-
Notifications
You must be signed in to change notification settings - Fork 27
Home
nlabadie-crwd edited this page Apr 24, 2023
·
35 revisions
Welcome to the LogScale and FLTR community wiki!
Tutorials for LogScale:
-
LogScale Query Primer: a comprehensive guide on using the LogScale query language.
-
LogScale Query Building Blocks: this is a list of common questions we've seen in the field. If you've ever wondered how to accomplish X to get to Y, this is likely the place to start.
-
LogScale Function Addendum: these are examples of using a few of the common functions within LogScale. The full function documentation can be found here.
Specific to FLTR:
- FLTR Hunting and Investigations: ever wondered how to hunt through Falcon telemetry data, aka FDR? This is likely the best place to start.
Everything else:
- Event Forwarding Playground: this is a end-to-end setup of a self-contained, single node cluster, to test the Event Forwarding functionality of a Self-Hosted LogScale deployment. NOTE: You will need a development, trial, or PoC license.