Olivia
Online
osquery
@osquery
osquery lets you ask questions about your Linux, Mac, and Windows infrastructure. Intrusion detection, infrastructure reliability, compliance, and more.
Menlo Park, CA
Joined February 2015
130 Following
3.1K Followers
210 Posts
Great to see osquery detections provided in a malware analysis report like this!
Here's my blog on #Qakbot malware with threat detections using #osquery
Qakbot seen in below campaigns:
⛔️OneNote Campaign
⛔️WSF Campaign
⛔️HTML Smuggling Campaign
Blog: https://t.co/mx6CHbYobm
#threatintelligence #malware #threathunting #DFIR
Here's a little one-liner I like to use with @osquery to figure out what process is listening on a network port when I can't bind my dev server:
osqueryi 'select * from processes join listening_ports using (pid) where port = 8080'
🎉 Announcing Osquery 5.3.0! 🎉
Table improvements and bugfixes. Downloads available from https://t.co/lwciRnuZHp
Who to follow
Security Onion 
@securityonion
Peel back the layers of your enterprise and make your adversaries cry!
FREE and OPEN platform BY defenders FOR defenders!
Nextron Systems
@nextronsystems
Managed Compromise Assessments #YARA #IOCs #DFIR #APT #Sigma - the home of @thor_scanner, ASGARD and the Aurora Agent
Will Schroeder
@harmj0y
Researcher @SpecterOps. Coding towards chaotic good while living on the decision boundary.
🎉 Announcing osquery 5.2.2 with native macOS M1 support! 🎉
Downloads available in our package repos and at https://t.co/NPm0pB3tuW. Huge effort from @trailofbits, @Smjert, @alessandrogario, @sharvilshah and more.
@wifitoaster2 Osquery is not vulnerable. See https://t.co/M92EfdSIzL. Thank you for asking.
Osquery is not vulnerable to the Log4J CVE-2021-44228, as there are no Java components. The https://t.co/G7Qr0iNunH website is statically hosted on GitHub pages.
Osquery is not vulnerable to the Log4J CVE-2021-44228, as there are no Java components. The https://t.co/G7Qr0iNunH website is statically hosted on GitHub pages.
Announcing, osquery 5.0! 🎉
This is a tremendously exciting release. New code signatures, new paths, new packaging, new functionality!
Check it out at https://t.co/iRsR1j4rve
@mikermcneil @KevTheHermit Yeah this is a known problem, we’d love some help fixing that initial load bug on https://t.co/DWwqRZHL05
cloudquery looks great! A wonderful complimentary tool to osquery, query your endpoints and your cloud! What’s next? https://t.co/EHImJeueEA
Very cool to see the initial talks and speakers added to the agenda, should be a fun and insightful event!
While CFPs continue to roll in, we’re excited to share the latest confirmed speaker/session: @atlassian Site Reliability Engineer, Brendan Shaklovitz (@nyanshak).
To register, visit https://t.co/FbNwyscgbK
#osqueryatscale
Keep them coming!
The importance of APIs in Security products is often ignored. A good API makes your product even better and us Security Engineering teams love them! https://t.co/HyhEubpf3k #CyberSecurity #DFIR #osquery #detection #infrastructure
The osquery ecosystem keeps growing!
This makes bpf events very accessible: select * from bpf_process_events. You’ll have to build from tip right now, but expect these features in the next stable release (eta 1 month). Next up, EndpointSecurity process events!
My PR implementing #bpf support in #osquery has been merged! Huge thanks to @trailofbits for being awesome and @teddyreedv for being the best maintainer ever! https://t.co/n35EPhi2UC
Here is a great end to end setup for using osquery to carve/acquire files remotely. Thanks for the in-depth description and walkthrough Ben!
New post: Setup my GoLang Osquery-file-carving server with Kolide https://t.co/grj4Olk4zW
That is a lot of SQL! Congrats to the winners and to everyone who helped organize!
We are thrilled to announce the winning teams of https://t.co/ppYocDgP90 #DEFCONSafeMode finals.
8M @graylog2 queries
91K+ scoreboard submissions
800+ participants
500+ challenges
350+ teams
260GB+ PCAPs
150GB+ endpoint telemetry
10K+ @osquery queries
20+ hours of content
I'm very excited to release Fleet 3.0.0! We've managed to scale Fleet to over 150k hosts with the new changes, and also introduced some nice new features like Manual Labels. Check it out! #osquery
https://t.co/E6BgbSprVW
Enjoyed my first virtual talk at @jupyterthon and also my first blog, hope there will be more! 😉
Thanks again @Cyb3rWard0g & @Cyb3rPandaH for this opportunity.
Here is the link to my talk: https://t.co/AYSStDF8ZR
And also the link to my blog: https://t.co/4RV9Sgp0fS
#osquery
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers