Good Afternoon,
My leadership informed me that CrowdStrike is sending our logs to Splunk.
Has anyone done any queries to show when a device is infected with malware? I don't know the CrowdStrike logs, but I'm hoping someone here can give me some guidance to get started.
