Fast and efficient osquery management.

osctrl is a fast and efficient osquery management solution, implementing its remote API as TLS endpoint.

With osctrl you can monitor all your systems running osquery, distribute its configuration fast, collect all the status and result logs and allow you to run on-demand queries.

You can use docker to run osctrl and all the components are defined in the docker-compose-dev.yml that ties all the components together, to serve a functional deployment.

Ultimately you can just execute make docker_dev and it will automagically build and run osctrl locally in docker, for development purposes.

You can find the documentation of the project in https://osctrl.net

Find us in the #osctrl channel in the official osquery Slack community (Request an auto-invite!)

osctrl is licensed under the MIT License.

If you like osctrl you can send BTC or ETH donations to the following wallets:

bitcoin:bc1qvjep6r6j7a00xyhcgp4g2ea2f4pupaprcvllj5	ethereum:0x99e211251fca06286596498823Fd0a48785B64eB