Hey, Mike Arpaia here. You&#x27;re totally right in that the SQL interface is very similar to WMI. Some core differences with osquery are:- it&#x27;s cross platform and supports many *nix operating systems- adding new tables is very well supported via a simple API: <a href="https://github.com/facebook/osquery/wiki/creating-a-new-table" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;facebook&#x2F;osquery&#x2F;wiki&#x2F;creating-a-new-tabl...</a>- several tools and utilities exist to leverage the power of SQL at scale (osqueryd is a full operating system instrumentation tool which allows you to use SQL to instrument your whole infra): <a href="https://github.com/facebook/osquery/wiki/using-osqueryd" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;facebook&#x2F;osquery&#x2F;wiki&#x2F;using-osqueryd</a>All in all, WMI is great, no doubt about it, but osquery has a few unique features which make it a cool, interesting product that you can use all across you internal infrastructure.

Since WMI is the Windows implementation of WBEM I had assumed there were ways to do WQL like stuff on other platforms already.

Cool, so basically it brings something like WQL to nix, because this is something that exists in Windows already:<pre><code> SELECT * FROM Win32_LogicalDisk WHERE FreeSpace &lt; 2097152</code></pre>

(Replying to PARENT post)

(Replying to PARENT post)

(Replying to PARENT post)