Out of a discussion with Seth and Vlad this morning, I put togehter a project description for integrating Bro with osquery as a host-based sensor, using Broker for communication.
https://www.bro.org/development/projects/osquery.html
It's just a first stab, feedback welcome.
Robin
--
Robin Sommer * ICSI/LBNL * [email protected] * www.icir.org/robin
_______________________________________________
bro-dev mailing list
[email protected]
http://mailman.icsi.berkeley.edu/mailman/listinfo/bro-dev
