How does Linux it self or some other software on Linux address what Crowd Strike is doing for Windows?

E: thanks for the answers :)

  • InternetCitizen2@lemmy.worldOP
    link
    fedilink
    arrow-up
    2
    ·
    4 months ago

    The Linux BSOD is quite funny. But reading from Crowd Strike’s website the Falcon product is supposed to monitor for breaches(?), so I was curious about what analogs exist in Linux or how the OS it self takes on that role.

    • TechNom (nobody)@programming.dev
      link
      fedilink
      English
      arrow-up
      4
      ·
      4 months ago

      Crowdstrike exists for Linux too. In fact, it apparently crashed RHEL and Debian a few months back. That didn’t get so much attention.

      Falcon seems to be a cross between an antivirus and an intrusion detection system (IDS). There are many antiviruses on Linux, but only one FOSS AV is popular - ClamAV. As for IDS, snort is an example.

      But in the true sense, Falcon is much more than just an AV and IDS. It’s a way to detect breaches and report it back to CrowdStrike’s threat detection and analysis teams. I don’t think there exists a proper alternative even in the commercial sector.