Who Has Installed CrowdStrike? Question on "Medium" Severity Detections

egrizzly

Has anybody here installed or used CrowdStrike - the popular EDR tool? It was recently deployed in our environment but I don't think it's working correctly.

On the "Detections" dashboard the True Positive/False Positive ratio on what we're seeing on Medium severity is 2/8.

So typically, are Medium severity detections set to "Prevent" (Blocked) or just to Detect? Where are the back-end can you adjust this setting?

JDMurray

Crowdstrike's tech support can answer that. There is also:

• https://www.crowdstrike.com/resources/community-tools/
• https://www.reddit.com/r/crowdstrike/