Osquery uses basic SQL commands to leverage a relational data-model to describe a device.

osquery

How to change `osueryd` name in CMD and also in proccess log like I want to launch it as `madhurs_daemon --flagfile=flagfile.txt`  instead of `osqueryd --flagfile=flagfile.txt`  and it should be seen as `madhurs_daemon` in the process log as well as in the console application, any idea or any stuff I need to check out?

<https://osquery.slack.com/archives/C01DXJL16D8/p1628853004230700>

Renaming osqueryd is not only security through obscurity but I’m now wondering if this feature can be abused so that a malicious osqueryd process can co-exist along a defensive osqueryd? :thinking_face:

Lol look at the teardowns of ransomware and see all the hardcoded paths and process names that they are checking to kill, such a simple way to defeat that is to change path and process name. I see Bitdefender now lets you push out policies with varying install path in the start of trying to remedy this threat. You keep telling yourself in your fantasy world it's security through obscurity mate, let the rest of us mitigate against REAL threats.

<@U01DFNXHY92> so please can you explain how to change the name?