Document toolboxDocument toolbox

Devo 360 for CrowdStrike

Owned by Former user (Deleted)
Last updated: Nov 06, 2024 by Borja Moro Moreno
3 min read
[ 1 Installing Devo 360 for CrowdStrike ] [ 2 Accessing the application ] [ 3 Working with Devo 360 for CrowdStrike ]

Deprecated application

Note that this application is deprecated and no longer supported by Devo. For more information and alternative solutions, please visit the support site.

To help organizations secure and maximize CrowdStrike security solutions, Devo provides the Devo 360 CrowdStrike application, where cloud-native logging and security analytics meet CrowdStrike Infrastructure Data.

The Devo 360 for CrowdStrike application, available in Devo Exchange, is a pre-built knowledge base of dashboards and alerts that delivers real-time visibility and expedites analysis of Devo users’ entire CrowdStrike infrastructures. It helps you use the Devo Platform to optimize resources and detect threats targeting your Crowdstrike infrastructure.

Installing Devo 360 for CrowdStrike

Installing the application is easy thanks to Devo Exchange. All you need to do once you are in Exchange is find the application, click the Install button, and assign it to your role. You can find the whole process in Installing content.

Accessing the application

The application is easily accessible from the Navigation pane. Select Applications → CrowdStrike in the navigation pane.

Working with Devo 360 for CrowdStrike

In this application, you can find three different views, which are divided into tabs to better categorize the different information displayed and thus make it easier to find what you need. Visit the articles below for an in-depth analysis of the content each view presents:

Operations in all views

In all of the views, you have a time picker at the top left so you can visualize the data for the desired period. You can choose either a Time Preset from the list or you can select a Custom Range and specific date on the calendar.

There are several widgets in all views and all of them have some common features. You can see the query that feeds the widgets by clicking on the ellipsis menu and selecting Show Query.

They also have some particularities and they can be categorized into different types according to the degree of interaction they allow and the type of insight they offer about data.

Column and line charts provide insights into the data distribution over time. These are the widgets with the highest degree of interaction. See the picture below for the different actions you can carry out.

Simple value widgets show the count of a specific value so you can see key indicators at a glance.

Donut and pie charts provide an overview of the data distribution in relation to the total. You can select segments and hover over them to see a tooltip with the value and count they represent.

Column and line chart provides an overview of several series of data over a period of time. You can select segments and hover over to see a specific period of time in detail.