CrowdStrike University FHT 280: Course Syllabus

FHT 280: Investigating With Falcon Forensics

This course is for any analyst or threat hunter who will utilize CrowdStrike FalconĀ® Forensics to collect on-disk artifacts to perform host-based investigations. This course utilizes Falcon Forensics to perform basic investigations using various dashboards. Course participants will learn about the forensic data collected, basic Splunk syntax and searches related to investigations.

Tech Hub

  • OS icon
  • deployment icon
  • installation icon

For technical information on installation, policy configuration and more, please visit the CrowdStrike Tech Hub.

Visit Tech Hub