Skip to content

CrowdStrike Falcon LogScale

CrowdStrike Falcon LogScale supports different possibilities to ingest log data and metrics.

LogScale HEC API

https://library.humio.com/logscale-api/log-shippers-hec.html

  • add Lyftdata output Splunk-hec
  • configure token
  • configure Splunk fields: index, source, sourcetype, timestamp

Logscale Ingest API

https://library.humio.com/logscale-api/api-ingest.html

S3

https://www.crowdstrike.com/tech-hub/ng-siem/crowdstrike-falcon-logscale-s3-ingest/