Osquery - General Threads

Channels

Topic	Authors	Views	Replies	Activity
We've got a centralized logging system. Especially when we have a rolling upgrade of osquery, it'd be really helpful to know in the logs which version of osquery they're coming from. Is there provision to add things to...	h	0	2	5 months ago
This message was deleted.	s	0	11	5 months ago
Hi everyone! Can someone help me please? I am doing some tests with Osquery on Windows 10 with some queries I tried to write by myself. These queries work alone when I use them with osqueryi, and also if I put them in th...	d	1	4	5 months ago
Did the debian repo get rolled back from 5.1? Because I have a bunch of ubuntu hosts on 5.1 and others on 5.0.1 and it seems that 5.0.1 is latest on debian repo?	a	1	13	5 months ago
When I have a scheduled query that fails because of the watchdog process interrupting it for exceeding time or memory, where can I conveniently locate which query has failed? We've got numerous packs of scheduled querie...	s	0	8	5 months ago
If I am using Fleet to send to a destination and it loses connectivity is there any sort of caching that goes on? I think perhaps it would stop removing results from the REDIS database - but I cannot find any information...	b	0	6	5 months ago
hey folks, asked about this in #windows but i'll ask here as well. Just updated osquery to 5.2.0 on windows, from 4.8, and my osquery.conf file is failing to parse. Just as a sanity check for myself, i took ...	t	1	6	5 months ago
Hi everyone, does anybody know if osquery requires yara binary installed locally or it relies on builtin support via libyara ?	s	0	2	5 months ago
Good Afternoon everyone, I have a question. Downloading osquery on Windows 10 with Chocolatey it downloads version 5.2.0 but on the osquery website the last version is just 5.1.0. Is it ok or I downloaded something wrong...	f	2	2	5 months ago
any osquery based open source cybersecurity projects?	j	0	4	5 months ago

h
We've got a centralized logging system. Especially when we have a rolling upgrade of osquery, it'd be really helpful to know in the logs which version of osquery they're coming from. Is there provision to add things to...
2 Replies
5 months ago
s
This message was deleted.
11 Replies
5 months ago
f
Hi everyone! Can someone help me please? I am doing some tests with Osquery on Windows 10 with some queries I tried to write by myself. These queries work alone when I use them with osqueryi, and also if I put them in th...
4 Replies
5 months ago
Did the debian repo get rolled back from 5.1? Because I have a bunch of ubuntu hosts on 5.1 and others on 5.0.1 and it seems that 5.0.1 is latest on debian repo?
13 Replies
5 months ago
h
When I have a scheduled query that fails because of the watchdog process interrupting it for exceeding time or memory, where can I conveniently locate which query has failed? We've got numerous packs of scheduled querie...
8 Replies
5 months ago
b
If I am using Fleet to send to a destination and it loses connectivity is there any sort of caching that goes on? I think perhaps it would stop removing results from the REDIS database - but I cannot find any information...
6 Replies
5 months ago
t
hey folks, asked about this in #windows but i'll ask here as well. Just updated osquery to 5.2.0 on windows, from 4.8, and my osquery.conf file is failing to parse. Just as a sanity check for myself, i took ...
6 Replies
5 months ago
s
Hi everyone, does anybody know if osquery requires yara binary installed locally or it relies on builtin support via libyara ?
2 Replies
5 months ago
f
Good Afternoon everyone, I have a question. Downloading osquery on Windows 10 with Chocolatey it downloads version 5.2.0 but on the osquery website the last version is just 5.1.0. Is it ok or I downloaded something wrong...
2 Replies
5 months ago
v
any osquery based open source cybersecurity projects?
4 Replies
5 months ago