grr/workstation/workstation_startup_d/011_mount_filestore.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/workstation/workstation_startup_d/011_mount_filestore.sh -------------------------------------------------------------------------------- /developing-grr/workstation/workstation_startup_d/200_install-demo.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/workstation/workstation_startup_d/200_install-demo.sh -------------------------------------------------------------------------------- /developing-grr/workstation/workstation_startup_d/250_default-ide-color-theme.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/developing-grr/workstation/workstation_startup_d/250_default-ide-color-theme.sh -------------------------------------------------------------------------------- /faq.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/faq.md -------------------------------------------------------------------------------- /images/client-approval-dialog.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/client-approval-dialog.png -------------------------------------------------------------------------------- /images/client-approval-review-page.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/client-approval-review-page.png -------------------------------------------------------------------------------- /images/client-installers.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/client-installers.png -------------------------------------------------------------------------------- /images/client_view.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/client_view.png -------------------------------------------------------------------------------- /images/collect_from_client.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/collect_from_client.png -------------------------------------------------------------------------------- /images/collected_from_client.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/collected_from_client.png -------------------------------------------------------------------------------- /images/create_hunt_from_flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/create_hunt_from_flow.png -------------------------------------------------------------------------------- /images/cron_job_viewer.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/cron_job_viewer.png -------------------------------------------------------------------------------- /images/distributed_fleetspeak.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/distributed_fleetspeak.png -------------------------------------------------------------------------------- /images/download.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/download.png -------------------------------------------------------------------------------- /images/downloaded_file.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/downloaded_file.png -------------------------------------------------------------------------------- /images/fleetspeak_database.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/fleetspeak_database.png -------------------------------------------------------------------------------- /images/flow_details.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/flow_details.png -------------------------------------------------------------------------------- /images/flow_results.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/flow_results.png -------------------------------------------------------------------------------- /images/grr_certs_keys.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_certs_keys.png -------------------------------------------------------------------------------- /images/grr_changes_applied.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_changes_applied.png -------------------------------------------------------------------------------- /images/grr_claat.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_claat.png -------------------------------------------------------------------------------- /images/grr_client_details.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_client_details.png -------------------------------------------------------------------------------- /images/grr_clients.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_clients.png -------------------------------------------------------------------------------- /images/grr_code_explore.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_code_explore.png -------------------------------------------------------------------------------- /images/grr_code_menu.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_code_menu.png -------------------------------------------------------------------------------- /images/grr_code_oss.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_code_oss.png -------------------------------------------------------------------------------- /images/grr_code_terminal.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_code_terminal.png -------------------------------------------------------------------------------- /images/grr_codelab_client.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_codelab_client.png -------------------------------------------------------------------------------- /images/grr_codelab_flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_codelab_flow.png -------------------------------------------------------------------------------- /images/grr_components.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_components.png -------------------------------------------------------------------------------- /images/grr_components_up.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_components_up.png -------------------------------------------------------------------------------- /images/grr_compose_up.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_compose_up.png -------------------------------------------------------------------------------- /images/grr_database.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_database.png -------------------------------------------------------------------------------- /images/grr_debug_mode.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_debug_mode.png -------------------------------------------------------------------------------- /images/grr_dev_ready.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_dev_ready.png -------------------------------------------------------------------------------- /images/grr_development.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_development.png -------------------------------------------------------------------------------- /images/grr_flow_success.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_flow_success.png -------------------------------------------------------------------------------- /images/grr_logo_real_sm.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_logo_real_sm.png -------------------------------------------------------------------------------- /images/grr_run_flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_run_flow.png -------------------------------------------------------------------------------- /images/grr_ws_config.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/grr_ws_config.png -------------------------------------------------------------------------------- /images/hexview.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/hexview.png -------------------------------------------------------------------------------- /images/hostname_multiple_versions.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/hostname_multiple_versions.png -------------------------------------------------------------------------------- /images/how_to_check_if_client_talks_back.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/how_to_check_if_client_talks_back.png -------------------------------------------------------------------------------- /images/hunt_rules.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/hunt_rules.png -------------------------------------------------------------------------------- /images/icons/copy.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/icons/copy.png -------------------------------------------------------------------------------- /images/icons/editdelete.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/icons/editdelete.png -------------------------------------------------------------------------------- /images/icons/modify.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/icons/modify.png -------------------------------------------------------------------------------- /images/icons/new.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/icons/new.png -------------------------------------------------------------------------------- /images/icons/pause_button.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/icons/pause_button.png -------------------------------------------------------------------------------- /images/icons/play_button.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/icons/play_button.png -------------------------------------------------------------------------------- /images/icons/play_force_button.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/icons/play_force_button.png -------------------------------------------------------------------------------- /images/icons/robot.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/icons/robot.png -------------------------------------------------------------------------------- /images/icons/stop.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/icons/stop.png -------------------------------------------------------------------------------- /images/manage_flows.