OSquery, developed by Facebook, is well known among DevSecOps practitioners as a great low-level operating system monitoring tool for endpoints and servers. In part 2 of our 3-part series on automating compliance, SANS Associate instructor AJ Yawn will discuss how compliance professionals can leverage OSQuery to collect technically accurate evidence for security audits in an efficient and streamlined manner.
See the previous blog post about QSquery here.