CrowdStrike Event Streams Data
App Installation
| App | Search Head | Indexer | Heavy Forwarder | UF / Deployment Server | Additional Details |
|---|---|---|---|---|---|
| CrowdStrike Falcon Event Streams Technical Add-On | Required | - | Required | - | CrowdStrike Resource Center: CrowdStrike Falcon Event Streams Add-On Configuration Guide |
Important inputs to be configured
- CrowdStrike Event Streams
Note : Create an index named crowdstrike or update the cs_crowdstrike_eventstream macro definition from Cyences app configuration page (Cyences Settings > Cyences App Configuration > Products Setup).
Estimated Data Size
TODO