Filip
05/15/2023, 10:17 AMseph
05/15/2023, 10:23 AMFilip
05/15/2023, 10:26 AMfritz
05/15/2023, 1:27 PMcurl
table,
• Manipulate it to match the output format/schema of your desired osquery source (eg. programs
), by using things like JSON_EXTRACT
to parse the feed.
• Perform some sort of version comparison using SQL functions (eg. SPLIT(version,'.',0) AS version_major)
) to determine whether the software in question is vulnerable.Filip
05/16/2023, 12:14 PM