Facebook Open-Sourced Security Tool osquery in Action

Facebook open-sourced security tool osquery late last month, allowing engineers to write SQL-based queries efficiently and easily to explore operating systems and monitor their infrastructure. In a note on the Protect the Graph page, security engineer Ted Reed offered a look at how osquery can be used to detect suspicious activity within infrastructure.

osquery650Facebook open-sourced security tool osquery late last month, allowing engineers to write SQL-based queries efficiently and easily to explore operating systems and monitor their infrastructure. In a note on the Protect the Graph page, security engineer Ted Reed offered a look at how osquery can be used to detect suspicious activity within infrastructure.

Reed wrote:

An osquery deployment can help you establish an infrastructural baseline, allowing you to detect malicious activity using scheduled queries.

This approach will help you catch known malware (WireLurker, IceFog, Imuler, etc.)

AW+

WORK SMARTER - LEARN, GROW AND BE INSPIRED.

Spring Special

Save 30% Off an ADWEEK Subscription Today!

View Your Options

Already a member? Sign in