Splunk® Supported Add-ons

Splunk Add-on for CrowdStrike FDR

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

Release notes for the Splunk Add-on for CrowdStrike FDR

Version 1.5.0 of the Splunk Add-on for Crowdstrike FDR was released on November 27, 2023. It is compatible with the following software, CIM versions, and platforms.

Splunk platform versions 8.2.x, 9.0.x and 9.1.x
CIM N/A
Platforms Platform independent
Vendor Products Crowdstrike FDR

New features

Version 1.5.0 of the Splunk Add-on for Crowdstrike FDR contains the following new and changed features:

  • New modular input Device API Inventory Sync Service.
  • New events CIM normalisation.
  • New Device field filter.
  • Index-time host resolution configuration for SQS based manager and for SQS based consumer.


Fixed Issues

Version 1.5.0 of the Splunk Add-on for CrowdStrike FDR contains the following, if any, issues.



Known issues

Version 1.5.0 of the Splunk Add-on for CrowdStrike FDR contains the following, if any, issues.


Third-party software attributions

Version 1.5.0 of the Splunk Add-on for CrowdStike FDR contains the following third-party libraries.

Media:PROJECT splunk-add-on-for-crowdstrike-fdr 2023-12-11 094400794Z.pdf

Last modified on 20 December, 2023
PREVIOUS
Troubleshoot the Splunk Add-on for CrowdStrike FDR 		  NEXT
Release history for the Splunk Add-on for Crowdstrike

This documentation applies to the following versions of Splunk® Supported Add-ons: released

Was this documentation topic helpful?


You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters