CrowdStrike

Create and manage user roles in CrowdStrike Falcon with custom permissions. Step-by-step guide to configure role-based access control (RBAC), assign permissions, and restrict user access to Falcon console features.

Configure essential CrowdStrike exclusions for Microsoft Exchange Server. Protect database files, transaction logs, and processes to prevent corruption and ensure mail flow.

Step-by-step guide to deploy CrowdStrike Falcon sensors using Group Policy. Silent installation, startup scripts, troubleshooting tips for AD environments.

Optimize CrowdStrike performance on Hyper-V hosts with proper exclusions

Configure exclusions for IIS web servers in CrowdStrike Falcon

Prevent SCCM deployment failures with optimized CrowdStrike Falcon exclusions. Step-by-step configuration for site servers, clients, and distribution points.

Recommended exclusions for Microsoft SharePoint Server in CrowdStrike Falcon

Essential CrowdStrike Falcon exclusions for SQL Server. Protect data files, processes, and AlwaysOn without performance degradation or corruption risks.

Configure CrowdStrike Falcon exclusions for files, folders, and processes. Step-by-step guide to create exceptions, prevent false positives, and whitelist applications without compromising endpoint security.

Create custom IOCs (Indicators of Compromise) in CrowdStrike Falcon to detect specific threats. Step-by-step guide to add IP addresses, domains, file hashes, and custom detection rules.

Step-by-step guide to installing the CrowdStrike Falcon endpoint protection sensor on Windows workstations and servers

Install CrowdStrike Falcon sensor on macOS with step-by-step instructions. Includes sensor download, System Extension approval, Full Disk Access setup, and troubleshooting for Mac deployment.

Complete step-by-step guide for installing CrowdStrike Falcon Sensor on Windows 10, 11, and Server. Includes GUI and command-line installation methods plus troubleshooting.

Integrate CrowdStrike Falcon with Splunk, QRadar, ArcSight, and Sentinel. Complete setup guide for SIEM Connector with API config and troubleshooting.

Investigate security incidents using CrowdStrike Falcon with step-by-step detection analysis, Real-Time Response (RTR), threat hunting, and incident response. Learn to analyze detections, hunt threats, and contain compromised endpoints.

Quarantine and contain compromised endpoints in CrowdStrike Falcon to isolate infected hosts from your network. Step-by-step guide to contain, verify, and lift containment with troubleshooting tips.

Complete guide to running CrowdStrike Falcon on-demand scans. Schedule scans, configure detection levels, optimize CPU usage, and detect threats fast.

Configure CrowdStrike Falcon device control to block USB drives and removable media. Step-by-step guide for USB blocking, whitelisting specific devices, and creating device control policies.

Enable multi-factor authentication in CrowdStrike Falcon. Step-by-step guide to configure MFA with authenticator apps, security keys, and enforce for all users.

Configure CrowdStrike Falcon prevention policies to block malware and assign host groups. Step-by-step guide for detection levels, application control, and policy best practices.

Uninstall CrowdStrike Falcon sensor from Windows, Mac, and Linux using maintenance token. Step-by-step commands for removal (WindowsSensor.exe /uninstall, falconctl uninstall). Includes uninstalling without token and troubleshooting invalid token errors.

Leverage CrowdStrike Falcon X for malware analysis and threat intelligence

Verify CrowdStrike Falcon sensor is running with step-by-step commands for Windows (sc query csagent), Mac (falconctl stats), and Linux (systemctl status falcon-sensor). Check sensor version, service status, and troubleshoot connectivity issues.

Implement CrowdStrike Zero Trust Assessment (ZTA) to evaluate endpoint security posture. Step-by-step guide to enable ZTA scoring, assess device compliance, and enforce zero trust policies with Falcon.