Hi all Got a quick Fleet question Is it easy to get stats on

Question

Hi all Got a quick Fleet question Is it easy to get stats on user logins and usage times Thanks

Jason · Answer

Depends on the platform Which ones do you want the data for

Joe B · Answer

Win Mac thanks

Jason · Answer

For Mac I know you can use the `last` table to last login times and the `apps` table to get the last time an application was opened

Jason · Answer

for Windows you d probably need to grab just the events you are interested in from the `windows eventlog` table

Jason · Answer

there s also the `uptime` table which works on all platforms

Jason · Answer

but generally just go spelunking through <https osquery io schema 5 4 0>

Joe B · Answer

Cool thank you for all of that I m hoping to get good stats of how much use computers get can you think of a better way to query that slightly smiling face

Jason · Answer

Hm depends on what you by use Can you clarify

Joe B · Answer

We want to know how much actual use machines get as opposed to which machines sit idle each day

Joe B · Answer

So login gets us partway there but some people leave themselves logged in so trying to find a better metric

Jason · Answer

Ah You could probably sample cpu usage then every 15 minutes or something like that

Jason · Answer

Or try and use the processes table to determine new processes being spun up

Joe B · Answer

yeah thanks for the ideas it seems like Fleet is a very versatile tool

Joe B · Answer

looking forward to playing with it

Jason · Answer

Yeah it s really up to your imagination

Joe B · Answer

I just hope I can find a good query to base our statistics on wink

Luke Heath · Answer

< Joe B> Just a heads up that there is a dedicated < C01DXJL16D8|fleet> channel that you may find helpful