steampipe-plugin-aws VS Fleet

be mindful of its AGPLv3 https://github.com/turbot/steampipe/blob/v0.21.8/LICENSE (AFAIK v0.4.3 is the last MIT release https://github.com/turbot/steampipe/blob/v0.4.3/LICENSE ) and the actual providers are Apache 2 <https://github.com/turbot/steampipe-plugin-aws/blob/v0.131.0...> (but I don't know if provider drift makes them compatible with 0.4 or not)

iasql seems to be AWS only, but good for them for taking this on:

It's a very similar approach querying any of the plugins (AWS, Azure, etc) as it's a common interface to query those APIs with SQL. The AWS plugin is one of the more widely used in the community, along with it's associated mods to visualize resources and compliance to security & ops benchmarks.

~$ steampipe plugin install aws aws [====================================================================] Done Installed plugin: aws@latest v0.78.0 Documentation: https://hub.steampipe.io/plugins/turbot/aws

Setting up CloudTrail is essential to understanding your users' AWS API activity: what happened, by whom and from where. One field in the event logs is source IP address. But that doesn't tell you where in the world those AWS API actions are coming from. In this post we'll show how to use Steampipe with the AWS and ipstack plugins to enrich your CloudTrail events with location information.

In my last post I showed how to install Steampipe and use it to instantly query your AWS APIs using SQL right in AWS CloudShell. For example here's a query that uses the Steampipe AWS plugin to query which AWS IAM users have MFA enabled:

It takes just a few seconds to install Steampipe itself, along with the AWS plugin that maps AWS API calls to Postgres tables.

Hint: We actually have some aws_cost_* tables in active development in this branch. Not ready for release yet, but we're excited about how they are coming together!

Yo! We're working on the fix. You can track progress here: https://github.com/fleetdm/fleet/issues/17165

Disclosure #2: I'm the CEO

One of my fav things about this is that we're solving the "Linux MDM problem". As a person who likes to use Linux, it's exciting that, no matter how big the company gets, I can still use whatever OS I want at work (and still be "offboard-able", with everyone passing their audits.)

Source code for Fleet is available at https://github.com/fleetdm/fleet.

It is indeed early stage. The oldest company is Fleet https://fleetdm.com/ who do open source device management and raised at $100m post in 2022 https://techcrunch.com/2022/04/28/fleet-nabs-20m-to-enable-e...

Thanks for clarifying. You may want to look into Fleet at the link below. The intent of the question wasn't to voice an opinion but to determine if any opensource solutions that cost more to support via self-hosting would incur more costs than Intune licenses if it's only for one customer.

Looking at Fleet for managing primarily Mac-based environments.

* https://github.com/fleetdm/fleet

Supposedly, One can search github using `language:typescript filename:docker-compose.yml stars:>1000` but it's not working for me somehow.

Osquery + Fleet. https://osquery.io/ https://fleetdm.com/, using the two allows you to build a query to answer what ever questions you (or an auditor) might have about your environment.

Also see Fleet (https://fleetdm.com/) for an open source self-hosted solution. I'm currently using this at a small company to query / enforce policies across a bunch of Windows laptops.