Key Osquery Improvements
Always Up to Date
Take advantage of emerging osquery capabilities faster with Kolide Launcher's auto-updater. Using The Update Framework (TUF) you can securely update osquery with ease.Learn More
Easy Packaging & Deployment
Deploying osquery and configuring it to communicate with a management server can be complicated. The Launcher includes a tool to help create Launcher packages for your organization.Learn More
gRPC Remote API
The Launcher includes a set of gRPC plugins for remote communication with a gRPC server. An implementation of the gRPC server is included with the Kolide Fleet osquery fleet manager.Learn More
Did we mention extra tables?
Osquery lets you to ask a lot of great questions, but what are the right questions? Kolide Launcher includes opinionated tables which aggregate useful information to solve real use-cases across your organization.
Discover whether a machine is susceptible to recently published exploits and vulnerabilities.
macOS Spotlight Quicklook
Leverage the power of macOS's native indexing to search for arbitrary file information and metadata across your device.
User - Device Correlation
Enumerate email addresses and other user artifacts to easily determine device ownership and usage.
Check the compliance status of important security practices recommended by OS vendors and infosec professionals.
Reduced Config Surface
The osqueryd binary was designed to be very configurable, which allows it to be used in very different environments. The Launcher wraps osqueryd configuration and exposes very high-level options that allow you to easily connect osquery to a server that is compliant with the gRPC specification (such as Kolide Fleet).View the Code