OSQuery Training
  • ℹī¸Info
    • What is OSQuery?
  • đŸ–Ĩī¸Installation Guides
    • đŸĨDebian + Ubuntu Based Systems
    • 🎩Red Hat, CentOS and Fedora Systems
    • đŸĒŸWindows Based Systems
  • 🔰Using OSQuery
    • Basic Queries
  • 💠FleetDM Guides
    • FleetDM Setup
    • Joining Hosts to Fleet
    • Creating New Queries on Fleet
  • 📗Lesson 1
    • Mespinoza/Pysa Ransomware
    • Hunting Mespinoza/Pysa
  • 📙Lesson 2
    • Pay2Key Ransomware
    • Hunting Pay2Key
Powered by GitBook
On this page
  1. Installation Guides

Windows Based Systems

OSQuery Installation Guide for Windows Systems

PreviousRed Hat, CentOS and Fedora SystemsNextBasic Queries

Last updated 3 years ago

Navigate to OSQuery's download page (should look similar to the screenshot below) and download their msi package for Windows.

Once the download is complete, run the msi installer. Accept the terms and agreements, select the default install location, then install. Quick note, local admin privileges will be needed on the Windows box OSQuery is being installed on for it to run the install successfully.

Test to make sure it was installed correctly by running OSQuery CLI on the local machine. The osqueryi PowerShell command will evoke an OSQuery interactive shell that queries can be run in.

OSQuery is now successfully installed on this system.

đŸ–Ĩī¸
đŸĒŸ
OSQuery Download Page
Hint: Use control + D to quit out of OSQuery CLI