OSQuery Training
  • ℹī¸Info
    • What is OSQuery?
  • đŸ–Ĩī¸Installation Guides
    • đŸĨDebian + Ubuntu Based Systems
    • 🎩Red Hat, CentOS and Fedora Systems
    • đŸĒŸWindows Based Systems
  • 🔰Using OSQuery
    • Basic Queries
  • 💠FleetDM Guides
    • FleetDM Setup
    • Joining Hosts to Fleet
    • Creating New Queries on Fleet
  • 📗Lesson 1
    • Mespinoza/Pysa Ransomware
    • Hunting Mespinoza/Pysa
  • 📙Lesson 2
    • Pay2Key Ransomware
    • Hunting Pay2Key
Powered by GitBook
On this page
  1. Installation Guides

Debian + Ubuntu Based Systems

OSQuery Installation Guide for Debian or Ubuntu Systems

PreviousWhat is OSQuery?NextRed Hat, CentOS and Fedora Systems

Last updated 2 years ago

Run these following commands as the 'root' user on a Debian or Ubuntu based system to install OSQuery.

export OSQUERY_KEY=1484120AC4E9F8A1A577AEEE97A80C63C9D8B80B
apt-key adv --keyserver keyserver.ubuntu.com --recv-keys $OSQUERY_KEY
add-apt-repository 'deb [arch=amd64] https://pkg.osquery.io/deb deb main'
apt-get update
apt-get install osquery

Test to make sure it was installed correctly by running OSQuery CLI on the local machine. The osqueryi command will evoke an OSQuery interactive shell that queries can be run in.

OSQuery is now successfully installed on this system.

đŸ–Ĩī¸
đŸĨ
Hint: Use control + D to quit out of OSQuery CLI