mirror of
https://github.com/empayre/fleet.git
synced 2024-11-06 17:05:18 +00:00
7d9ca2cee7
- Create `/configuration-files/` directory inside of `/1-Using-Fleet` directory. This directory contains example Fleet configuration files in yaml format. Replaces the `/examples` directory. - Create `/standard-query-library/` directory inside of `/1-Using-Fleet` directory. This directory contains the new `standard-query-library.yml`. This file will act as the source of community contributions to the standard query library. - Edit references to `/examples` directory |
||
|---|---|---|
| .. | ||
| count-apple-applications-installed.md | ||
| detect-hosts-with-high-severity-vulnerable-versions-of-openssl.md | ||
| detect-hosts-with-the-firewall-disabled.md | ||
| detect-machines-with-gatekeeper-disabled.md | ||
| detect-presence-of-authorized-ssh-keys.md | ||
| get-authorized-keys.md | ||
| get-crashes.md | ||
| get-installed-chrome-extensions.md | ||
| get-installed-freebsd-software.md | ||
| get-installed-homebrew-packages.md | ||
| get-installed-linux-software.md | ||
| get-installed-macos-software.md | ||
| get-installed-safari-extensions.md | ||
| get-installed-windows-software.md | ||
| get-laptops-with-failing-batteries.md | ||
| get-macos-disk-free-space-percentage.md | ||
| get-mounts.md | ||
| get-os-version.md | ||
| get-platform-info.md | ||
| get-startup-items.md | ||
| get-system-logins-and-logouts.md | ||
| get-system-uptime.md | ||
| get-usb-devices.md | ||
| get-wifi-status.md | ||
| get-windows-machines-with-unencrypted-hard-disks.md | ||
| README.md | ||
| standard-query-library-template.md | ||
Standard query library
Fleet's standard query library includes a growing collection of useful queries for organizations deploying Fleet and osquery.
Queries
- Detect machines with gatekeeper disabled (macOS)
- Detect presence of authorized SSH keys (macOS, Linux)
- Detect hosts with the firewall disabled (macOS)
- Detect Linux hosts with high severity vulnerable versions of OpenSSL (Linux)
- Get installed Chrome extensions (macOS, Linux, Windows, FreeBSD)
- Get installed FreeBSD software (FreeBSD)
- Get installed Homebrew packages (macOS)
- Get installed Linux software (Linux)
- Get installed macOS software (macOS)
- Get installed Safari extensions (macOS)
- Get installed Windows software (Windows)
- Get laptops with failing batteries (macOS)
- Get macOS disk free space percentage (macOS)
- Get System Logins and Logouts (macOS)
- Get wifi status (macOS)
- Get Windows machines with unencrypted hard disks (Windows)
- Get platform info (macOS)
- Get USB devices (macOS, Linux)
- Count Apple applications installed (macOS)
- Get authorized keys (macOS, Linux)
- Get OS version (macOS, Linux, Windows, FreeBSD)
- Get mounts (macOS, Linux)
- Get startup items (macOS, Linux, Windows, FreeBSD)
- Get system uptime (macOS, Linux, Windows, FreeBSD)
- Get crashes (macOS)
Additional resources
Listed below are great resources that contain additional queries.
- Osquery (https://github.com/osquery/osquery/tree/master/packs)
- Palantir osquery configuration (https://github.com/palantir/osquery-configuration/tree/master/Fleet)