4/14/2023 0 Comments Falcon 4 original iso engines![]() When selected, closes the XSOAR incident, which is mirrored in CrowdStrike Falcon.Ĭhoose what to fetch - incidents, detections, or both.Ĭlick Test to validate the URLs, token, and connection. ![]() ![]() ![]() When selected, closes the CrowdStrike Falcon incident or detection, which is mirrored in Cortex XSOAR.Ĭlose Mirrored CrowdStrike Falcon Incident or Detection Parameterįirst fetch timestamp (, e.g., 12 hours, 7 days)Ĭhoose the direction to mirror the detection: Incoming (from CrowdStrike Falcon to XSOAR), Outgoing (from XSOAR to CrowdStrike Falcon), or Incoming and Outgoing (to/from CrowdStrike Falcon and XSOAR). Navigate to Settings > Integrations > Servers & Services.Ĭlick Add instance to create and configure a new integration instance. Configure Crowdstrike Falcon on Cortex XSOAR # The CrowdStrike Falcon OAuth 2 API integration (formerly Falcon Firehose API), enables fetching and resolving detections, searching devices, getting behaviors by ID, containing hosts, and lifting host containment. This Integration is part of the CrowdStrike Falcon Pack.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |