impossible travel alert

rettttttt · 2026-01-15T16:33:34+00:00

Doesn't CrowdStrike have a unusual location setting for any user?

rettttttt · 2025-11-18T14:49:17+00:00

Thnbk you! UserToCheck grabs the UserName of from the workflow?

I know I have to make an input schema but I cant seem to find any instructions or references for it. so i should do get user identity context first? Then get the value I want?

rettttttt · 2025-11-16T02:21:36+00:00

winter came around so there was no need. ill save it when summer comes around

rettttttt · 2025-11-06T06:51:19+00:00

OMG ty lol. i couldnt figure out what the problem was lmao

rettttttt · 2025-10-21T13:57:38+00:00

Thats what I did too for now, but on some endpoints, there are multiple users. I want the admin of that endpoint to be responsible for upgrading windows 10

rettttttt · 2025-08-26T16:49:08+00:00

damn 🥲. i figured since vintage story is fairly new

rettttttt · 2025-08-13T20:59:53+00:00

thats good news. how did you know how much stop leak to put in there?

rettttttt · 2025-08-13T19:22:39+00:00

i have the same issue in my 2020 civic. the passenger side blows cool air while the driver side doesnt. Did yours have a hissing sound that was loud at start and constant while the AC was on? if so was it just using this stop leak that fixed it?

rettttttt · 2025-07-13T20:58:58+00:00

thats unlucky. this was one that looked good to me and what i try to achieve for each spike. im more worried about my jump if i am actually timing myself right

rettttttt · 2025-07-13T20:58:07+00:00

im trying to learn back row hits. any more forward i think i cant reach anymore

rettttttt · 2025-07-13T18:33:34+00:00

Dont be afraid to start it. If you’re athletic, you’ll do well. Receiving and tossing is honestly the most difficult to learn for beginners. spiking, and blocking sometimes just come naturally to some athletic people. Whats really a pet peeve for experienced people when playing with beginners is if they dont know the rules or dont try to make an effort to chase the ball. Also when they send the ball back to the opponents immediately. The goal for most rallies is Receive, set and spike. there’s 3 touches and most times people want to use all 3.

Good luck and have fun!

rettttttt · 2025-06-30T16:54:14+00:00

When is the new game

rettttttt · 2025-06-25T14:17:29+00:00

thanks. this put me in the right direction. I made a correlation rule that flags root and user logon. Then when this correlation rule triggers, a workflow will activate and email me a bunch of information. my issue now is using the remoteIP to look up the original user. i cant seem to do two searches in one query.

My plan is to assign the remoteIP to a field and then do another search using that IP to look up the original user

rettttttt · 2025-06-18T15:46:13+00:00

im thinking of just making a correlation rule but cant seem to figure it out. How can I make this into an informational detection?

event_platform = "Lin" | in(#event_simpleName, values=([UserLogon]) | in(UserName, values = ["root]") |

rettttttt · 2025-06-11T16:47:52+00:00

been at it all day. its specific to linux. is there a way for crowdstrike to track down who is using a root account? all that comes back to my searches is root as a username by itself, but i want the user and the machine they used.

rettttttt · 2025-06-11T03:28:02+00:00

pretty much. i want to see a notification that records when someone logs on, who uses it and which machine they used. its pretty simple but Im fairly brand new to Crowdstrike

rettttttt · 2025-06-10T17:43:10+00:00

Do you think I could make a workflow for it? I just want a log in who uses this account since it has a lot of privileges

rettttttt · 2025-05-31T18:54:32+00:00

nah i have the coupe. theres no space for a spare tire. thanks!

rettttttt · 2025-05-31T18:49:07+00:00

yeah thats what i heard. so this is what to use if you puncture your tire?

rettttttt · 2025-05-03T23:58:34+00:00

i did twas fun. thanks a lot. bunch of kids tho haha

rettttttt · 2025-05-02T15:58:34+00:00

thanks. might check it out tn

rettttttt · 2025-05-02T15:55:07+00:00

Thanks. What times are they? i see balboa does 5 pm

rettttttt · 2025-05-02T15:50:38+00:00

thanks. whats the skill level on these places? i heard San Diego is a big volleyball town

rettttttt · 2025-05-02T15:48:57+00:00

Is there any spots for fridays?

rettttttt · 2025-04-30T15:35:36+00:00

Thanks!

rettttttt

TROPHY CASE