Host-based detection, forensics, and response -- all of these features are available in a free and open-source tool called Velociraptor. In this presentation, we'll cover how security teams can leverage the power of Velociraptor and VQL (Velociraptor Query Language) to unearth host artifacts, easily search across thousands of endpoints for indicators, perform active response, associate findings to other datasets, and increase overall endpoint visibility.