On-demand webinar

Operationalize osquery at scale with Elastic

Hosted by

Aaron Jewitt
Aaron Jewitt

Principal Security Analyst

Elastic

Melissa Burpo
Melissa Burpo

Security Solutions, Product Manager

Elastic

Overview

Many security teams use osquery to augment their security, compliance, and operations programs. It’s a powerful tool that puts a search box on your hosts and is pivotal for investigations, threat hunting, and continuous monitoring of your environments. But implementing osquery can be cumbersome: it takes significant effort to deploy and manage at scale.

This virtual event introduces Osquery Manager, a new integration for Elastic Agent that makes it easier to operationalize osquery. Elastic Agent provides a single installer for data collection and endpoint protection. With just a few clicks, you can install osquery across your hosts and your security team can begin running live queries, scheduling recurring queries, and exploring osquery data that’s ingested in Elasticsearch and available in Kibana.

We will also walk through some specific examples from Elastic’s own InfoSec team that shows how they use osquery to monitor and investigate issues within Kibana.

Additional resources:

Register to watch

You'll also receive an email with related content.