|
This is a lab file set to make osquery do the following
|
|
|
|
|
|
* detect hidden files and processes
|
|
* report new cron jobs
|
|
* ... cover parts of ATT&CK matrix, that make sense for the lab
|
|
* detection engineering
|
|
* log the results as JSON
|
|
* Logrotate management
|