osquery kibana dashboard
Download Now

Description

This is an Kibana dashboard example visualizing performance metrics of osquery. The example has been created as part of this blog article. In order to get the right data for the dashboard you need to follow the guide in that article.

The recommended way to get osquery data into Elasticsearch is using the Filebeat module

What is osquery?

osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework.

osquery exposes the operating system as a high-performance relational database. This allows you to write SQL-based queries to browse operating system data. With osquery, SQL tables represent abstract concepts such as running processes, loaded kernel modules, open network connections, browser plug-ins, hardware events, or file hashing. SQL tables are implemented through simple plug-ins and extension APIs. Various tables already exist, and more are being written: https://osquery.io/schema.

Source

Originally found at https://medium.com/fleetdm/build-an-osquery-performance-dashboard-1b1762ee3880

Tested versions 7.13
ECS compliant No

You must log in to submit a review.

Related downloads

canvas_office

Office display canvas example

content share admin by content share admin

Kibana canvas example showing an office screen with weather, news and stock information

Download Now
Elastic security

Sigma Windows Process Creation detection rules

content share admin by content share admin

A collection of rules based on the Sigma rules for Windows (process creation folder) based on Winlogbeat data .

Download Now
Elastic security

Sigma detection rules for proxy server logs

content share admin by content share admin

A collection of rules based on the Sigma detection rules for proxy server and web server looks, e.g. zeek or suricata.

Download Now
Elastic RUM dashboard

RUM extension dashboard

content share admin by content share admin

This dashboard provide deeper insight into the real user monitoring data collected by Elastic RUM.

Download Now
Vega Compound gauge

Vega Compound Gauge

content share admin by content share admin

This is a compund gauge visualization made with Vega. Its very helpful for visualization of percentage values.

Download Now
ama-canvas

Ask Me Anything Booth – Canvas Example

content share admin by content share admin

This is an example canvas page that shows how to visualize using canvas in general.

Download Now

These downloads could be also interesting for you

vega clock

Vega Clock UTC

content share admin by content share admin

This is a working clock visualization in UTC time.

Download Now
Terraform Elasticsearch

Terraform Elasticsearch environments

fero

Terraform example scripts to deploy Elastic Cloud Clusters + all necessary components in AWS and GCP

Download Now
Lens Conversion Rate

Lens Conversion Rate

content share admin by content share admin

Lens conversion rate for RUM data using Lens Formulas

Download Now
osquery kibana dashboard

osquery performance dashboard

content share admin by content share admin

Kibana Dashboard example to visualize osquery performance

Download Now
kubernetes architecture

Kubernetes architecture overview

content share admin by content share admin

Vega visualization to show the dependencies between the different Kubernetes components in a single visualization

Download Now

Kibana alerting enhancement

content share admin by content share admin

This bundle enhances the Kibana alerting experience. Storing all relevant information in indices and visualize the data in dashboards.

Download Now