Community Q&A
Ask questions, share knowledge, and get help from the security community
SIEM•check_circleSolved
Splunk Data Ingestion: Reducing noise from Windows Event Log ID 4662?
forum1 Answers
thumb_up0 Upvotes
schedulePosted 4 months ago
J
John Andersonverified
Implement Network Policies immediately. Default Kubernetes setups allow all-to-all communication, which is a significant security risk in multi-tenant...
EDR•check_circleSolved
How to mitigate false positives in Falcon EDR during bulk software deployment?
forum1 Answers
thumb_up0 Upvotes
schedulePosted 4 months ago
J
John Andersonverified
The most effective way is to define an exclusion rule based on the certificate thumbprint of the installer. This ensures that even if file hashes chan...