Eric
Do you think it would be possible to add the ability for Santa to block a process based on its parent? An example use-case would be blocking bash from starting...
Per [this comment](https://github.com/kolide/fleet/issues/1738#issuecomment-380263691) in #1738 it seems that supported osqueryd configuration options per label hasn't been implemented. Could this feature request be revisited? Perhaps the order of applying label-specific configs...
My co-workers and I were talking today about how a nmap or nmap-like extension that could be used to perform ping sweeps and port scans could be very useful for...
I've configured my Kolide Fleet instance to send the following to osqueryd when it calls /api/v1/osquery/config to get its config [osquery.conf.txt](https://github.com/polylogyx/osq-ext-bin/files/2886609/osquery.conf.txt) However, when trying to load the osq-ext-bin extension, osqueryd...
It looks like there are a bunch of configuration options here: https://github.com/awslabs/amazon-kinesis-agent/blob/master/tst/com/amazon/kinesis/streaming/agent/config/agentconfig1.json that aren't documented on GitHub or on the docs.aws.amazon.com pages for the Kinesis Agent. Could documentation be written...
Looking at the EDR console I can see the comms IP for any process, but I don't see `comms_ip` being returned with events besides watchlist hits. Would it be possible...
# Description New rule created to look for braille pattern blank characters in attachment filenames recursively. # Associated samples Link to samples that are affected by your change. For example,...