Guide | Resource Center

CrowdStrike Falcon Devices Add-on for Splunk Installation and Configuration Guide v3.1.5+

This guide covers the deployment, configuration and usage of the CrowdStrike Falcon® Devices Technical Add-on (TA) for Splunk v3.1.5 and above. The CrowdStrike Falcon® Devices Technical Add-on for Splunk allows CrowdStrike customers to retrieve device data from the CrowdStrike Hosts API and index it into Splunk.

For deploying and configuring the CrowdStrike Falcon Device Splunk Technical Add-On located on Splunkbase: https://splunkbase.splunk.com/app/5570

Metro Finance: We put our trust in CrowdStrike
Trajan: Impacting Lives While Protecting Customers with CrowdStrike Falcon® Complete
A Spotlight on Ransomware

Discover More at our
Resource Center

Case Studies
Community Tools
CrowdCasts
Customer Stories
Data Sheets
Demos
Guides
Infographics
Reports
Videos
White Papers

Tech Hub

  • OS icon
  • deployment icon
  • installation icon

For technical information on installation, policy configuration and more, please visit the CrowdStrike Tech Hub.

Visit Tech Hub