Facebook Releases Osquery Safety Tool For Windows

OSquery, an open-source framework created yesteryear Facebook that allows organizations to hold off for potential malware or malicious activeness on their networks, was available for Mac OS X too Linux environments until today.

But right away the social network has announced that the fellowship has developed a Windows version of its osquery tool, too.

When Facebook engineers desire to monitor thousands of Apple Mac laptops across their organization, they work their ain untraditional safety tool called OSquery.

OSquery is a smart slice of cross-platform software that scans every unmarried estimator on an infrastructure too catalogs every expression of it.

Then SQL-based queries let developers too safety teams to monitor low-level functions inwards real-time too speedily search for malicious demeanor too vulnerable applications on their infrastructure.

In uncomplicated words, OSquery allows an organisation to process its infrastructure every bit a database, turning OS information into a format that tin hold upwards queried using SQL-like statements.

This functionality is critical for administrators to perform incident response, diagnose systems too network degree problems, aid to troubleshoot surgical operation issues, too more.

This opened upwards rootage endpoint safety tool has instruct ane of the nearly pop safety projects on GitHub since its liberate inwards mid-2014 too was available for Linux distribution such every bit Ubuntu or CentOS, too Mac OS X machines.

So, if your organisation was running a Windows environment, you lot were out of luck.

But, non today, every bit alongside the aid of Trail of Bits, Facebook has in conclusion launched the OSquery developer kit for Windows, allowing safety teams to construct customized solutions for their Windows networks.

"As adoption for osquery grew, a strong too active community emerged inwards back upwards of a to a greater extent than opened upwards approach to security," reads the before version of Facebook's weblog post service provided to The Hacker News.

"We saw the long-held misconception of 'security yesteryear obscurity' autumn away every bit people started sharing tooling too experiences alongside other members of the community. Our initial liberate of osquery was supported for Linux too OS X, exactly the community was also excited for a Windows version — then nosotros fix out to construct it."

To instruct started alongside the OSquery developer kit for Windows, banking concern fit this official documentation, the evolution environment, too a unmarried script. The construct is slowly to install, too you lot tin showtime coding correct away.

You tin read the sum documentation of the evolution procedure of the OSquery developer kit for Windows on the blog post yesteryear Trail of Bits.