Crate osquery_rs

Expand description

This crate allows you to execute osquery SQL queries using osquery Thrift API. You can execute osquery SQL query using one of the following methods:

Connect to the extension socket for an existing osquery instance
Spawn your own osquery instance and communicate with it using its extension socket Currently this crates only works on Linux. I am still working on Windows version.

Structs

A Struct that handles osquery Thrif API comunication