Security teams can easily build custom applications with a unified homepage experience, intuitive visual builder and access to modern low-code and no-code tools. This builder guides them through the building blocks necessary to develop an application before it is released and installed. A new learn page allows app developers to easily access guided documentation and step-by-step tutorials.
Some of the applications that can be built with Falcon Foundry include:
- Productivity Apps: These applications extend the Falcon platform and its modules to enhance teams’ productivity and bring critical information where it’s needed, typically to a small number of users within the security team. For example, this could be a UI extension of an existing Falcon platform page that presents enrichments and context from a third-party vendor.
- Transformational Apps: These more complex applications deliver higher business value with new functionality and are designed for use by the broader security team and across departments. They typically include a data model, user interface, workflow automation and role-based access control.
- Custom Actions: Falcon Foundry powers the configuration of API integrations, which enables it to connect and import actions from cloud-based, third-party tools. This functionality can be used to create data connectors and workflow templates to accelerate a CrowdStrike Falcon® Next-Gen SIEM deployment.
Additionally, Falcon Foundry provides customizable out-of-the-box templates, created by CrowdStrike and select technology partners, to accelerate app creation. Partner-created app templates benefit from seamless technology integration to deploy common security use cases and maximize the existing technology ecosystem.
Innovative Capabilities in Falcon Foundry
With its general availability, Falcon Foundry is introducing new capabilities that empower security teams to build applications on their terms. These new capabilities include:
- Custom Workflow Automation Actions: Deploy new custom CrowdStrike Falcon® Fusion SOAR integration templates for third-party IT and security products. Falcon Foundry can now extend the scope of workflow automation to create new third-party response actions to dramatically accelerate response actions.
- Share Applications with the Crowd: Share applications across the community with new export and import capabilities that help customers rapidly adopt new innovations or customize them for their own environments.
- Advanced Visual Response Script Builder: Transform the creation of advanced Falcon Real Time Response (RTR) scripts with an intuitive visual builder, which can accelerate and scale the ability to take direct action on endpoints to mitigate threats or get instant forensics with custom scripts.