osquery is a distributed machine querying application that is built on raft. Usage: in a terminal window first run this

$ osquery -http=":8081" -peers="," -id 2

in a seperate termnial window run

$ osquery -http=":8080" -peers="," -id 1

you'll get something like this;

Enter Type (file_contains, file_exists, process_running):

follow the instructions.


type Query

type Query struct {
    Type        string
    Path        string
    Check       string
    Sender      string
    Msg         string
    Id          uint64
    ResponderID int64

func (*Query) Do

func (q *Query) Do() error