{% hint style="info" %} If you’re new to integrations in Rewst, read through our introductory integration documentation here. {% endhint %}
Our CrowdStrike integration enables advanced thread detection and endpoint security management. Use the CrowdStrike Falcon API within Rewst workflows to perform actions such as retrieving detections and managing devices.
- Log in to your CrowdStrike Falcon Account.
- Click on the Hamburger Icon in the left-hand corner to expand the sidebar.
- Click Support and Resources.
- Click API clients and Keys.
- Click Add new API Client on the center-right of the screen.
- Enter a Client Name and Description.
- Choose the permissions you'd like to give Rewst.
- Click Add to save the new API Client.
- Save the values listed for the API URL, Client Key, and Client Secret in a secure location. Once you migrate away from this page, you'll no longer be able to view them. This information will be needed for further steps in Rewst.
- Navigate to Marketplace > Integrations in the left side menu of your Rewst platform.
- Search for
CrowdStrikein the integrations page. - Click on the integration tile to launch the configuration setup page.

- Under Parameters, enter the information copied from CrowdStrike into the relevant fields:
- API URL
- Client Key
- Client Secret
- Click Save Configuration.
- Rewst will do a quick validation of your input. Once completed, you'll see a new section beneath the configuration form for organization mapping. Complete your mapping as desired.
{% hint style="success" %} Got an idea for a new Integration? Rewst is constantly adding new integrations to our integrations page. Submit your idea or upvote existing ideas here in our Canny feedback collector. {% endhint %}
{% hint style="info" %} For more on how actions work in Rewst, check out our introductory actions documentation here. {% endhint %}
| Category | Action | Description |
|---|---|---|
| Alerts | List Alerts | Lists any alerts that have been raised |
| Detects | List Detections | Lists any detections that have been raised |
| Detects | Get Detection(s) | Description coming soon... |
| Devices | List Devices | Description coming soon... |
| Devices | Get Device(s) | Description coming soon... |
| Devices | List Device Host Groups | Description coming soon... |
| Discover | List Accounts | List subaccounts associated with your account |
| Discover | List Hosts | List hosts associated with your account |
| Discover | List Logins | List the logins for users on your account |
| Generic Request | API Request | Generic action for making authenticated requests against the CrowdStrike Falcon API |
| Incidents | List Incidents | Lists any incidents that have been raised |
| Reports | List Reports | Lists FalconX Reports for your account |
| Users | List Users | Lists created users and their properties for your account |
| Users | Get User(s) | Gets specified users and their properties from your account |
| Users | List User Roles | Lists user roles and their properties for your accounts |
| Users | Delete User | Deletes specified users permanently from your account |
| Users | Create User | Creates a new user in your account |