Create XSOAR incidents from CrowdStrike Falcon detections every 10 minutes

Polls CrowdStrike for new detections every 10 minutes and opens matching incidents in Cortex XSOAR with device, tactic, and technique preserved.

crowdstrikexsoardetectiongenericmoderate

Generate this integration ← Back to library

Use case

Create new Cortex XSOAR incidents from CrowdStrike Falcon detections every 10 minutes, preserve tactic+technique+device context, dedupe by composite_id

No code yet. Click below to run the Rinox pipeline. The result is saved to this library entry — every future visitor gets it instantly.

Generate this integration Customize firstSign-in + free-tier limit apply

Useful?

Used by 0 teams · Viewed 5 times · Last validated 5/17/2026