This blog was originally published Oct. 1, 2021 on humio.com. Humio is a CrowdStrike Company.
What is an indicator of compromise (IOC)?
An indicator of compromise (IOC) is a piece of digital forensics that suggests that an endpoint or network may have been breached. The ability to monitor for indicators of compromise is critical to a comprehensive cybersecurity strategy, bringing improved detection accuracy and speed, along with faster remediation times. Pairing CrowdStrike's database of thousands of IOCs with Humio's comprehensivelog management
solution provides the visibility and context needed to identify the root cause of a breach and more efficiently manage and mitigate threats.
What is the Humio integration with CrowdStrike's indicators of compromise?
The Humio integration with CrowdStrike's indicators of compromise (IOCs) keeps an updated database of IOCs and runs customer logs against them, notifying customers if there are any matches. The integrationis free to new and existing Humio customers for all paid versions of Humio
and delivers observability of malicious data, including domain names, URLs and IP addresses. By combining all the logs in Humio with CrowdStrike’s comprehensive IOCs, customers in DevOps, ITOps and SecOps teams can increase their speed in identifying and stopping breaches.