CrowdStrike is a class-leading endpoint monitoring solution. It collects a wealth of activity data from each managed endpoint that can be fairly voluminous. This includes network connectivity, DNS request, process activity, health checks, and the list goes on. In fact, there are over 400 event types reported by CrowdStrike! These events are a gold mine for threat hunters and blue teams looking for unusual or malicious activity.

A common question that Cribl often gets from customers is why their functions aren't working as they should. In this video, Jon Rust explains common mistakes around field types.

Learn more about the latest security Packs from the Cribl Pack Dispensary

The Pack Dispensary is the best place to find and download the latest Cribl Packs from the Cribl Community.

## Follow Cribl

Ed Bailey from Cribl and Exabeam’s Ben Henderson preview their joint RSA Conference session about how our solutions empowered Transunion’s security team to get better results faster with Cribl Stream and Exabeam Fusion SIEM.

Cribl Search turns the traditional search process on its head, allowing users to search data in place. No longer must data be collected and moved to storage before being examined. With Cribl Search, administrators can search data at the edge, moving through an observability pipeline, stored in a data lake, or even stored in their existing solutions like TSDBs or log stores.

In this video, Jon Rust shows how to quickly onboard Syslog data into a new installation of Cribl Stream.

In this video, we will show how to use the Aggregations and Chain functions to provide timing metrics for a pipeline.

Cribl Edge provides the flexibility and control administrators love from Stream, now running at the edge. Combined with automatic log discovery and metrics production, Cribl Edge empowers developers and operations teams to discover relevant telemetry hidden in unknown and legacy applications that have limited tooling.