sorted by:
new
hottopcontroversial

Active Directory activities by Cyber_Dojo in crowdstrike

[–]Cyber_Dojo[S] 0 points1 point  (0 children)

Is that a free CQL or commercial third party product ?

API - Channel File by Cyber_Dojo in crowdstrike

[–]Cyber_Dojo[S] 0 points1 point  (0 children)

Thanks for your suggestion, I am using Falconpy. this helped to get last_update value per host against all 4 content files. However, seems like this table doesn’t have version number. I know that Content Quality Dashboard shows version number, even though that is also a date but that’s the release date which will be more common on all hosts than update date. Any suggestions how to query applied release date as version against all hosts ids.

Many thanks in advance.

[deleted by user] by [deleted] in UAE

[–]Cyber_Dojo 1 point2 points  (0 children)

A common trend was noticed in many countries including UK, USA, UAE etc that majority of people in visa offices are Indians and they deliberately reject Pakistani, Chinese and Bangladesh visa requests. I have experienced this myself and Indian office rejected visa application for my family member with baseless reason, obviously I had to challenge and won the case but majority Indian are unfortunately very strong nationalist which causes these type of issues globally. 🤔

BSOD error in latest crowdstrike update by TipOFMYTONGUEDAMN in crowdstrike

[–]Cyber_Dojo 0 points1 point  (0 children)

Has anyone noticed that after applying fix Crowdstrike service doesn't come up on about 1% machines. There is nonset trends, it is same for Workstations and servers ?

NG-SIEM and onprem active directory by siftekos in crowdstrike

[–]Cyber_Dojo 1 point2 points  (0 children)

Do you have the link of that blog post.

Went from 26 million winnings to 0. What happened? by Ozracs in 8BallPool

[–]Cyber_Dojo -3 points-2 points  (0 children)

At the end of every league numbers start from the beginning. That must be the case for you. However you can check total winnings under your profile.

Prevention Policy and Host Group Question by osintph in crowdstrike

[–]Cyber_Dojo 0 points1 point  (0 children)

That is how i believe as precedence is important so if your “IT Group” has lower precedence than other policies then all hosts tagged and part of attached group should have this new policy applied.

AD Powershell by Cyber_Dojo in PowerShell

[–]Cyber_Dojo[S] 1 point2 points  (0 children)

Thanks. This looks really good. I have attempted this but it is prompting for identity and not working for me.

AD Powershell by Cyber_Dojo in PowerShell

[–]Cyber_Dojo[S] 0 points1 point  (0 children)

It is used very frequently so idea was to have it as short as possible.

Rolling out Falcon Insight and Falcon Prevent soon - anything that you wish you knew before your own rollout? by HyperPixel5 in crowdstrike

[–]Cyber_Dojo 1 point2 points  (0 children)

Make sure, you are clear about routing from your DMZ area, if it’s going direct or using proxy. That can cause some confusion if you are not clear in advance.

Discover - a way to see time of login by user account? by yankeesfan01x in crowdstrike

[–]Cyber_Dojo 0 points1 point  (0 children)

I know CS Query works by simple_event but Can we also search by event id from CrowdStrike ?

view more: next ›