Hello! I've got a question regarding integration w...
# linuxg
Garrett M
01/24/2024, 9:33 PMHello! I've got a question regarding integration with Slack Webhooks. Device: Raspberry pi 3B+ running Ubuntu 22.04 server. I am wanting checks with osquery to happen everyday on the same hour. Once the query happens, I want a message to be sent via slack web hooks to let me know what the results were of the query, whether the device is compliant or not(true or false)
s
seph
01/24/2024, 10:30 PM
osquery is not a server, and it does not support webhooks. Are you asking about some fleet manager?
g
Garrett M
01/24/2024, 10:34 PMIs that how I would integrate slack webhooks(being notified by anything done by osquery)?
s
seph
01/24/2024, 10:37 PM
osquery is an agent. It runs on devices and gathers data based on it’s configuration. Osquery either writes the results to a local file, or to a remote endpoint.
seph
01/24/2024, 10:38 PM
There are a variety of commercial and open source remote managers for it.
seph
01/24/2024, 10:38 PM
For an intro to osquery, check out https://osquery.readthedocs.io/
If you wanted to write your own server, note https://osquery.readthedocs.io/en/latest/deployment/remote/
seph
01/24/2024, 10:39 PM
If you wanted to find an open source or commercial one, search the internet or see who pops up on #general
g
Garrett M
01/24/2024, 10:40 PMThanks for all the guidance! Much appreciated!
4 Views