CrowdStrike has extended XDR functionality to its Falcon Insight solution. Falcon Insight XDR gets additionally telemetry data from partners to enhance and extend its XDR functionality.
The Falcon Insight solution will gain Extended Detection and Response (XDR) capabilities that make it easier to extend this functionality to endpoints. So-called connector packs enable detection, investigation and response actions in a single management environment for all security domains.
In this way, it becomes easier for customers to apply XDR and benefit from native integrations with other Falcon modules of the overarching CrowdStrike Falcon platform, the security vendor points out.
In addition, the new module includes telemetry integrations from partners in the CrowdXDR Alliance. Telemetry solutions and data from Cisco, ForgeRock, Fortinet and others become available. The release extends the data and solutions coming in from existing partners, including Microsoft and Palo Alto Networks.
CrowdStrike plans to integrate telemetry from all security domains into its platform. These include e-mail environments, firewalls, identity and access management solutions, network detection and response systems, and SASE deployments.
The security specialist is also releasing new expert-developed detections, including data from its Falcon Identity Protection solution. These detections will be integrated into telemetry from Falcon Horizon for Falcon Insight XDR.
Furthermore, Falcon Insight XDR now integrates with the Zscaler Zero Trust Exchange to power response actions from XDR actions and automated Falcon Fusion or SOAR workflows.