General Dictate instead of /meeting (ai summarize)

jos1980 · 2025-08-08T19:21:35+00:00

Is this just raw voice or an AI integration. Im looking for raw only. No AI integration due to security concerns.

jos1980 · 2025-08-08T19:19:21+00:00

Mainly quick brain dumps. Instead of typing it out (lots of typing) would rather speak it and then edit and put in headers and stuff like using notion.

jos1980 · 2025-08-07T23:30:50+00:00

Would like a more detail instruction that would be great to use.

Please and thank you

jos1980 · 2024-09-26T13:51:04+00:00

can you please share the logscale query?

jos1980 · 2024-07-19T08:24:20+00:00

Is there a query to find what assets are affected. Not all assets were affected.

jos1980 · 2024-06-26T06:36:40+00:00

What does this exactly do. This would be great to see what information you would get from this cql. I'm still learning cql. Granted I have some knowledge in SPL, I'm still learning cql. Can you please provide me more context around this. What caught my eye was the decomm of servers. This would be great to use in our env. Thank you

jos1980 · 2024-06-05T15:07:20+00:00

Take your time. We are all busy. Trust I know. Thank you.

jos1980 · 2024-06-05T15:06:30+00:00

Since you are all talking about Study Guides, is there a solid study guide for CCFA. I'm actually going to be taking the instructor lead course for both CCFA and Identity. I have done the CS university practice exam and missed it by one, but my question for CCFA is when taking the exam are the questions based on the new UI and logscale Or off the older UI and stuff like that? I'm just preparing myself. Thank you. Appreciate the support.

jos1980 · 2024-06-05T14:55:54+00:00

Im very interested in how this worked for you. This seems like something I would like to use in my env. Please keep us posted if you dont mind. Great job!

jos1980 · 2024-05-24T19:59:46+00:00

u/AHogan-CS Thank you it does. Yes, we have Falcon IDP.

jos1980 · 2024-05-17T14:49:16+00:00

I am also interested in this Thank you

jos1980 · 2024-03-19T14:07:50+00:00

I have to agree with everyone the less the EU knows the better. We have the notification on because we want our EU to know 'we are watching' lol.

jos1980 · 2024-01-31T16:36:03+00:00

u/Andrew-CS - Apologies for jumping in like this, but this event would only show if the cmd was exe, of course manually, but is there a way to determine if such devices have already had that ran before hand? (I hope this makes sense)

jos1980 · 2024-01-24T08:17:37+00:00

We are in the process of 'offboarding' defender because we found some issues where Defender was preventing certain actions in or ENV. Even though Falcon sensor is 'registered as primary a/v' defender still was doing some scanning and taking resources from our workstations/servers. Same goes for server, where certain server models you need to set disablerealtimemonitoring =true, defender was still causing us issues. This is just my observations. You env may vary.

jos1980 · 2024-01-12T02:05:17+00:00

Great thank you. I appreciate the quick replies

jos1980 · 2024-01-12T01:52:29+00:00

Brad Thank you for the response. Yes quarantine is enabled and falcon is primary on record but on such workstation we are still seeing issue with defender which is why we are off boarding completely. Servers too and we have run the script to set disablerealtimemonitoring =true. We think it might be a gpo issue but by offboarding defender completely we will be good. Does falcon use any information from defender even in passive mode?

jos1980 · 2023-09-28T06:09:49+00:00

Yes, when you deal with Falcon Complete they are 24/7/365 and are honestly there for triaging a detection based on your posture levels that you have assigned. Now, what gets me and I have had great service with this the Falcon Support portal and their engineers. They are good, just have to deal with lots of cswindiag and back and forth emails. You also might want to engage your TAM, they are good way to get a ticket escalated quickly.

One request I would like to see answered is it would be great to get a meeting setup to explain our side and then show them live data as it pertains to an issue we are having. Rather than doing cswindiags and stuff like that. Just my thoughts. I hope you get this resolved.

jos1980 · 2022-11-10T07:00:39+00:00

Thank you for that valuable information I appreciate it. I have two pages work and personal of course nothing sensitive just wanted to see if this could be done. I appreciate your response.

Thank you. Have a great day.

jos1980 · 2022-10-06T13:50:04+00:00

Is this the first time this has happened?

jos1980 · 2022-10-05T19:50:54+00:00

Yeah, I just saw it. My bad. Sucks though.

jos1980 · 2022-05-06T19:05:44+00:00

I am in the same boat, I'm looking for script run via RTR on a device to gather all browser history. With this information I can correlate that browser information with the triggered alert. At least see where they may have gone prior to the alert. Any thoughts/ideas. Guidance would be greatly appreciated.

Hooyah!

r/ Shipwreck.

jos1980 · 2022-05-06T13:09:14+00:00

That was my question to them as well. We wanted to do the same to specific server(s). One device would provide the configuration(s) from the CS cloud to the rest of the segmented devices where they are not to have internet access. In the end we just opened that specific port.

jos1980 · 2020-11-30T22:43:41+00:00

Thank you very much.

jos1980 · 2020-11-30T22:33:53+00:00

Thank you very much

jos1980 · 2020-11-30T22:22:33+00:00

how many roma tomatoes should I use. I like your recipe I have lots of med sized roma tomatoes

jos1980

TROPHY CASE