Container Security with Real Time Response
Introduction CrowdStrike goes beyond traditional endpoint protection by providing extensive visibility and remediation capabilities across multiple platforms, such as Windows, MacOS, and…
Tech Center
Cloud Security Posture Management with CrowdStrike
Introduction As companies expand their use of public cloud infrastructure, not only does the attack surface grow so does the risk of…
How CrowdStrike Provides Visibility for Cloud Security
Introduction With the rapid adoption of cloud deployments, many organizations are struggling to implement consistent security standards. This document and video will…
How to Enable Kernel Exploit Prevention
Introduction This document and video will demonstrate how to enable kernel exploit prevention to protect hosts from sophisticated attacks that attempt kernel…
How to Consume Threat Feeds
Introduction As part of the CrowdStrike API, the “Custom IOC APIs” allows you to retrieve, upload, update, search, and delete custom Indicators…
How to Integrate with your SIEM
Introduction The Falcon SIEM Connector provides users a turnkey, SIEM-consumable data stream. The Falcon SIEM Connector: Transforms Crowdstrike API data into a…
Prioritize Patching with Spotlight’s Exploited Vulnerabilities Feature
Introduction This document and video will demonstrate how to use Falcon Spotlight to find exploitable vulnerabilities in your environment to help prioritize…
Fast Response to Sophisticated Threats: OverWatch Incidents
Introduction Threat hunting leverages skilled defenders to hunt actively for the faintest signs of advanced attacks. OverWatch is CrowdStrike’s managed threat hunting…
Offline Protection for Remote Systems
Introduction Remote working has many employees not only working from home but really from anywhere. Services necessary to work remotely such as…
PowerShell Hunting with CrowdStrike Falcon
Introduction Threat hunting is the active search for new and novel attack behaviors that aren’t detected by current automated methods of prevention…