• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

My TechDecisions

  • COVID-19 Update
  • Best of Tech Decisions
  • Topics
    • Video
    • Audio
    • Mobility
    • Unified Communications
    • IT Infrastructure
    • Network Security
    • Physical Security
    • Facility
    • Compliance
  • RFP Resources
  • Resources
  • Podcasts
  • Subscribe
  • Project of the Week
  • Latest News
  • About Us
    SEARCH
IT Infrastructure, Network Security, News

CrowdStrike Releases Free Incident Response Tracker

CrowdStrike's new free Incident Response Tracker gives security incident response teams a consolidated view of the attack.

January 13, 2022 Zachary Comeau Leave a Comment

Crowdstrike Incident Response

Cybersecurity giant CrowdStrike has released a free incident response tracker to help IT and security teams document indicators of compromise, compromised systems and a timeline of important events during its forensic analysis of an attack.

The company calls the tool the CrowdStrike Incident Response Tracker, which is essentially an organized spreadsheet to help teams document attacks and form the basis of the incident narrative. The company says it released the free resource after meeting with a client that did not have a methodology for tracking indicators and building an incident timeline.

“The CrowdStrike Services team wanted to provide more information to our client on how incidents can and should be tracked, but nothing was available in the public domain,” the company says.

The tracker spreadsheet is organized into a number of tabs to record various classes of incident-related events in a structured and repeatable manner, according to CrowdStrike’s blog on the announcement.

The CrowdStrike IR Tracker, the company says, provides a single place for synthesizing key incident details, including:

  • A consolidated incident timeline that forms the basis of the incident narrative
  • Incident indicators, including IP addresses, domain names, malware names/hashes, registry entities and more.
  • Compromised account details and systems of interest
  • Incident metadata including key contacts, meeting details, collected evidence items and incident-related request and asks.

While the IR Tracker includes tabs for a variety of incident response functions, CrowdStrike highlights three: timeline, host indicators and network indicators.

CrowdStrike says the timeline tab is “arguably the biggest benefit” of the IR Tracker, with a consolidated incident timeline giving respondents a place to track the start and stop times of all relevant incident information including suspect account login data, file creation and modification, process creation, registry key creation, network connections, firewall events and EDR events.

The company says the host indicators tab is used to record the suspected and confirmed host indicators of compromise for the incident. These include things like file names and paths, file hashes, file sizes, service names and registry keys.

The network indicators tab helps security workers keep a consolidated list of network-related indicators to make searching additional data sets for the same indicators easier.

“With this consolidated and organized information, we can focus on helping the organization identify the impact to business assets, and in conjunction with legal counsel, identify any regulatory reporting requirements,” the company says.

Related Content:

  • Microsoft May 2022 Security Update Some May 2022 Microsoft Security Updates Are Leading…
  • Microsoft Viva Goals Microsoft Unveils Microsoft Viva Goals For Objectives Tracking
  • Open Source Security How the IT Industry is Securing Open-Source Software
  • Google I/O Google I/O: New Security Features in Workspace, Enrolling…

Free downloadable guide you may like:

  • The State of the IT Department in 2022

    The role of the IT professional has shifted from one that supports the business to one that is deserving of a seat at the table when it comes to making business decisions. Check out our new report to see what your peers in IT think about top concerns and opportunities in 2022.

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Get the FREE Tech Decisions eNewsletter

Sign up Today!

Latest Downloads

The State of the IT Department in 2022

The role of the IT professional has shifted from one that supports the business to one that is deserving of a seat at the table when it comes to ma...

Hybrid Work Challenges
The Three Most Common Hybrid Work Challenges Two Years Into the Pandemic

Many of us have been working in a hybrid environment for two years now. Our editors thought this would be a good time to take a look at what’s work...

These 10 IT Certifications Are Critical To An IT Pro’s Success in 2022

Here are 10 cloud, data and security certifications that we identify as critical to an IT professional’s resume in 2022 and beyond, according to a ...

View All Downloads

Would you like your latest project featured on TechDecisions as Project of the Week?

Apply Today!
Sharp Microsoft Collaboration HQ Logo

Learn More About the
Windows Collaboration Display

More from Our Sister Publications

Get the latest news about AV integrators and Security installers from our sister publications:

Commercial IntegratorSecurity Sales

AV-iQ

Footer

TechDecisions

  • Home
  • Welcome to TechDecisions
  • Subscribe to the Newsletter
  • Contact Us
  • Media Solutions & Advertising
  • Comment Guidelines
  • RSS Feeds
  • Terms of Use
  • Privacy Policy
  • Twitter
  • Facebook
  • Linkedin

Free Technology Guides

FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets

View all Guides
TD Project of the Week

Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.

Enter Today!

© 2022 Emerald X, LLC. All rights reserved.