/
Threats in CrowdStrike
Document toolboxDocument toolbox

Threats in CrowdStrike

Owned by Former user (Deleted)
Last updated: May 10, 2023 by Juan Tomás Alonso Nieto (Deactivated)
1 min read

The Threats tab contains data on alerts triggered in Crowdstrike, providing detailed information on events CrowdStrike considers EDR threats. This gives a further notion of the overall EDR health. You can use the insights for further analysis and action.

  • Detection by severity:

    • low

    • critical

    • medium

    • high

  • Detection by:

    • tactic

    • technique

    • severity

    • objective

    • detection name

    • operation

    • user

    • severity

    • summary

    • based on command line execution

    • SHA and MDS detections

    • Computer

  • Trading IOCs

  • Blocked detections

  • File-based detections

 

Related content

Devo 360 for CrowdStrike
Devo 360 for CrowdStrike
Devo latest
Read with this
Threats - AWS
Threats - AWS
Devo latest
More like this
Analysis in CrowdStrike
Analysis in CrowdStrike
Devo latest
Read with this
Threats - Palo Alto
Threats - Palo Alto
Devo latest
More like this
Overview in CrowdStrike
Overview in CrowdStrike
Devo latest
Read with this
Entity Analysis
Entity Analysis
Devo latest
More like this