-
### Description
Crowdstike is a leading vendor in cyber security. With such a wide customer base, integrating with Crowdstrike APIs will bring massive value to Fabric users.
This issue defines t…
traut updated
2 weeks ago
-
Hello,
The idea for this integration is to be able to ingest CrowdStrike logs into Wazuh.
It looks like the Falcon SIEM connector can create a data stream in a Syslog format.
We need to test …
-
We currently manage some falcon sensor deployments on AWS. We try to select the latest AMI possible but occasionally run into issues with selecting a new version with kernel falcon doesn't currently s…
-
It appears that the following paths that are off so they are not returning data:
```
GET /intel/combined/indicators/v1?filter=_marker%3A%3E%221234567890%22&limit=10000&offset=0&sort=_marker.asc
G…
-
Greetings!
Can Matano directly pull Crowdstrike Falcon api data, rather than relying on the SIEM connector?
The SIEM connector needs a running server to pull from the API, then a second agent t…
-
**Describe the bug**
When using PSFalcon 2.2.7, `Get-FalconAlert` with parameter `-All` results in an HTTP 500 response.
**To Reproduce**
`Get-FalconAlert -All`
**Expected behavior**
API endp…
-
### Add switch to test and report out both APIs
A lot of time installing and testing new frameworks/integrations is often spent initially on getting API Access, Keys, Proxies, et al sorted out.
…
-
**Describe the bug**
When I run `Get-FalconHorizonIom -All -Detailed`, the following error is produced. The same behavior occurs when using `Get-FalconHorizonIoa`, but the affected fields may be diff…
-
Add in this issue Internet resources and ideas that we might want to include in the next issue.
-
I'm running the latest version of `misp_import.py` (did a git pull this morning), when I'm running `misp_import.py --clean-indicators` I'm getting the following error messages when the step get to:
…