Playbook: CrowdStrike OAuth API Endpoint Analysis
Description
Accepts a hostname or device id as input and collects running processes, network connections and various system information from the device via Crowdstrike. We then generate an observable report for each. This can be customized based on user preference.
Apps
How To Implement
This input playbook requires the CrowdStrike OAuth API connector to be configured. It is designed to work with an endpoint hostname or device id and collect key information about the system, network connections and running processes for use in automation playbooks.
Explore Playbook
Click the playbook screenshot to explore in more detail!
Required fields
- device
Reference
source | version: 1