Which Falcon documentation guide should you reference to hunt for anomalies related to scheduled tasks and other Windows related artifacts?
Which Falcon documentation guide should you reference to hunt for anomalies related to scheduled tasks and other Windows related artifacts?
The appropriate documentation guide to reference when hunting for anomalies related to scheduled tasks and other Windows-related artifacts is the 'Hunting and Investigation' guide. This guide focuses on investigative techniques and hunting for anomalies, which aligns closely with the activities described in the question.
A. Hunting and Investigation The question keyword "hunt". Document : Falcon Documentation > Event Investigation > Hunting and Investigation (Legacy)