Extension to osquery windows that enhances it with real-time telemetry, log monitoring and other endpoint data collection
Fixed internal bugs
Fixed internal bugs
Bug fix and performance improvements
2 new tables for Windows Event Log data with performance related improvements.
Fixed a bug that hits in co-existence with certain 3rd party endpoint software like Kaspersky Internet Security
A bug with the yara engine was reported that was causing an issue when the number of rules that matched was very high.
This release fixes bugs on a few race conditions and provides the table (win_yara) for running an on-demand yara scan.