Findings
Generator
Configuration
Lucidum Reverse
Architecture
Statistics
← All Findings
Vendor:
CrowdStrike Falcon
FIN-566
Weight:
5
4
3
2
1
Confidence:
High
Medium
Low
Edited:
2026-03-06 18:14
Verified
What It Detects
This internet-facing asset has the CrowdStrike Falcon sensor disabled. The combination of public network exposure and zero endpoint protection creates an immediate breach risk. External attackers can target this host directly with no behavioral detection, no process monitoring, and no automated response to block the attack.
MITRE ATT&CK Techniques
Comma-separated, e.g. T1078, T1190
Checks
read-only
Field
Operator
Value
Agent Enabled (True/False)
equals
False
Public IP Address
not_empty
Remediation
×
×
×
×
×
+ Add item
Why It Matters
×
×
×
+ Add item
Save Changes
Export Lucidum