When reviewing a Host Timeline, which of the following filters is available?
According to theCrowdStrike Falcon Devices Add-on for Splunk Installation and Configuration Guide v3.1.5+, the Host Timeline tool allows you to view all events recorded by the sensor for a given host in a chronological order1.The events include process executions, file writes, registry modifications, network connections, user logins, etc1.You can use various filters to narrow down the events based on criteria such as event type, timestamp range, file name, registry key, network destination, etc1.However, there is no filter for severity, user name, or detection ID, as these are not attributes of the events1.
Limited Time Offer
25%
Off
Hollis
2 months agoBenedict
2 months agoSophia
26 days agoLashaunda
1 months agoLaurel
1 months agoSilvana
2 months agoJudy
2 months agoDonte
2 months agoMinna
1 months agoFiliberto
1 months agoLenny
2 months agoDwight
3 months agoLajuana
3 months agoCaitlin
3 months agoWenona
3 months agoJulie
3 months agoShonda
3 months agoBette
3 months agoUlysses
3 months agoShawnee
3 months agoEura
2 months agoEmmanuel
3 months agoHillary
3 months ago