Use SQL to instantly query CrowdStrike resources. Open source CLI. No DB required.

A script that automates the process of polling IOCs from a STIX/TAXII server and ingesting them into CrowdStrike Falcon using the Falcon Intelligence API. It supports transforming domain names, IP addresses, and file hashes from STIX format into CrowdStrike-compatible IOCs for threat detection and response.

Este script foi criado para automatizar tarefas administrativas no Windows, como consultas a registros, interações com APIs para obtenção de tokens de autenticação e remoção da ferramenta.

Collection of Python scripts to interact with the CrowdStrike API

CrowdStrike Falcon® Contain GUI for more flexible control over the host containment process.

Execute bulk actions on your hosts using falconpy SDK of Crowdstrike (RTR/RTRA).

CrowdStrike Falcon Custom IOA rules and Examples

CrowdStrike Falcon Event Stream to Humio

CrowdStrike API Client Library

CrowdStrike integration with TheHive