https://github.com/osquery/osquery logo
Join Slack
Powered by
<https://blogs.vmware.com/security/2022/05/levelin...
# vendor-feeds
m

Martin Rutkowski

05/13/2022, 8:39 AM
https://blogs.vmware.com/security/2022/05/leveling-up-with-osquery-answering-your-questions-with-vmware-carbon-black-cloud-audit-remediation.html
a

allister

05/13/2022, 9:44 AM
oooh, I like this regex-y one https://carbonblack.vmware.com/blog/leveling-osquery-workloads-using-regular-expressions-regex-queries%C2%A0
💪 1
👍 1
m

Martin Rutkowski

06/09/2022, 11:28 AM
@allister FYI: https://blogs.vmware.com/security/2022/05/leveling-up-with-osquery-answering-your-questions-with-vmware-carbon-black-cloud-audit-remediation.html

Martin Rutkowski

06/09/2022, 11:29 AM
Jon is doing alot of stuff around this topic 🙂 • Leveling Up with osquery for Workloads blog series • Leveling Up with osquery for Workloads: Identifying and Contextualizing Windows Logon Failures • Leveling Up with osquery for Workloads: Locating local administrator accounts (windows) • Leveling Up with osquery for Workloads: Determining Free Disk Space on Linux &amp; macOS • Leveling up with osquery for Workloads: Check for weak authentication types (LM/NTLM)
3 Views
Open in Slack
PreviousNext
Powered by