CrowdStrike Threat Hunting Searches
Don't know where to start when learning to threat hunt? Level up your threat hunting game with a listing of over 45 universal searches to run in CS Event Search! Detect activity surrounding malicious office documents, webshell activities, data exfiltration, suspicious powershell usage, and other potential threats! This document is updated to include the new CQL/LogScale query language in addition to the legacy SPL searches.
Don't know where to start when learning to threat hunt? Level up your threat hunting game with a listing of over 45 universal searches to run in CS Event Search! Detect activity surrounding malicious office documents, webshell activities, data exfiltration, suspicious powershell usage, and other potential threats! This document is updated to include the new CQL/LogScale query language in addition to the legacy SPL searches.
Don't know where to start when learning to threat hunt? Level up your threat hunting game with a listing of over 45 universal searches to run in CS Event Search! Detect activity surrounding malicious office documents, webshell activities, data exfiltration, suspicious powershell usage, and other potential threats! This document is updated to include the new CQL/LogScale query language in addition to the legacy SPL searches.