Shane Sanborn03/01/2022, 7:31 PM
himanshu03/07/2022, 4:32 AM
usage. at the same time, please share osquery.flags and osquery.conf being used.
OpenPlgx03/07/2022, 9:35 AM
Shane Sanborn03/07/2022, 2:50 PM
himanshu03/07/2022, 4:23 PM
and spread interval of scheduled queries to a higher time value.. most of the queries are scheduled for
which may be eating up CPU.
OpenPlgx03/07/2022, 4:42 PM
Shane Sanborn03/08/2022, 3:03 PM
filter is even working because I am seeing data come in that has a target_path that doesn't include that.. do I have to provide like an exclude all filter for this to work or?
himanshu03/13/2022, 5:27 PM
filter should work for file timestomp events.
Shane Sanborn03/28/2022, 2:34 PM
himanshu03/31/2022, 12:47 PM
Shane Sanborn03/31/2022, 7:55 PM
himanshu04/02/2022, 11:45 AM
Shane Sanborn04/05/2022, 2:42 PM
himanshu04/05/2022, 5:45 PM
Shane Sanborn04/12/2022, 6:01 PM
OpenPlgx04/13/2022, 4:15 AM
Shane Sanborn04/13/2022, 1:53 PM
OpenPlgx04/13/2022, 4:31 PM
Shane Sanborn04/13/2022, 4:49 PM
in there, thats when the spike is occuring
OpenPlgx04/15/2022, 3:15 AM