Presented by:

I am client platform engineer in Bellingham, Wa. Born and raised in Dayton, Ohio I relocated to the PNW several years ago. Digitally I work on macOS, tinker in deb based distros and game in Windows. In the analog world I enjoy kayaking, hiking and casual woodworking.

Fleet visibility with osquery and other f/oss tools

This will be a beginner level talk.

  • This will focus more on a practical application
  • a high level of the tools and their integration
  • ie, this how a functioning ecosystem could work, not heavy into one tool or another
  • fleet endpoints will be inclusive of linux, win, and macOS

Planned outline as:

  • A brief overview of Facebook's osquery
  • The idea of Fleet, a distribution point for osquery
  • Setting up and querying fleet machines (Fleet)
  • Using a syslog server for analysis and reporting, (Graylog)

Links

osquery Fleet Graylog

Date:
2018 April 29 - 03:45
Duration:
45 min
Room:
CC-235
Conference:
LinuxFest Northwest 2018
Language:
Track:
Infrastructure
Difficulty:
Easy

Happening at the same time:

  1. Linux Professional Institute: Exam Lab - Session 1
  2. Start Time:
    2018 April 29 02:30

    Room:
    HC-112 LPI

  3. Making Chiptunes on a Raspberry Pi
  4. Start Time:
    2018 April 29 02:30

    Room:
    CC-201 TUT1

  5. Improving Arduino Education
  6. Start Time:
    2018 April 29 02:30

    Room:
    CC-202 TUT2

  7. Build and Program Your First Arduino Robot
  8. Start Time:
    2018 April 29 02:30

    Room:
    CC-234 BAIRS

  9. openSUSE Mini-Summit
  10. Start Time:
    2018 April 29 02:30

    Room:
    HC-104 openSUSE

  11. ROSECODE
  12. Start Time:
    2018 April 29 03:45

    Room:
    G-103

  13. Don't Fear the Patent Clause!
  14. Start Time:
    2018 April 29 03:45

    Room:
    CC-114

  15. Incident Response with Live Linux Forensics
  16. Start Time:
    2018 April 29 03:45

    Room:
    CC-200

  17. Privacy on the blockchain
  18. Start Time:
    2018 April 29 03:45

    Room:
    HC-108

  19. Hybrid multi-cloud infrastructure as code using Terraform
  20. Start Time:
    2018 April 29 03:45

    Room:
    CC-208

  21. Arduino, ESP8266 and 433 Mhz Devices
  22. Start Time:
    2018 April 29 03:45

    Room:
    CC-236

  23. Old Dogs & New Tricks
  24. Start Time:
    2018 April 29 03:45

    Room:
    CC-115

  25. Picking Up the Pieces, Issues And Challenges Controlling Your Data
  26. Start Time:
    2018 April 29 03:45

    Room:
    HC-103 Postgres