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/manage_flows.png -------------------------------------------------------------------------------- /images/rapid-hunting-eligible.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/rapid-hunting-eligible.png -------------------------------------------------------------------------------- /images/refresh_buttons.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/refresh_buttons.png -------------------------------------------------------------------------------- /images/sandbox_fleetspeak.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/sandbox_fleetspeak.png -------------------------------------------------------------------------------- /images/settings_view.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/settings_view.png -------------------------------------------------------------------------------- /images/signed_url_impersonation.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/signed_url_impersonation.png -------------------------------------------------------------------------------- /images/signed_url_overview.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/signed_url_overview.png -------------------------------------------------------------------------------- /images/signed_url_sa_key.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/signed_url_sa_key.png -------------------------------------------------------------------------------- /images/signed_url_workload_identity.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/signed_url_workload_identity.png -------------------------------------------------------------------------------- /images/stat_info.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/stat_info.png -------------------------------------------------------------------------------- /images/timeline.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/timeline.png -------------------------------------------------------------------------------- /images/vfs_full.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/images/vfs_full.png -------------------------------------------------------------------------------- /index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/index.md -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/index.md -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox.md -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/config/fleetspeak-admin/components.textproto: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/config/fleetspeak-admin/components.textproto -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/config/fleetspeak-admin/services.textproto: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/config/fleetspeak-admin/services.textproto -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/config/fleetspeak-frontend/components.textproto: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/config/fleetspeak-frontend/components.textproto -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/config/fleetspeak-frontend/services.textproto: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/config/fleetspeak-frontend/services.textproto -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/config/grr-client/client.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/config/grr-client/client.yaml -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/config/grr-client/communicator.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/config/grr-client/config.textproto: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/config/grr-client/config.textproto -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/config/grr-client/textservices/grr.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/config/grr-client/textservices/grr.service -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/config/grr-server/server.local.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/config/grr-server/server.local.yaml -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/containers/envoy/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/containers/envoy/Dockerfile -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/createConfig.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/createConfig.sh -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/docker-compose.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/docker-compose.yaml -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/sandbox/envoy-https-https.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/sandbox/envoy-https-https.yaml -------------------------------------------------------------------------------- /installing-and-running-grr/advanced-usecases/scaling.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/advanced-usecases/scaling.md -------------------------------------------------------------------------------- /installing-and-running-grr/from-released-pip.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/from-released-pip.md -------------------------------------------------------------------------------- /installing-and-running-grr/from-source.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/from-source.md -------------------------------------------------------------------------------- /installing-and-running-grr/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/index.md -------------------------------------------------------------------------------- /installing-and-running-grr/overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/overview.md -------------------------------------------------------------------------------- /installing-and-running-grr/securing-access.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/securing-access.md -------------------------------------------------------------------------------- /installing-and-running-grr/troubleshooting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/troubleshooting.md -------------------------------------------------------------------------------- /installing-and-running-grr/via-docker-compose.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/via-docker-compose.md -------------------------------------------------------------------------------- /installing-and-running-grr/via-docker.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/installing-and-running-grr/via-docker.md -------------------------------------------------------------------------------- /investigating-with-grr/artifacts/collecting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/artifacts/collecting.md -------------------------------------------------------------------------------- /investigating-with-grr/artifacts/defining.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/artifacts/defining.md -------------------------------------------------------------------------------- /investigating-with-grr/artifacts/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/artifacts/index.md -------------------------------------------------------------------------------- /investigating-with-grr/artifacts/overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/artifacts/overview.md -------------------------------------------------------------------------------- /investigating-with-grr/automation-with-api.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/automation-with-api.md -------------------------------------------------------------------------------- /investigating-with-grr/client-server-communication.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/client-server-communication.md -------------------------------------------------------------------------------- /investigating-with-grr/collect-large-file.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/collect-large-file.md -------------------------------------------------------------------------------- /investigating-with-grr/cron-jobs.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/cron-jobs.md -------------------------------------------------------------------------------- /investigating-with-grr/flows/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/flows/index.md -------------------------------------------------------------------------------- /investigating-with-grr/flows/literal-and-regex-matching.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/flows/literal-and-regex-matching.md -------------------------------------------------------------------------------- /investigating-with-grr/flows/specifying-file-paths.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/flows/specifying-file-paths.md -------------------------------------------------------------------------------- /investigating-with-grr/flows/specifying-windows-registry-paths.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/flows/specifying-windows-registry-paths.md -------------------------------------------------------------------------------- /investigating-with-grr/flows/starting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/flows/starting.md -------------------------------------------------------------------------------- /investigating-with-grr/flows/what-are-flows.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/flows/what-are-flows.md -------------------------------------------------------------------------------- /investigating-with-grr/flows/working-with-results.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/flows/working-with-results.md -------------------------------------------------------------------------------- /investigating-with-grr/glossary.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/glossary.md -------------------------------------------------------------------------------- /investigating-with-grr/hunts/controlling-hunts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/hunts/controlling-hunts.md -------------------------------------------------------------------------------- /investigating-with-grr/hunts/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/hunts/index.md -------------------------------------------------------------------------------- /investigating-with-grr/hunts/limits.