I'm not sure if it is going to work, since the Zeek Agent calls the table generate() directly

Ah okay well at least we'll have it in osquery core. Maybe Zeek can use the osquery core code once it's there.

Zeek Agent redefines osquery tables in its own sqlite db instance, so I'm not sure how to show non-table stuff outside osquery

Our priority right now is to get it implemented in osquery. Will be nice if Zeek can integrate somehow.

best approach is probaby to implement it directly within Zeek Agent so that it will work with both osquery and built-in tables