CrowdStrike

Crowdstrike FLTR Core Package

Queries, dashboards, and related content for CrowdStrike FLTR, see Crowdstrike Core FLTR Package foor more information.

Crowdstrike FLTR (Falcon) Identity Protection Package

Queries and dashboards for Falcon Identity Protection, see Crowdstrike Falcon Identity Protection for more information.

Crowdstrike IOC Package

A quick start package for working with the CrowdStrike IOC feed in LogScale, see Crowdstrike IOC for more information.

Crowdstrike Falcon Devices Package

Provides preconfigured dashboards and a parser for CrowdStrike Falcon Device Data, see the package readme file for more information.

Crowdstrike FDR Package

Parser and related content for CrowdStrike Falcon telemetry data, see the package readme file for more information.

Crowdstrike FLTR LOLbins Package

Queries based on "8 LOLBins Every Threat Hunter Should Know" by CrowdStrike Falcon OverWatch Elite, see the package readme file for more information.

Crowdstrike FLTR Tutorial Package

Dashboard-based tutorial for using FLTR, see the package readme file for more information.

Crowdstrike Intel Indicators Package

Provides tools for working with CrowdStrike Intelligence Indicators, see the package readme file for more information.

Crowdstrike SIEM Connector Package

A parser and dashboards for data from the CrowdStrike SIEM Connector, see the package readme file for more information.

Crowdstrike Spotlight Package

Provides preconfigured dashboards and a parser for CrowdStrike Spotlight Vulnerability Data,see the package readme file for more information.

Falcon LogScale Documentation

Introduction and Overview

Reference Information

Knowledge Base

LogScale Notices

Release Notes

LogScale Training

CrowdStrike

Enter search term