Serverless Osquery Backend and Big Data Exploration
Offered By: Security BSides San Francisco via YouTube
Course Description
Overview
Explore the deployment of a serverless osquery backend for large-scale intrusion detection in this conference talk from BSidesSF 2020. Dive into the challenges of scaling osquery, an open-source community-driven endpoint detection tool, and learn about endpoint management and data transport considerations. Discover how to utilize Saltstack for osquery deployment, implement efficient data transport and storage solutions, and leverage big data exploration techniques. Gain insights into performance optimization, data visualization, and export methods for comprehensive security analysis.
Syllabus
Introduction
What is CloudFlare
CloudFlare Mission
Osquery Background
Osquery to Scale
Saltstack
Osquery Salt State
Osquery Salt Stack
Data Transport and Storage
Cenote
Osquery
Performance
Cons
StackDriver
Big Query
JSON Object
Visualization
Export Data
Questions
Taught by
Security BSides San Francisco
Related Courses
Network SecurityRochester Institute of Technology via edX Network Security
Georgia Institute of Technology via Udacity Real-Time Cyber Threat Detection and Mitigation
New York University (NYU) via Coursera Information security - IV
Indian Institute of Technology Madras via Swayam Cyber Security
CEC via Swayam