Crowdstrike- User Activity

This page contains XML used to create a Splunk dashboard for specific sourcetypes & use-cases. The dashboard contains dynamic and static input filters for relavant field/values and (typically) a visualization for each field. The visualizations are broken into statistical count and event count over time (where applicable). The final panel in each dashboard is an … Continue reading "Crowdstrike- User Activity"

Read More

Crowdstrike- Incident Summary

This page contains XML used to create a Splunk dashboard for specific sourcetypes & use-cases. The dashboard contains dynamic and static input filters for relavant field/values and (typically) a visualization for each field. The visualizations are broken into statistical count and event count over time (where applicable). The final panel in each dashboard is an … Continue reading "Crowdstrike- Incident Summary"

Read More

Crowdstrike- Firewall Match

This page contains XML used to create a Splunk dashboard for specific sourcetypes & use-cases. The dashboard contains dynamic and static input filters for relavant field/values and (typically) a visualization for each field. The visualizations are broken into statistical count and event count over time (where applicable). The final panel in each dashboard is an … Continue reading "Crowdstrike- Firewall Match"

Read More

Crowdstrike- Detection Summary

This page contains XML used to create a Splunk dashboard for specific sourcetypes & use-cases. The dashboard contains dynamic and static input filters for relavant field/values and (typically) a visualization for each field. The visualizations are broken into statistical count and event count over time (where applicable). The final panel in each dashboard is an … Continue reading "Crowdstrike- Detection Summary"

Read More

Crowdstrike- Authentication Activity

This page contains XML used to create a Splunk dashboard for specific sourcetypes & use-cases. The dashboard contains dynamic and static input filters for relavant field/values and (typically) a visualization for each field. The visualizations are broken into statistical count and event count over time (where applicable). The final panel in each dashboard is an … Continue reading "Crowdstrike- Authentication Activity"

Read More