Facebook Open-Sourced Security Tool osquery in Action
Facebook open-sourced security tool osquery late last month, allowing engineers to write SQL-based queries efficiently and easily to explore operating systems and monitor their infrastructure. In a note on the Protect the Graph page, security engineer Ted Reed offered a look at how osquery can be used to detect suspicious activity within infrastructure.
Facebook open-sourced security tool osquery late last month, allowing engineers to write SQL-based queries efficiently and easily to explore operating systems and monitor their infrastructure. In a note on the Protect the Graph page, security engineer Ted Reed offered a look at how osquery can be used to detect suspicious activity within infrastructure.
Reed wrote:
An osquery deployment can help you establish an infrastructural baseline, allowing you to detect malicious activity using scheduled queries.
This approach will help you catch known malware (WireLurker, IceFog, Imuler, etc.)
WORK SMARTER - LEARN, GROW AND BE INSPIRED.
Spring Special
Save 30% Off an ADWEEK Subscription Today!
Already a member? Sign in