Zach WassermaninKolideOsquery: Under the HoodFour years, 243 contributors, and 4,573 commits (and counting!) have gone into the development of osquery. It is a complex project, with…8 min read·Aug 8, 2018----
Zach WassermaninKolideMonitoring /etc/hosts with osqueryOne of the most powerful features of osquery is tracking how host state changes over time. Let’s use the differential queries feature of…3 min read·Dec 13, 2017--1--1
Zach WassermanAnother method for exploiting the macOS root vulnerabilityYesterday, @lemiorhan on Twitter reported that any user could gain root access to a macOS 10.13 machine by attempting to log in as root…1 min read·Nov 29, 2017----
Zach WassermaninKolideMonitoring macOS hosts with osqueryModern operating systems hold a wealth of data about their operation. This data is spread across APIs, files and formats, rendering it…11 min read·Oct 24, 2017----