I've been exploring the integration of osquery with Elastic and was curious about a specific feature – the support for osquery's "carves table". The ability to use the carves table for file pulling can be incredibly beneficial for incident response.
As I was delving deeper into the documentation, I noticed that support for osquery's "carves table" isn't currently supported (Osquery FAQ).
I wanted to know if there are any plans on the horizon to integrate support for this feature in upcoming versions of Elastic Security?
Thanks in advance for any insights or updates regarding this.