Channels
android_tests
apple-silicon
arm-architecture
auditing-warroom
aws
carving
code-review
community-feeds
core
darkbytes
doorman
ebpf
eclecticiq-polylogyx-extension
extensions
file-carving
fim
fleet
fleet-dev
fleetosquery
foundation
fuzzing
general
golang
goquery
infrastructure
jobs
kolide
linen-dev
linux
macos
officehours
osctrl
plugins
process-auditing
querycon
queryhub
random
selfgroup
sql
tls
uptycs
vendor-feeds
website
windows
zeek
zentral
zercurity
Title
k
koo
10/23/2021, 5:09 AMHey everyone wrote about the purpose of osquery
https://dominuskelvin.dev/blog/the-purpose-of-osquery
👍 2
🆒 1
m
Mike Myers
10/23/2021, 7:45 AMThis is a topic I was recently thinking about too. How about you? How are you using osquery
g
Gavin
10/23/2021, 3:14 PMI think the biggest value add for osquery is operations at scale and gaining insights recently onboarded the corp eng team onto osquery and items like confirming MDM enrollment , application installs and rough performance metrics has been really good for them.
Especially items which other solutions don't care about
For example I can say that our latest version of AV we deployed has on average a 3% lower CPU utilisation over the previous version at the same sample size and rate which is a sample per 10 minutes
💯 2
k
koo
10/25/2021, 10:36 PMI tend to want to focus on the every day developer as opposed to large corporations at the moment. I want to see how osquery can be useful and integral to my day to day software development
As testimony I have stated how osquery helped me discovered a forgotten mysql daemon hogging memory.
🆒 1