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/hunts/limits.md -------------------------------------------------------------------------------- /investigating-with-grr/hunts/rapid-hunts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/hunts/rapid-hunts.md -------------------------------------------------------------------------------- /investigating-with-grr/hunts/rules.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/hunts/rules.md -------------------------------------------------------------------------------- /investigating-with-grr/hunts/starting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/hunts/starting.md -------------------------------------------------------------------------------- /investigating-with-grr/hunts/troubleshooting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/hunts/troubleshooting.md -------------------------------------------------------------------------------- /investigating-with-grr/hunts/what-are-hunts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/hunts/what-are-hunts.md -------------------------------------------------------------------------------- /investigating-with-grr/hunts/working-with-results.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/hunts/working-with-results.md -------------------------------------------------------------------------------- /investigating-with-grr/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/index.md -------------------------------------------------------------------------------- /investigating-with-grr/interactive-scripting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/interactive-scripting.md -------------------------------------------------------------------------------- /investigating-with-grr/osquery.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/osquery.md -------------------------------------------------------------------------------- /investigating-with-grr/output-plugins.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/output-plugins.md -------------------------------------------------------------------------------- /investigating-with-grr/overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/overview.md -------------------------------------------------------------------------------- /investigating-with-grr/pushing-code.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/pushing-code.md -------------------------------------------------------------------------------- /investigating-with-grr/searching-for-client.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/searching-for-client.md -------------------------------------------------------------------------------- /investigating-with-grr/security-considerations.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/security-considerations.md -------------------------------------------------------------------------------- /investigating-with-grr/vfs/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/vfs/index.md -------------------------------------------------------------------------------- /investigating-with-grr/vfs/navigation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/vfs/navigation.md -------------------------------------------------------------------------------- /investigating-with-grr/vfs/timelines.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/vfs/timelines.md -------------------------------------------------------------------------------- /investigating-with-grr/vfs/virtual-file-system.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/investigating-with-grr/vfs/virtual-file-system.md -------------------------------------------------------------------------------- /maintaining-and-tuning/approval-based-workflow.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/approval-based-workflow.md -------------------------------------------------------------------------------- /maintaining-and-tuning/building-custom-client-templates.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/building-custom-client-templates.md -------------------------------------------------------------------------------- /maintaining-and-tuning/configuration/contexts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/configuration/contexts.md -------------------------------------------------------------------------------- /maintaining-and-tuning/configuration/file-organization.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/configuration/file-organization.md -------------------------------------------------------------------------------- /maintaining-and-tuning/configuration/filtering.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/configuration/filtering.md -------------------------------------------------------------------------------- /maintaining-and-tuning/configuration/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/configuration/index.md -------------------------------------------------------------------------------- /maintaining-and-tuning/configuration/parameter-expansion.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/configuration/parameter-expansion.md -------------------------------------------------------------------------------- /maintaining-and-tuning/email-configuration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/email-configuration.md -------------------------------------------------------------------------------- /maintaining-and-tuning/grr-datastore.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/grr-datastore.md -------------------------------------------------------------------------------- /maintaining-and-tuning/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/index.md -------------------------------------------------------------------------------- /maintaining-and-tuning/key-management/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/key-management/index.md -------------------------------------------------------------------------------- /maintaining-and-tuning/key-management/rotating.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/key-management/rotating.md -------------------------------------------------------------------------------- /maintaining-and-tuning/key-management/which-keys-and-how.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/key-management/which-keys-and-how.md -------------------------------------------------------------------------------- /maintaining-and-tuning/low-level-maintenance-with-console.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/low-level-maintenance-with-console.md -------------------------------------------------------------------------------- /maintaining-and-tuning/monitoring.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/monitoring.md -------------------------------------------------------------------------------- /maintaining-and-tuning/repacking-clients.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/repacking-clients.md -------------------------------------------------------------------------------- /maintaining-and-tuning/scaling.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/scaling.md -------------------------------------------------------------------------------- /maintaining-and-tuning/screenshots/add_notification_channel.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/screenshots/add_notification_channel.png -------------------------------------------------------------------------------- /maintaining-and-tuning/troubleshooting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/troubleshooting.md -------------------------------------------------------------------------------- /maintaining-and-tuning/user-management/authentication.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/user-management/authentication.md -------------------------------------------------------------------------------- /maintaining-and-tuning/user-management/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/user-management/index.md -------------------------------------------------------------------------------- /maintaining-and-tuning/user-management/limiting-access-with-routers.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/user-management/limiting-access-with-routers.md -------------------------------------------------------------------------------- /maintaining-and-tuning/user-management/running-behind-apache.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/user-management/running-behind-apache.md -------------------------------------------------------------------------------- /maintaining-and-tuning/user-management/running-behind-nginx.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/maintaining-and-tuning/user-management/running-behind-nginx.md -------------------------------------------------------------------------------- /publications.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/publications.md -------------------------------------------------------------------------------- /quickstart.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/quickstart.md -------------------------------------------------------------------------------- /release-notes.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/release-notes.md -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/requirements.txt -------------------------------------------------------------------------------- /what-is-grr.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/google/grr-doc/HEAD/what-is-grr.md --------------------------------------------------------------------------------