CrowdStrike Falcon LogScale
CrowdStrike Falcon LogScale supports different possibilities to ingest log data and metrics.
LogScale HEC API
https://library.humio.com/logscale-api/log-shippers-hec.html
- add Lyftdata output Splunk-hec
- configure token
- configure Splunk fields: index, source, sourcetype, timestamp
Logscale Ingest API
https://library.humio.com/logscale-api/api-ingest.html
S3
https://www.crowdstrike.com/tech-hub/ng-siem/crowdstrike-falcon-logscale-s3-ingest/