Hello everyone! is there a way to query openBSM Audit logs with osquery? I would like to see file access activity (read/open) as well as group management activity (create/delete/etc)

Maybe the user_events table gives you the group management? On Linux there is also https://osquery.readthedocs.io/en/stable/deployment/file-integrity-monitoring/#file-accesses-linux-only but it doesn't use openBSM.