This document outlines the deployment and configuration of the CrowdStrike App available for Splunk Enterprise and Splunk Cloud. This app is designed to work with the data that’s collected by the officially supported CrowdStrike Technical Add-Ons: CrowdStrike Event Streams Technical Add-On and CrowdStrike Intel Indicators Technical Add-On.
Discover More at our
Resource Center
Tech Hub
For technical information on installation, policy configuration and more, please visit the CrowdStrike Tech Hub.
Visit Tech Hub