Collaborate Disseminate
We’re releasing an extension for osquery that will let you dig deeper into the NTFS filesystem. It’s one more tool for incident response and data collection. But it’s also an opportunity to dispense with forensics toolkits and commerc… Continue reading Collect NTFS forensic information with osquery
Welcome to the third post in our series about osquery. So far, we’ve described how five enterprise security teams use osquery and reviewed the issues they’ve encountered. For our third post, we focus on the future of osquery. We asked users… Continue reading What do you wish osquery could do?
You’re reading the second post in our four-part series about osquery. Read post number one for a snapshot of the tool’s current use, the reasons for its growing popularity among enterprise security teams, and how it stacks up against commer… Continue reading What are the current pain points of osquery?
In the year since we ported osquery to Windows, the operating system instrumentation and endpoint monitoring agent has attracted a great deal of attention in the open-source community and beyond. In fact, it recently received the 2017 O’Reilly Defender Award for best project. Many large and leading tech firms have deployed osquery to do totally […]
The post How are teams currently using osquery? appeared first on Security Boulevard.
Facebook finished porting its SQL-powered detection tool, osquery, to Windows this week. Continue reading Facebook Debuts Open Source Detection Tool for Windows
OSquery, an open-source framework created by Facebook that allows organizations to look for potential malware or malicious activity on their networks, was available for Mac OS X and Linux environments until today.
But now the social network has announ… Continue reading Facebook releases Osquery Security Tool for Windows