Multiple supplementary tools, such as Doorman, Kolide, and Uptycs, have emerged to help users deploy and manage the technology. Since contributors like Trail of Bits and Facebook have transformed osquery to support more operating systems ( Windows and FreeBSD), a broader number of organizations are now able to install osquery on a greater portion of their endpoints. Users have increased due to a number of recent developments. In August, osquery developers at Facebook began offering bi-weekly office hours to discuss issues, new features, and design direction. Since its debut in October, 2014, over 1,000 users from more than 70 companies have engaged with the development community through its Slack channel and GitHub repo. Osquery’s affordability, flexibility, and cross-platform compatibility has quickly established its place in the endpoint monitoring toolkits of top tech firms. How are companies using osquery today? Market Penetration This post will focus on current use of osquery and its benefits. What new features would you most like to see added?.What have been your biggest pain points about using osquery?.How is osquery deployed and used currently?.Hopefully, the series will help those of you who are sitting on the fence decide if and how to deploy the platform in your companies.įor our research, we interviewed teams of osquery users at five major tech firms. This marks the start of a four-part blog series that sheds light on the current state of osquery, its shortcomings and opportunities for improvement. That’s why we sought to take the pulse of the osquery community – to help current and potential users know what to expect. Their choice and subsequent satisfaction fuels others’ curiosity about making the switch.īut deploying new software to your company’s entire fleet is not a decision to be made lightly. Many large and leading tech firms have deployed osquery to do totally customizable and cost-effective endpoint monitoring. In fact, it recently received the 2017 O’Reilly Defender Award for best project. Either way, webhooks will help you automate IT admin and security compliance.In the year since we ported osquery to Windows, the operating system instrumentation and endpoint monitoring agent has attracted a great deal of attention in the open-source community and beyond. Or copy and paste queries that have been vetted by the Fleet community. Write complex, custom queries just for your organization with SQL. Complete control over the queries you run.Because your tools shouldn't slow you down. This open-source solution was built to be deployed across hundreds of thousands of devices. Some security agents strain your systems. No downtime risks or performance hits.Our transparent approach makes adoption easier. Fleet fits into any security and compliance ecosystem. Get real-time results from all your endpoints - all in one place. Accurate, comprehensive, up-to-date data.Fortune 1000 companies like Uber, Atlassian, and Wayfair now have the insights they need to easily maintain continuous compliance. Since our founding in 2020, Fleet has given visibility into more than 1.65 million servers and workstations. Individuals and organizations continue to contribute impressive features, useful improvements, and helpful documentation.įleet helps you harness the power of osquery at scale. Open-sourcing osquery has created a community of security, IT, and DevOps professionals. Plus, our open-source agent protects privacy and performance.įleet's CTO, Zach Wasserman, created osquery when he was working at Facebook to get accurate, actionable data from hundreds of thousands of endpoints. Fleet is compatible with every MDM and EDR platform on the market, as well as Windows, macOS, and Linux. Ask any question about any endpoint anywhere. Fleet for osquery makes it easy to investigate all your servers and workstations.
0 Comments
Leave a Reply. |