MrM8BRH/Falcon-NextGen-SIEM

اللَّهُمَّ صَلِّ علَى مُحَمَّدٍ وعلَى آلِ مُحَمَّدٍ، كما صَلَّيْتَ علَى إبْرَاهِيمَ وعلَى آلِ إبْرَاهِيمَ؛ إنَّكَ حَمِيدٌ مَجِيدٌ.

اللَّهُمَّ بَارِكْ علَى مُحَمَّدٍ وعلَى آلِ مُحَمَّدٍ، كما بَارَكْتَ علَى إبْرَاهِيمَ وعلَى آلِ إبْرَاهِيمَ؛ إنَّكَ حَمِيدٌ مَجِيدٌ.

- NextGen SIEM 部署 - 🗒️ [部署](https://github.com/MrM8BRH/Falcon-NextGen-SIEM/blob/main/NextGen%20SIEM%20Deployment/Deployment.md) - 🗒️ [Falcon 日志收集器](https://github.com/MrM8BRH/Falcon-NextGen-SIEM/blob/main/NextGen%20SIEM%20Deployment/Falcon%20Log%20Collector.md) - 🗒️ [关联规则](https://github.com/MrM8BRH/Falcon-NextGen-SIEM/blob/main/NextGen%20SIEM%20Deployment/Correlation%20rules.md) - 🗒️ [CQL](https://github.com/MrM8BRH/Falcon-NextGen-SIEM/blob/main/NextGen%20SIEM%20Deployment/CQL.md) - 🗒️ [Cribl](https://github.com/MrM8BRH/Falcon-NextGen-SIEM/blob/main/NextGen%20SIEM%20Deployment/Cribl.md) - 📁 [YAML](https://github.com/MrM8BRH/Falcon-NextGen-SIEM/tree/main/NextGen%20SIEM%20Deployment/YAML) - 📁 [解析器](https://github.com/MrM8BRH/Falcon-NextGen-SIEM/tree/main/NextGen%20SIEM%20Deployment/Parsers) - 📁 [官方文档](https://github.com/MrM8BRH/Falcon-NextGen-SIEM/tree/main/NextGen%20SIEM%20Deployment/Official%20Documentations)

标签：AMSI绕过, API接口, BurpSuite集成, CrowdStrike, CSV导出, DNS 反向解析, DNS 解析, EDR, Falcon, GitHub, HTTP/HTTPS抓包, HTTP工具, PE 加载器, StruQ, 下一代SIEM, 仪表盘, 企业安全, 动态调用, 域名收集, 威胁检测, 子域名变形, 安全信息与事件管理, 安全运营, 实时处理, 密码管理, 开源资源列表, 态势感知, 扫描框架, 提示词注入, 搜索引擎爬取, 无线安全, 日志收集, 检测规则, 端点安全, 网络安全, 网络安全审计, 网络资产发现, 网络资产管理, 脆弱性评估, 补丁管理, 误配置预防, 足迹探测, 速率限制, 部署指南, 配置审计, 隐私保护