mirror of
https://github.com/fleetdm/fleet
synced 2026-05-06 06:48:54 +00:00
02437a098e
Closes: #19271 Closes: #19286 Changes: - Updated the example in the schema folder readme - Updated the block scalar used in Fleet's osquery override documentation (`>-` » `|-`) and removed extra newlines - Updated the block scalar used in URLs used to create new yaml override files - Regenerated osqeury_fleet_schema.json
44 lines
832 B
YAML
44 lines
832 B
YAML
name: processes
|
|
examples: |-
|
|
List executables listening on network ports.
|
|
|
|
```
|
|
SELECT l.port, l.pid, p.name, p.path FROM listening_ports l JOIN processes p USING (pid);
|
|
```
|
|
columns:
|
|
- name: elevated_token
|
|
platforms:
|
|
- windows
|
|
- name: secure_process
|
|
platforms:
|
|
- windows
|
|
- name: protection_type
|
|
platforms:
|
|
- windows
|
|
- name: virtual_process
|
|
platforms:
|
|
- windows
|
|
- name: elapsed_time
|
|
platforms:
|
|
- windows
|
|
- name: handle_count
|
|
platforms:
|
|
- windows
|
|
- name: percent_processor_time
|
|
platforms:
|
|
- windows
|
|
- name: upid
|
|
platforms:
|
|
- darwin
|
|
- name: uppid
|
|
platforms:
|
|
- darwin
|
|
- name: cpu_type
|
|
platforms:
|
|
- darwin
|
|
- name: cpu_subtype
|
|
platforms:
|
|
- darwin
|
|
- name: translated
|
|
platforms:
|
|
- darwin
|