├── .circleci └── config.yml ├── .gitignore ├── Classic ├── Endpoints │ ├── MacOS │ │ ├── osquery.conf │ │ ├── osquery.flags │ │ └── osquery_no_tls.flags │ ├── Windows │ │ ├── osquery.conf │ │ ├── osquery.flags │ │ └── osquery_no_tls.flags │ └── packs │ │ ├── performance-metrics.conf │ │ ├── security-tooling-checks.conf │ │ ├── windows-application-security.conf │ │ ├── windows-compliance.conf │ │ └── windows-registry-monitoring.conf └── Servers │ └── Linux │ ├── osquery.conf │ ├── osquery.flags │ └── packs │ ├── ossec-rootkit.conf │ └── ossec-rootkit.yaml ├── Fleet ├── Endpoints │ ├── MacOS │ │ └── osquery.yaml │ ├── Windows │ │ └── osquery.yaml │ ├── options.yaml │ └── packs │ │ ├── performance-metrics.yaml │ │ ├── security-tooling-checks.yaml │ │ ├── windows-application-security.yaml │ │ ├── windows-compliance.yaml │ │ └── windows-registry-monitoring.yaml └── Servers │ ├── Linux │ └── osquery.yaml │ └── options.yaml ├── LICENSE.md └── README.md /.circleci/config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/.circleci/config.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/.gitignore -------------------------------------------------------------------------------- /Classic/Endpoints/MacOS/osquery.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/MacOS/osquery.conf -------------------------------------------------------------------------------- /Classic/Endpoints/MacOS/osquery.flags: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/MacOS/osquery.flags -------------------------------------------------------------------------------- /Classic/Endpoints/MacOS/osquery_no_tls.flags: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/MacOS/osquery_no_tls.flags -------------------------------------------------------------------------------- /Classic/Endpoints/Windows/osquery.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/Windows/osquery.conf -------------------------------------------------------------------------------- /Classic/Endpoints/Windows/osquery.flags: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/Windows/osquery.flags -------------------------------------------------------------------------------- /Classic/Endpoints/Windows/osquery_no_tls.flags: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/Windows/osquery_no_tls.flags -------------------------------------------------------------------------------- /Classic/Endpoints/packs/performance-metrics.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/packs/performance-metrics.conf -------------------------------------------------------------------------------- /Classic/Endpoints/packs/security-tooling-checks.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/packs/security-tooling-checks.conf -------------------------------------------------------------------------------- /Classic/Endpoints/packs/windows-application-security.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/packs/windows-application-security.conf -------------------------------------------------------------------------------- /Classic/Endpoints/packs/windows-compliance.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/packs/windows-compliance.conf -------------------------------------------------------------------------------- /Classic/Endpoints/packs/windows-registry-monitoring.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Endpoints/packs/windows-registry-monitoring.conf -------------------------------------------------------------------------------- /Classic/Servers/Linux/osquery.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Servers/Linux/osquery.conf -------------------------------------------------------------------------------- /Classic/Servers/Linux/osquery.flags: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Servers/Linux/osquery.flags -------------------------------------------------------------------------------- /Classic/Servers/Linux/packs/ossec-rootkit.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Servers/Linux/packs/ossec-rootkit.conf -------------------------------------------------------------------------------- /Classic/Servers/Linux/packs/ossec-rootkit.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Classic/Servers/Linux/packs/ossec-rootkit.yaml -------------------------------------------------------------------------------- /Fleet/Endpoints/MacOS/osquery.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Endpoints/MacOS/osquery.yaml -------------------------------------------------------------------------------- /Fleet/Endpoints/Windows/osquery.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Endpoints/Windows/osquery.yaml -------------------------------------------------------------------------------- /Fleet/Endpoints/options.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Endpoints/options.yaml -------------------------------------------------------------------------------- /Fleet/Endpoints/packs/performance-metrics.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Endpoints/packs/performance-metrics.yaml -------------------------------------------------------------------------------- /Fleet/Endpoints/packs/security-tooling-checks.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Endpoints/packs/security-tooling-checks.yaml -------------------------------------------------------------------------------- /Fleet/Endpoints/packs/windows-application-security.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Endpoints/packs/windows-application-security.yaml -------------------------------------------------------------------------------- /Fleet/Endpoints/packs/windows-compliance.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Endpoints/packs/windows-compliance.yaml -------------------------------------------------------------------------------- /Fleet/Endpoints/packs/windows-registry-monitoring.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Endpoints/packs/windows-registry-monitoring.yaml -------------------------------------------------------------------------------- /Fleet/Servers/Linux/osquery.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Servers/Linux/osquery.yaml -------------------------------------------------------------------------------- /Fleet/Servers/options.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/Fleet/Servers/options.yaml -------------------------------------------------------------------------------- /LICENSE.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/LICENSE.md -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/palantir/osquery-configuration/HEAD/README.md --------------------------------------------------------------------------------