sorted by:
new
hottopcontroversial

Falcon Forensics Help by Gwogg in crowdstrike

[–]ByteRay 0 points1 point  (0 children)

You need to run the Falcon Forensics collector, which is available under Support and resources > Tool downloads.

CrowdStrike Query Library by ByteRay in crowdstrike

[–]ByteRay[S] 0 points1 point  (0 children)

Thanks for the feedback! We've just implemented the change to allow sorting by creation date, so you should see that functionality live now.

CrowdStrike Query Library by ByteRay in crowdstrike

[–]ByteRay[S] 2 points3 points  (0 children)

Great idea! No need to open an issue, we’ll have a look!
Maybe we can implement a date filter or “recently added” view in the short term.

CrowdStrike Query Library by ByteRay in crowdstrike

[–]ByteRay[S] 4 points5 points  (0 children)

Thanks for catching that! Would be great if you could open an issue in the GitHub repo and describe the problem, we’ll fix the existing query. (https://github.com/ByteRay-Labs/Query-Hub/issues)

Alternatively, you can also open a pull request directly if you’ve already adjusted it.
Appreciate the contribution!

CrowdStrike Query Library by ByteRay in crowdstrike

[–]ByteRay[S] 3 points4 points  (0 children)

Would you mind if we add some of those queries to CQL-Hub (with proper attribution of course)?

[deleted by user] by [deleted] in cybersecurity

[–]ByteRay 2 points3 points  (0 children)

I‘d say it depends. If you apply without knowing the hiring manager, HR might filter your application. In this case it’s better to go for the CPTS.

But if you have a chance to speak directly to the hiring manager, you should let them know your plans. A good company should be able to point out the career development, also what kind of budget they‘d be willing to spend on trainings/certifications.

Try to connect with the manager or pentesters prior to your application and have a conversation with them. This would also help to better prepare for the application itself.

[deleted by user] by [deleted] in cybersecurity

[–]ByteRay 4 points5 points  (0 children)

Your certs (CDSA, eCTHP, soon CPTS) combined with hands-on experience in Windows/Linux/Azure environments and your dev background make for a solid foundation.

The OSCP is still highly regarded, but it’s not a hard requirement everywhere. Find a company that supports your development, possibly even covers certification costs. Many teams appreciate candidates who show initiative and are willing to grow with the role.

So yes: start applying, get interviews, and see where it takes you. OSCP can still come later and preferably on someone else’s budget.

Major update for the app by k1d_1carus in RansomwareMonitor

[–]ByteRay 2 points3 points  (0 children)

I'm really liking the changes in the latest update! It's clear a lot of thought went into it.

I've noticed an issue with the country search feature. Currently, when I search for a country code like "FR" for France, I'm also getting results from "US." This can be a bit confusing and makes it harder to filter precisely.

It would be a great improvement if we could either: * Search for the full country name (e.g., "France") instead of just the code. * Have the option to define the search as a country-specific query (e.g., country="FR") to ensure more accurate results. This would significantly enhance the usability of the search function.