SA-CrowdstrikeDevices v1.0.3
| Info | Description |
|---|---|
| SA-CrowdstrikeDevices | 1.0.3 - Splunkbase | GitHub |
| Splunk Enterprise Security Version (Required) | 7.x | 6.x |
| Crowdstrike Devices Add-on (Required) | 3.x |
| Add-on has a web UI | No, this add-on does not contain views. |
New
- added cleanup search to remove old/stale devices (#18).
- added search macro for device retention period (#18).
Updated
- updated collection to include last seen field (#18).
- updated lookup generating search to include last time seen (#18).
Full Changelog: v1.0.2...v1.0.3