Julian Wayte is a Security Solutions Engineer for Uptycs. In this role, he helps organizations architect security solutions - based on endpoint telemetry and automated workflows – in order to solve a variety of security use cases. Julian loves working with and teaching osquery. He has worked for 20 years in various customer facing, technical, IT roles helping organizations manage and secure their data.
What is osquery?
What is YARA?
Why are these two perfect?
osquery and YARA are complementary to each other because osquery is all about exposing endpoint telemetry across a fleet and some of that telemetry is exactly what’s needed to compare against YARA rules for identification of known malware.