Serverless Osquery Backend and Big Data Exploration
Geller Bedoya at BSidesSF 2020
osquery is an open-source community driven endpoint for intrusion detection. Deploying at scale requires endpoint management, data transport and additional considerations. We'll deploy a serverless osquery backend, discuss the challenges at scale and explore processing of large-scale data.