Skip to content
Request Your Demo

Add Cloud Provider Visibility To Your osquery Deployment

Extend osquery Beyond OS & Container Runtime

Gain a single source of visibility across host operating systems, container runtimes and cloud services data with cloud provider telemetry. Cloudquery runs as an extension to osquery and leverages the power of normalization so that new insights across your on-premise and cloud environments are just a SQL JOIN away. Like osquery, cloudquery data can be delivered to destinations including files, sockets, Kineses, and Kafka.

cloudquery Empowers Security Teams To:

  • Query cloud provider data in the same way you query operating systems and containers
  • Monitor configuration policies of your cloud resources and data
  • Visualize on-prem and cloud environments in a single place
  • Manage assets across AWS, Azure and GCP cloud providers in a single place
  • Observe trends through historical data analysis
  • Identify configuration drift
  • Detect misconfigurations, such as public S3 buckets, MFA enablement, and more
  • Conform to CIS Benchmark compliance standards
  • Perform real-time investigations and root cause analysis
cloudquery-how it works

How cloudquery Works

Cloudquery can be deployed as an osquery extension or Docker container, on-prem or in the cloud, and can be configured to fetch data from one or more cloud providers. Read more about cloudquery in this blog post written by its developers.

  • cloudquery fetches data for various resources using APIs supported by the cloud providers.
  • With AWS, you can authenticate using an instance profile, access keys, role ARN and external ID,  with options based on your security preferences.
  • If you connect multiple cloud provider accounts, information for each resource will be easily identifiable.
  • Your cloudquery data will be delivered to the destination deemed by your osquery configuration, available immediately.

Learn More & Contribute to cloudquery

Uptycs engineering resources are dedicated to advancing cloudquery’s open source capabilities along with meaningful contributions from the developer community. Near-term improvements will focus on new inventory tables for all cloud providers, new tables for events like AWS CloudTrail and VPC Flow Logs, as well as support for a where clause to help with filtering results.

Uptycs-Icons-GitHub cloudquery GitHub Repository Explore details, test & install cloudquery, or submit a contribution Visit GitHub
Uptycs-Icons-AWS cloudquery Tables for AWS Browse a current list of tables cloudquery supports for AWS. Clicking below will take you to GitHub. See Tables
Uptycs-Icons-GCP cloudquery Tables for GCP Browse a current list of tables cloudquery supports for Google Cloud Platform. Clicking below will take you to GitHub. See Tables
Uptycs-Icons-Azure cloudquery Tables for Azure Browse a current list of tables cloudquery supports for Azure Cloud. Clicking below will take you to GitHub. See Tables

Get cloudquery Now

Install cloudquery now to augment your existing osquery deployment with cloud provider metadata.