Scheduling and Postman Collections

[Ankit singh]

Hi All, 

I am new to Velociraptor and already loving it.

I was going through all the documents for VR but could not find two things

1) How to schedule a hunt to run it n number of times in a day periodically using UI?

2) Do we have postman collection for API's which can be used to automate using some other scripting language like python etc.

Regards,

ANkit

[Mike Cohen]

Hi Ankit,

   You can schedule a hunt using custom VQL - Simply customize the Server.Monitoring.ScheduleHunt artifact to launch what you need when you need it. 

Note that this will create a new hunt each time - a hunt is simply a logical collection of the same artifact across multiple clients. Usually when people want to run multiple hunts per day they want to detect a change in something - this is better done using client side monitoring artifacts than using hunts because you get only the events about modification from the clients.

I am not sure what you mean by postman collection - but you can use python via the API using pyvelociraptor (see https://velociraptor.velocidex.com/velociraptor-post-processing-with-jupyter-notebook-and-pandas-8a344d05ee8c for example).

Thanks

Mike

Mike Cohen  Digital Paleontologist,  Velocidex Enterprises M  ‭+61 470 238 491‬  E mi...@velocidex.com

--
You received this message because you are subscribed to the Google Groups "velociraptor-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to velociraptor-dis...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/velociraptor-discuss/c8022fed-651e-4317-8ac2-923c747ec222n%40googlegroups.com.

[Ankit singh]

Thank you Mike, Appreciate it. I will check Server.Monitoring.ScheduleHunt articat.

Btw by postman collection, I meant REST API collection. But no worries now. I have got my answer. :)

Best,

ANkit

--

Warm Regards,

Ankit singh