The Crowdstrike and Demisto Integration Enables:
- Automatic enrichment of threat intelligence for critical incidents from Falcon Intelligence via playbooks and interactive investigative war-room.
- Automatic enrichment and querying of host information like files landed, malware samples, running processes and more from Falcon Host.
- Automatic remediation and response via Demisto’s playbooks and automation scripts by updating Crowdstrike policy
Download the solution brief to learn more.