Back to source list
Official
Premium
CrowdStrike source integration documentation
Sync from CrowdStrike to any destination
Publisher
cloudquery
Latest version
v2.3.1
Type
Source
Platforms
Date Published
Loading plugin tables
Sync from CrowdStrike to any destination
Publisher
cloudquery
Latest version
v2.3.1
Type
Source
Platforms
Date Published
Loading plugin tables
CloudQuery's use of cookies
We use tracking cookies to understand how you use the product and help us improve it. Your consent is required before we can enable these cookies. You can opt out via the link in the footer.
The crowdstrike_alerts table shows data for Crowdstrike Alerts.
Alerts: READ| Name | Type |
|---|---|
| cid | utf8 |
| id | utf8 |
| Name | Type |
|---|---|
| agent_id | utf8 |
| aggregate_id | utf8 |
| alleged_filetype | utf8 |
| assigned_to_name | utf8 |
| assigned_to_uid | utf8 |
| assigned_to_uuid | utf8 |
| cid | utf8 |
| cloud_indicator | utf8 |
| cmdline | utf8 |
| composite_id | utf8 |
| confidence | int64 |
| context_timestamp | json |
| control_graph_id | utf8 |
| _cq_id | uuid |
| _cq_parent_id | uuid |
| crawl_edge_ids | json |
| crawled_timestamp | json |
| crawl_vertex_ids | json |
| created_timestamp | json |
| data_domains | list<item: utf8, nullable> |
| description | utf8 |
| device | json |
| display_name | utf8 |
| email_sent | bool |
| external | bool |
| falcon_host_link | utf8 |
| filename | utf8 |
| filepath | utf8 |
| grandparent_details | json |
| has_script_or_module_ioce | bool |
| id | utf8 |
| indicator_id | utf8 |
| ioc_context | json |
| ioc_description | utf8 |
| ioc_source | utf8 |
| ioc_type | utf8 |
| ioc_value | utf8 |
| ioc_values | list<item: utf8, nullable> |
| is_synthetic_quarantine_disposition | bool |
| linked_behavioral_detections | list<item: utf8, nullable> |
| linked_case_ids | list<item: utf8, nullable> |
| local_process_id | utf8 |
| logon_domain | utf8 |
| md5 | utf8 |
| mitre_attack | json |
| name | utf8 |
| objective | utf8 |
| origin_cid | utf8 |
| parent_details | json |
| parent_process_id | utf8 |
| pattern_disposition | int64 |
| pattern_disposition_description | utf8 |
| pattern_disposition_details | json |
| pattern_id | int64 |
| platform | utf8 |
| poly_id | utf8 |
| process_end_time | utf8 |
| process_id | utf8 |
| process_start_time | utf8 |
| product | utf8 |
| quarantined_files | json |
| resolution | utf8 |
| scenario | utf8 |
| seconds_to_resolved | int64 |
| seconds_to_triaged | int64 |
| severity | int64 |
| severity_name | utf8 |
| sha1 | utf8 |
| sha256 | utf8 |
| show_in_ui | bool |
| source_products | list<item: utf8, nullable> |
| source_vendors | list<item: utf8, nullable> |
| status | utf8 |
| tactic | utf8 |
| tactic_id | utf8 |
| tags | list<item: utf8, nullable> |
| technique | utf8 |
| technique_id | utf8 |
| timestamp | json |
| tree_id | utf8 |
| tree_root | utf8 |
| triggering_process_graph_id | utf8 |
| type | utf8 |
| updated_timestamp | json |
| user_id | utf8 |
| user_name | utf8 |