CptOfEvilMinions
CptOfEvilMinions
``` root@osctrl:/home/superadmin# osctrl-admin --help ... --carved value Directory for all the received carved files from osquery (default: "./carved_files/") [$CARVED_FILES] --version, -v print the version (default: false) ``` `osctrl-admin` has an...
Osctrl file carving doesn't support using a custom query only file path. What if I want to find all files that match a hash with the `hash` table or etc....
When the osctrl-api server and API is revamped we should create a Python/Golang SDK to automate tasks,
``` root@osctrl:/home/superadmin# osctrl-cli query NAME: osctrl-cli query - Commands for queries USAGE: osctrl-cli query command [command options] [arguments...] COMMANDS: complete, c Mark an on-demand query as completed delete, d Mark...
When osctrl-tls is started and passed a `db.json` config it doesn't use the username in the config (see error logs). I think the user `postgres` is hard coded. db.json: ```...
I know `_SERVICE_NAME` should be `admin`. However, when if this value is not set the osctrl-admin component SIGSEGV. An output should be generated that config is invalid. service.json: ``` {...
When rotating a user's password it doesn't ask the user for their current password to verify the requestor.
Implement `/metrics` HTTP endpoints on each osctrl component to collect metrics. https://gabrieltanner.org/blog/collecting-prometheus-metrics-in-golang
The dockerfile for osctrl-cli is an old/wrong Dockerfile. Need to update the Dockerfile with the contents of the link below, build new container and over write the one in Dockerhub....