Skip to content

callmegerlad/osquerypy-tables

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

ย 

History

3 Commits
builds
builds
ย 
ย 
README.md
README.md
ย 
ย 
my_extension.py
my_extension.py
ย 
ย 

Repository files navigation

osquerypy-tables

An osquery extension built with osquery-python with a few tables that were converted from Go.

๐Ÿ“ Prerequisites

  • Have Python and osquery-python installed on your dev environment,
  • A tool to help convert Python programs into executables, like PyInstaller,
  • And of course, osquery.

๐Ÿ› ๏ธ Usage

Table Description Example Usage
file_lines Returns each line in a specified file. SELECT * FROM file_lines WHERE path='/home/readme.md'
SELECT * FROM file_lines WHERE path LIKE '/home/%.md'
exec Allows command execution with queries. SELECT * FROM exec WHERE cmd='whoami'

WIP...

About

An osquery extension built with osquery-python with a few tables that were converted from Go.

Topics

python osquery osquery-extension

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages