From full disk encryption to healthy antivirus software and any query in between. Using Fleet, we can be able to query multiple hosts on-demand. ![]() Prima’s top advice for teams building an endpoint detection and response strategy.īlog post Prima wrote - Hosting FleetDM on AWS EKSīook that Zach mentioned - Container Security: Fundamental Technology Concepts that Protect Containerized Applications 1st Editionįleet makes it easy to get accurate, actionable data from all your endpoints. Kolide Fleet is a flexible control server that can be used to manage osquery fleets. It’s especially useful for talking to multiple devices at the same time. Deploying osquery with Fleet enables programmable live queries, streaming logs, and effective management of osquery across 50,000+ servers, containers, and laptops. If using fleetctl from the Manager and Fleet is enabled on the Manager, first set the fleetctl login configuration. Fleet is the most widely used open source osquery manager. Why endpoint visibility is an essential building block for the success of any detection and response team. fleetctl is a command-line utility that allows you to manage your Fleet instance and run live queries from the cli. Lessons from deploying Fleet and why Prima’s team decided to host it entirely on an EKS cluster. ![]() What Prima’s day-to-day looks like leading detection and response engineering at an organization with nearly 9,000 employees. Fleet is the lightweight, open source telemetry platform for servers and workstations. Prima’s journey into cybersecurity and what initially made her so excited about the industry. Osquery uses basic SQL commands to leverage a relational data-model to. In today’s episode of the Future of Device Management podcast, we speak with Prima Virani - Detection & Response Engineering Lead at Twilio.
0 Comments
Leave a Reply. |