Solutions
Device management
Remotely manage, and protect laptops and mobile devices.
Orchestration
Automate tasks across devices, from app installs to scripts.
Software management
Inventory, patch, and manage installed software.
Extend Fleet
Integrate your favorite tools with Fleet.
Customers
Stripe + Fleet
Stripe consolidates multiple tools with Fleet.
Foursquare + Fleet
Foursquare quickly migrates to Fleet for device management.
What people are saying
Stories from the Fleet community.
Pricing
More
Tables
Fleet uses osquery tables to query operating system, hardware, and software data. Each table provides specific data for analysis and filtering.
Apple
Linux
Windows
ChromeOS
appcompat_shims
appcompat_shims
Application Compatibility shims are a way to persist malware. This table presents the AppCompat Shim information from the registry in a nice format. See http://files.brucon.org/2015/Tomczak_and_Ballenthin_Shims_for_the_Win.pdf for more details.
| Column | Type | Description |
|---|---|---|
| description | text | Description of the SDB. |
| executable | text | Name of the executable that is being shimmed. This is pulled from the registry. |
| install_time | integer | Install time of the SDB |
| path | text | This is the path to the SDB database. |
| sdb_id | text | Unique GUID of the SDB. |
| type | text | Type of the SDB database. |
Example
select * from appcompat_shims;Questions?
SOC2 Type 2
