👋We’re launching free support for BYOD Android devices and looking for early feedback. Interested?

Fleet logo
Menu An icon indicating that interacting with this button will open the navigation menu.
Fleet logo An 'X' icon indicating that this can be interacted with to close the navigation menu.
Device management + MDM Orchestration + monitoring Software management + CVEs, usage, app library Integrations
Get started Guides Vitals Queries Policies Software OS settings Data tables API SUPPORT Chat Contribute Release notes "Why is Fleet on my computer?" Get your license
Stories
What people are saying News Ask around Take a tour Meetups COMPANY Origins   (Fleet & osquery) The handbook Logos/artwork Why open source?
Pricing Try it yourself

Vitals

Fleet’s built-in queries for collecting and storing important device information.

macOS Apple

Linux Linux

Windows Windows

Chrome ChromeOS

Osquery flags

click to open the table of contents

Osquery flags

Retrieves the values of osquery configuration flags related to query scheduling, configuration updates, and logging intervals for active processes.

SELECT 
  name, value
FROM osquery_flags
WHERE name IN ("distributed_interval", "config_tls_refresh", "config_refresh", "logger_tls_period")

$service = Get-CimInstance Win32_Service -Filter "Name='osqueryd'"
if (-not $service) {
    Write-Error "osqueryd service not found."
    exit 1
}

$cmdLine = $service.CommandLine

$flagNames = @("distributed_interval", "config_tls_refresh", "config_refresh", "logger_tls_period")
$result = @()

foreach ($flag in $flagNames) {
    # Match a flag of the form --flag=value or --flag value
    $pattern = "--" + [regex]::Escape($flag) + "(?:=|\s+)(\S+)"
    $match = [regex]::Match($cmdLine, $pattern)
    if ($match.Success) {
        $value = $match.Groups[1].Value
    }
    else {
        $value = ""
    }
    $result += [pscustomobject]@{
        Name  = $flag
        Value = $value
    }
}

$result | Format-Table -AutoSize
An icon indicating that this section has important information

PowerShell commands are currently work in progress, contributions welcome.

An icon indicating that this section has important information

Bash commands are currently work in progress, contributions welcome.

Vitals

Battery Disk encryption Disk space Google Chrome profiles MDM MDM configuration profiles MDM Disk encryption key file MDM Disk encryption key file lines Munki info Network interfaces Orbit information Operating system information Osquery flags Osquery information Scheduled osquery statistics Software Software codesign Software Firefox VScode extensions Uptime Users
Disk encryption Disk space Google Chrome profiles Network interfaces Orbit information Operating system information Osquery flags Osquery information Scheduled osquery statistics Software VScode extensions Uptime Users
Battery Disk encryption Disk space Google Chrome profiles MDM Network interfaces Orbit information Operating system information Operating system version Osquery flags Osquery information Scheduled osquery statistics VScode extensions Software System information Uptime Users Windows update history
ChromeOS profile user info Google Chrome profiles Network interfaces Operating system information Software Users