Home / Companies / Crowdstrike / Blog / Post Details
Content Deep Dive

Improving CrowdStrike FalconĀ® Detection Content with the Gap Analysis Team

Blog post from Crowdstrike

Post Details
Company
Date Published
Author
RTFACT Detonation
Word Count
2,008
Company Posts That Month
Language
English
Hacker News Points
-
Post removed?
No
Summary

CrowdStrike has introduced a new team called the Gap Analysis Team (GAT) to enhance the detection capabilities of its Falcon platform through innovative strategies that focus on automation and scalability. GAT's approach includes the development of a tool-agnostic testing framework called RTFACT Detonation, which utilizes cloud-native technologies like Docker, Kubernetes, and Ansible to automate the testing of red team tools and adversarial emulations. This framework aims to reduce manual testing steps and improve the time-to-detect adversarial tactics, techniques, and procedures (TTPs). By leveraging advanced log aggregation tools such as Humio and Splunk, RTFACT Detonation provides comprehensive data analysis to assess and improve the Falcon platform's detection content. The team is also exploring further automation opportunities to streamline the testing process, allowing analysts to focus on enhancing detection content, ultimately aiming to stay ahead of increasingly sophisticated threat actors.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
AI Agents 2 2,394 1,321 1 -
Kubernetes 2 1,086 169 37 +2%
Zero Trust 1 1,843 1,331 3 +61333%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.