-
The latest version of the API does not return an exported workflow that is capable of being reimported..
https://github.com/CrowdStrike/gofalcon/blob/480a3051e3ed00874e51ea01a0427d1776dda493/falcon…
-
### Description
Hi Team,
We configured add-on "Crowdstrike Falcon Identity Protection add-on for Splunk" in Splunk to get crowdstrike identity risk score details. But we see the scores in splunk…
-
We currently manage some falcon sensor deployments on AWS. We try to select the latest AMI possible but occasionally run into issues with selecting a new version with kernel falcon doesn't currently s…
-
I created the following `FalconImageAnalyzer` resource:
```yaml
apiVersion: falcon.crowdstrike.com/v1alpha1
kind: FalconImageAnalyzer
metadata:
name: falcon-image-analyzer
spec:
installNa…
-
**Describe the bug**
It looks like most scripts lack the --base_url / -b argument capability for those who are in GovCloud. Currently, there isn't a way to consistently use falconpy to connect to "ap…
-
## Description
No matter what EPOCH time you set the timestamps to it imports reports all the way back to 2017.
## Environment
1. OS (where OpenCTI server runs): Pop!_OS 22.04 LTS
2. OpenCTI…
-
**Describe the bug**
When using PSFalcon 2.2.7, `Get-FalconAlert` with parameter `-All` results in an HTTP 500 response.
**To Reproduce**
`Get-FalconAlert -All`
**Expected behavior**
API endp…
-
Thank you so much for the code. Blocking bad stuff at the network level seems so powerful.
However when I ran this code, I encountered following error. Wondering if I could get any input to resol…
-
Greetings!
Can Matano directly pull Crowdstrike Falcon api data, rather than relying on the SIEM connector?
The SIEM connector needs a running server to pull from the API, then a second agent t…
-
https://github.com/CrowdStrike/falcon-scripts/blob/main/powershell/migrate/falcon_windows_migrate.ps1
Script should be enhanced with an additional command line option to specify a local repository …