Query your system
osquery is an operating system instrumentation framework for collecting information from operating systems, hypervisors and applications. It is often used to collect information for security forensics, application performance management and compliance auditing. osquery supports multiple platforms including Windows, Linux and macOS.
The osquery toolset provides a SQL-based interface for querying operating system data. This allows complex queries to be constructed within a familiar environment that is both robust and secure. A query may consist of individual or aggregated components that are composed together with AND / OR operators to form a complete query. This provides the flexibility that is unique to SQL-based interfaces and allows users to define a flexible query workflow.
It is a project that aims to make operating systems more transparent. It does this by collecting information from the operating system and making it available to clients (the osquery client, shipped as part of osqueryd), which can then be queried using a SQL-like query language.
A lot of command-line tools such as ps, lsof, netstat or ss are available on every Linux distribution and allow you to query the operating system. However, these tools often require particular privilege to run (typically root) and have a narrow scope. No privilege escalation is involved in using the OSQuery command line tool.
In this course you will learn how to use OSQuery to find information about your computers and servers. It is a beginners course and no prior knowledge is required, not even about SQL. If you are a sysadmin, developer, security researcher then this course is for you.
Cyber Security: Master osquery
Query your system»
¿Te gustaron los cupones? Tal vez también te guste este otro contenido:
Este curso se encuentra de manera gratuita gracias a un cupón que podrás encontrar aquí abajo.
Toma en cuenta que este tipo de cupones duran por muy poco tiempo.
Si el cupón ya ha expirado podrás adquirir el curso de manera habitual.
Este tipo de cupones duran muy pocas horas, e incluso solo minutos después de haber sido publicados.
Debido a una actualización de Udemy ahora solo existen 1,000 cupones disponibles, NO nos hacemos responsables si el cupón ya venció.
Para obtener el curso con su cupón usa este enlace.
Deja tus comentarios y sugerencias
Sobre Facialix
Facialix es un sitio web que tiene como objetivo apoyar en el aprendizaje y educación de jóvenes y grandes. Buscando y categorizando recursos educativos gratuitos de internet, de esta manera Facialix ayuda en el constante aprendizaje de todos.