Crate osquery_rs
source ·Expand description
This crate allows you to execute osquery SQL queries using osquery Thrift API. You can execute osquery SQL query using one of the following methods:
- Connect to the extension socket for an existing osquery instance
- Spawn your own osquery instance and communicate with it using its extension socket Currently this crates only works on Linux. I am still working on Windows version.
Structs
A Struct that handles osquery Thrif API comunication