CrowdStrike & Siemplify
Siemplify delivers out-of-the-box integration with the Crowdstrike Falcon Platform, enabling your organization to marry the newly minted leading EPP to a leading independent SOAR platform. In the short video above, you can see just how easy it is to bring together these two solutions to deliver desirable outcomes.
Common Use Cases
While there are countless use cases where combining Crowdstrike with Siemplify to deliver positive results, these are some of the most common:
Malware: After initial automated analysis in Siemplify to group related alerts, you can automatically enrich alerts with data about impacted assets, as well as a known indicator of compromise information. In addition, you can initiate response actions in CrowdStrike with little-to-no security analyst intervention.
Phishing: Integrating CrowdStrike into the Siemplify platform will enable playbook creation that incorporates rich endpoint data into your case insights.
Brute Force: When a brute-force attack is identified and validated by Siemplify, you automatically can initiate isolation commands in CrowdStrike.