CRT
Contact: [email protected]automactc
AutoMacTC: Automated Mac Forensic Triage CollectorForensics
Scripts and code referenced in CrowdStrike blog postspsfalcon
PowerShell for CrowdStrike's OAuth2 APIsfalconpy
The CrowdStrike Falcon SDK for PythonTortilla
ember-timetree
Visualize hierarchical timeline data. Built with Ember.jsย and D3.jsSuperMem
A python script developed to process Windows memory images based on triage type.travel-laptop
Auxiliary documentation and scripts around "A Reasonably Safe Travel Burner Laptop"falcon-orchestrator
CrowdStrike Falcon Orchestrator provides automated workflow and response capabilitiesCrowdDetox
The CrowdDetox plugin for Hex-Rays automatically removes junk code and variables from Hex-Rays function decompilations.cs-bro
Bro scripts written by CrowdStrike ServicesCloud-AWS
A collection of projects supporting AWS IntegrationCrowdFMS
CrowdStrike Feed Management System. CrowdFMS is a framework for automating collection and processing of samples from VirusTotal, by leveraging the Private API system. This framework automatically downloads recent samples, which triggered an alert on the users YARA notification feed.csproto
CrowdStrike's Protocol Buffers libraryfalcon-scripts
Scripts to streamline the deployment and use of the CrowdStrike Falcon sensorfalcon-query-assets
Welcome to the Falcon Query Assets GitHub page.Falcon-Toolkit
Unleash the power of the Falcon Platform at the CLICAST
CrowdStrike Archive Scan Toolxwf-yara-scanner
ansible_collection_falcon
Install and configure CrowdStrike's Falcon sensor via Ansible.tf2rust
Tensorflow to Rust is a tool to convert trained Tensorflow models to pure Rust code.logscale-community-content
This repository contains Community and Field contributed content for LogScalefalcon-helm
Helm Charts for running CrowdStrike Falcon with Kubernetespyspresso
The pyspresso package is a Python-based framework for debugging Java.gofalcon
Golang-based SDK to CrowdStrike's APIsember-browser-services
Services for interacting with browser APIs so that you can have fine-grained control in tests.falcon-operator
gotel
GoTel - Scheduled job monitoringdetection-container
perseus
The hero we all need to defeat the kraken that is Go module dependency graphscaracara
Developer enhancements (DX) for FalconPy, the CrowdStrike Python SDKMISP-tools
Import CrowdStrike Threat Intelligence into your instance of MISPDockerfiles
Automation to help create container images pre-loaded with the CrowdStrike Falcon sensor.container-image-scan
Code to scan a container with CrowdStrike and return response codes indicating pass/fail status.chopshop
Mitre chopshop network decoder frameworkcommunity
CrowdStrike's Open Source Policy & Contribution GuideFDR
Falcon Data Replicatorfaltest
A different take on WebDriver browser testinggo-metrics-sliding-window
A sliding window sampling implementation for the rcrowley/go-metrics library.ember-headless-form
Headless forms with a11y and validation support built inapbf
Go package implementing Age-Partitioned Bloom Filters (APBF)Cloud-Azure
Discover for Cloud and Containers Azureember-headless-table
ember-aria-utilities
ARIA utilities for helping create some of the more complex ARIA design patterns. Follows https://www.w3.org/TR/wai-aria-practices/embersim-databank
Code for the paper "EMBERSim: A Large-Scale Databank for Boosting Similarity Search in Malware Analysis"ember-resource-tasks
Resources for async functions in Emberember-url-hash-polyfill
Support for in/inter page linking / scrolling with hashes in EmberJScloud-resource-estimator
Cloud deployment size calculation utilitiesbpfmon-example
proof-of-concept example of using eBPF to Monitor for eBPF Map tamperingtailwind-toucan-base
Base Tailwind config for the Toucan design system.omigo-data-analytics
Data Analytics Library for Pythonfalcon-integration-gateway
Falcon Integration Gateway (FIG)tf-layers
Tensorflow Layers provides Rust implementations of Tensorflow model layersember-velcro
Ember Velcro sticks one element to another with Floating UI.kafka-replicator
Kafka replicator is a tool used to mirror and backup Kafka topics across regionscontainer-image-scan-action
CrowdStrike Container Image Scan Github ActionOWASSRF
Identity-Protection
ivan
Falcon Image Vulnerability Analysis (IVAN) is a command-line image assessment tool.falconjs
CrowdStrike Falcon API JS library for the browser and Nodezscaler-FalconX-integration
This is the integration to feed Falcon X IOC data into zscaler's platformmonorepo-next
Detach monorepo packages from normal linkingNotPetyaDecryptor
aws-ssm-distributor
helpful-links
List of helpful publicly available CrowdStrike material.ember-toucan-core
Toucan Design Systemrusty-falcon
Rust bindings for CrowdStrike Falcon APIaws-security-lake
Integration guide for CrowdStrike and Amazon Security Laketerraform-kubectl-falcon
Module to manage CrowdStrike Falcon Sensor and the Kubernetes Protection Agent on a Kubernetes cluster.cloud-tools-image
Command-line tools for remote communication with public and private cloud environments.puppet-falcon
HEC-Log-Shipper
This repository contains examples of code used to send data to Humio instancesCloud-GCP
A collection of projects supporting GCP integrationimage-scan-example
aws-verified-access
Integration details between CrowdStrike Falcon Zero Trust Assessments (ZTA) and AWS Verified Accesscrimson-falcon
A Shiny Ruby SDK of our Falcon APIember-toucan-styles
Ember wrapper, CSS, and JS utilities for working with the Toucan design systemember-three
Ember.js three.js shimfoundry-fn-go
logscale-azure-event-hub-collector
LogScale Azure Event Hub Collectorcloud-pov
devdays
cs.aws_account
kubectl-falcon
Plug-in to kubectl command-line tool that helps with manipulation of Falcon Container.opensource.crowdstrike.com
CrowdStrike-Spotlight-Humio-Package-Integration
ember-number-to-words-shim
Ember.js number-to-words shimtemplate-gitbook-workshop
Code behind https://crowdstrike.gitbook.io/template-gitbook-workshop/gql
Tools for managing graphql schemacaracara-filters
A new filter backend for Caracaracs-cnap
CNAP trainingsecurity-for-jenkins
Know about vulnerabilities at build time with Jenkins.rancher-helm-chart
Sample Helm Charts for deploying CrowdStrike Falcon sensors into Rancher's RKE and k3s products.terraform-nutanix-script
opensearchtools
promwatch
PromWatch is an exporter for CloudWatch metrics in a Prometheus compatible format.AWS-Account-Registration
terraform-modules
Container-Security
Love Open Source and this site? Check out how you can help us