jmarya/knowledge
jmarya/knowledge
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
knowledge/technology/applications/utilities/osquery.md
JMARyA d888ed74de
add fleetdm + osquery
2025-06-25 06:00:46 +02:00

516 B
Raw Blame History

obj website repo
application https://www.osquery.io https://github.com/osquery/osquery

osquery

osquery is an open-source endpoint instrumentation framework. It exposes an operating system as a high-performance relational database, allowing you to write SQL queries to explore system state and activity in real-time. See schema.

Usage

Usage: osqueryi [SQL]

Example Statement: SELECT name, path, pid FROM processes WHERE on_disk = 0;