Cloud-native security company, CrowdStrike, has announced the launch of Falcon Raptor, a re-architected release of its Falcon platform. This next-generation product includes generative AI-powered incident investigation capabilities and extended detection and response (XDR) features. With Falcon Raptor, CrowdStrike aims to improve data collection, search, and storage capabilities, working at “petabyte scale.”
In addition to Falcon Raptor, CrowdStrike has also introduced Falcon Foundry, which the company claims is the cybersecurity industry’s first no-code application development platform. This platform allows users to quickly build no-code apps with full access to data and threat intelligence across the Falcon platform.
Furthermore, enhancements have been made to CrowdStrike’s unified Falcon platform. These enhancements focus on data protection, exposure management, and IT automation. The aim is to provide users with a more comprehensive and streamlined security solution.
The Falcon Raptor release brings several notable components to the Falcon platform. One of the key additions is the Charlotte AI Investigator, an AI-powered tool that automates incident creation and investigation. The tool can automatically correlate relevant information and generate an incident summary for security analysts.
Another significant component is XDR for All, which upgrades CrowdStrike EDR customers to native XDR for faster investigations. Additionally, XDR Incident Workbench offers a redesigned and faster user experience for EDR/XDR, improving investigation and response times.
To further enhance collaboration among security analysts, CrowdStrike has introduced the Collaborative Incident Command Center. This feature provides a unified source of truth for real-time incident management, enabling security analysts to work together from any location.
CrowdStrike also promises faster searches with sub-second latency on large data sets. This improvement allows for quicker identification of adversaries and risks. The Falcon Raptor release will be rolled out to all current CrowdStrike customers over the next year, beginning this month.
Falcon Foundry, the no-code application development platform, leverages tools from the Falcon product family, such as the Falcon Fusion SOAR framework and cloud-scale infrastructure. By utilizing data from the CrowdStrike platform, users can build custom apps to address specific security and IT challenges. These applications seamlessly integrate with the Falcon platform, providing a secure and efficient solution.
In conclusion, CrowdStrike’s Falcon Raptor release, Falcon Foundry, and enhancements to the Falcon platform aim to provide customers with advanced security capabilities and improved incident investigation. With these additions, CrowdStrike continues to innovate and evolve its offerings to meet the ever-changing demands of the cybersecurity landscape.