CrowdStrike: Zero to Falcon Admin

Disclaimer: This course offered independently by Blue Team Consulting, LLC and is not affiliated with CrowdStrike, Inc.

4.34 (1059 reviews)

Udemy

platform

English

language

Network & Security

What you will learn

Gain mastery of the Falcon platform: Learn how to navigate and use the various features of the CrowdStrike Falcon platform related to administrative duties.

Learn the core principles of endpoint protection, including deployment, host management, troubleshooting, and response.

Learn best practices for security operations: Gain an understanding of industry-standard security practices and how to apply them to your organization.

Cybersecurity Engineering Concepts for Configuring an EDR Console

Why take this course?

Master the Falcon Platform from an Administrative Perspective

This course is designed to provide learners with an in-depth understanding of CrowdStrike/EDR, a powerful endpoint security tool. Participants will learn how to install and configure CrowdStrike/EDR, manage hosts, create and manage prevention policies, customize IOAs, manage exclusions and quarantines, and troubleshoot issues.

Module 1: What is CrowdStrike/EDR

Introduction to CrowdStrike/EDR
Understanding Endpoint Detection and Response (EDR)
Key features and benefits of CrowdStrike/EDR

Module 2: Users and Roles

User and role management in CrowdStrike/EDR
Understanding permissions and access levels
Best practices for user and role management

Module 3: Installation

CrowdStrike/EDR installation prerequisites
Installing CrowdStrike/EDR on endpoints
Post-installation configurations and best practices

Module 4: Troubleshooting

Troubleshooting common issues with CrowdStrike/EDR
Best practices for effective troubleshooting

Module 5: Uninstalling & Sensor updates

Uninstalling CrowdStrike/EDR from endpoints
Updating CrowdStrike/EDR sensors
Best practices for sensor management

Module 6: Host management

Managing hosts using CrowdStrike/EDR
Understanding host groups and policies
Best practices for host management

Module 7: Prevention policies

Creating and managing prevention policies in CrowdStrike/EDR
Understanding policy rules and configurations
Best practices for policy management

Module 8: Custom IOAs

Creating custom Indicators of Attack (IOAs) in CrowdStrike/EDR
Understanding IOA rules and configurations
Best practices for custom IOA management

Module 9: Exclusions and Quarantines

Managing exclusions and quarantines in CrowdStrike/EDR
Understanding exclusion and quarantine rules and configurations
Best practices for exclusion and quarantine management

Target audience: IT professionals, cybersecurity professionals, system administrators, and anyone interested in learning how to manage and secure endpoints using CrowdStrike/EDR.

Screenshots

CrowdStrike: Zero to Falcon Admin - Screenshot_01

CrowdStrike: Zero to Falcon Admin - Screenshot_02

CrowdStrike: Zero to Falcon Admin - Screenshot_03

CrowdStrike: Zero to Falcon Admin - Screenshot_04

Reviews

Khalil

October 23, 2023

An excellent resource for getting familiar with the key features of CrowdStrike and preparing for the certification exam.

Janis

October 10, 2023

I must say, this course was an exceptional learning experience. The course content was well-structured and the explanations were clear and concise, making complex concepts easy to grasp. What stood out to me were the practical demonstrations included in the course. These demos not only made the learning process more enjoyable but also provided a hands-on understanding of the subject matter. It’s one thing to learn about a concept, but being able to see it in action truly solidifies the knowledge. The instructor did a commendable job in delivering the content in an engaging manner. The pace was just right - not too fast to overwhelm, and not too slow to bore. Overall, I highly recommend this course to anyone looking to gain a solid understanding of Crowdstrike Falcon Admin. It’s a 5-star course that delivers on its promise of quality education. Happy learning!

Chris

October 5, 2023

Great overview of the Falcon platform and exam. It is a great course to improve for real-world application of the material and takes things a step further (at a quicker pace) than the CrowdStrike University courses that are more in-depth on every aspect of the platform. The transition between slide decks and then a "live" demo for most/all modules was a great way to "put into practice" the material that was just taught. I was able to take it one step further by also using a live (test) system to test out the knowledge gained, while going through the course. I used this course as an additional training source while preparing for the CrowdStrike Certified Falcon Administrator as well as to increase my familiarity with the platform for real-world use. This course is for anyone getting started with CrowdStrike, looking to increase your knowledge on the platform, or preparing for the CCFA exam.

Naveen

August 1, 2023

Great start so far. Would love to have additional videos on Crowdstrike for the topics not covered in this course.

Paul

July 6, 2023

While I agree with some of the negative comments here such as missing information (such as fusion.) I really like the personality added and my main gripe is there isn't additional CrowdStrike courses for me to watch. This course isn't a complete course but what is here I find value in and supplement with other sources. Lets have more please :)

Wolfgang

June 29, 2023

The presentation needs a lot of work. Rehearsing a bit before recording so that you know what you are going to say would be time well spent. I just finished the module on Installation and I really don't care that you think the Penguin is cute or why Linux chose to use it. Your opinions of Apple are simply not relevant to the material. Towards the end of the portion on Tokens, you say "I guess" that Tokens should be explained. That's a good guess! They should be explained before you gloss over how to configure them. At this point, I haven't gained anything that a Sales Demo from Crowd Strike didn't teach me. In the next to last module, the last module is referred to as "exam crap." In that module clearly states that things were left out of the course! The first point under "What you'll learn" states "Pass the CrowdStrike Certified Falcon Administrator (CCFA) exam!" If you are considering this course, listen to the last module first, then request a refund. Hallie makes several comments throughout the course that I don't consider professional and the "What you'll learn" section is simply misleading.

Burc

June 17, 2023

I am thinking that it would be better if the console was used more. As Cyber Security Specialist, I think that teaching with real-world scenarios would always be more fruitful.

Trevor

May 24, 2023

Wonderful course. Very straight forward. With this and study questions, passing the exam was an absolute breeze.

Sarthak

May 19, 2023

Thank you so much for explaining so nicely. LOL this is the 1st time i didn't skip or dozed in mid of the course. Please post your next course on Threat Hunting. Very well explained all the modules.

Pascal

April 29, 2023

This course is not enough to install, configure, and manage CS Falcon in an enterprise environment. It is just an introduction.

Vijay

April 22, 2023

Overall Course is Good . It would have been better if below sections were added . 1. Threat hunting using SPL 2. Session on setting up Trial tenant to practice. 3 . Running few malicious scripts and investigating alerts 4. Quick intro RTR and commands used

Asong

April 19, 2023

Awesome content with excellent delivery. The explanation alongside demo's makes is easily understandable.

Hai

March 29, 2023

Super helpful in pointing me towards what to study for the exam, and good source of information on the best practices for managing a CS console. Passed my CCFA thanks to this!

Tina

March 1, 2023

An excellent course to prep you for the CCFA! This is not a threat hunting course so I hope you make one for that soon.

Kapil

February 23, 2023

Really interesting to see the options and features within the product. missing details on setting up environment. But for me it is 4.5/5.

Charts

Price

Rating

Enrollment distribution

CrowdStrike: Zero to Falcon Admin - Distribution chart