[mrmondo]

Neat - in production we use Foreman which gathers facts from our 300~ servers every 15 minutes when puppet runs.

This could be a nice little alternative for fact finding on smaller deployments or for headless nodes.

[mephux]

Indeed! Whats also great about osquery is the security related tables available. I.e process_memeory_map, crontab, passwd_changes, shell_history etc. A lot of the stuff osquery gets is right from the kernel (system calls etc.)