How does Linux it self or some other software on Linux address what Crowd Strike is doing for Windows?

E: thanks for the answers :)

  • dlove67@feddit.nl
    link
    fedilink
    arrow-up
    6
    arrow-down
    4
    ·
    4 months ago

    How does Linux it self or some other software on Linux address what Crowd Strike is doing for Windows?

    Well, it usually drops to a black screen and kernel panics, but lately there’s been a bit of a push for parity with windows.

    • InternetCitizen2@lemmy.worldOP
      link
      fedilink
      arrow-up
      2
      ·
      4 months ago

      The Linux BSOD is quite funny. But reading from Crowd Strike’s website the Falcon product is supposed to monitor for breaches(?), so I was curious about what analogs exist in Linux or how the OS it self takes on that role.

      • TechNom (nobody)@programming.dev
        link
        fedilink
        English
        arrow-up
        4
        ·
        4 months ago

        Crowdstrike exists for Linux too. In fact, it apparently crashed RHEL and Debian a few months back. That didn’t get so much attention.

        Falcon seems to be a cross between an antivirus and an intrusion detection system (IDS). There are many antiviruses on Linux, but only one FOSS AV is popular - ClamAV. As for IDS, snort is an example.

        But in the true sense, Falcon is much more than just an AV and IDS. It’s a way to detect breaches and report it back to CrowdStrike’s threat detection and analysis teams. I don’t think there exists a proper alternative even in the commercial sector.