Solutions
Device management
Remotely manage, and protect laptops and mobile devices.
Orchestration
Automate tasks across devices, from app installs to scripts.
Software management
Inventory, patch, and manage installed software.
Extend Fleet
Integrate your favorite tools with Fleet.
Customers
Stripe + Fleet
Stripe consolidates multiple tools with Fleet.
Foursquare + Fleet
Foursquare quickly migrates to Fleet for device management.
What people are saying
Stories from the Fleet community.
Pricing
More
Fleet user stories — Wayfair
{{articleSubtitle}}
Mike Thomas
Docs
REST API
Guides
Get a demo
Suggest an edit
Fleet user stories — Wayfair
{{articleSubtitle}}
Mike Thomas
Fleet user stories
Ahmed Elshaer — DFIR, Blue Team, SecOps @ Wayfair
This week, I spoke with Ahmed Elshaer (DFIR, Blue Team, SecOps) about how Wayfair uses Fleet and osquery:
How did you first get started using osquery?
We were looking for a tool that provided linux logging, and incident response capabilities. Osquery had most of the requirements like logging, ability to scope an incident, interrogate systems but it’s missing the response or the ability to do an action on the remote systems.
Why are you using Fleet?
We have POC’d couple free options and Fleet was the highest engagement and continuous development although it may be missing some features.
How do your end users feel about Fleet?
We are using Fleet only in the remote query on scale, so we find Fleet is doing a good job in that area, and it’s easy to use for any new members.
How are you dealing with alert fatigue and false positives from your SIEM?
We have lots of queries that generate logs, but the ones that go into alerts are verified queries that are intended to hunt malicious or suspicious activity. Those activities are known based on public threat reports, Mitre Attack, or internal Red Team exercise.
SOC2 Type 2
