Where can you find quarantined file records in CrowdStrike Falcon?

Quarantined file records in CrowdStrike Falcon can be found under the "Endpoint security > Monitor > Quarantined files" section. This location is specifically designed to provide users with visibility into files that have been identified as potentially harmful and subsequently put into quarantine for analysis or remediation.

In this area, users can view detailed information about each quarantined file, including its status, the threat it posed, and actions taken. This functionality is critical for security teams, as it allows them to effectively manage and respond to potential threats detected on endpoints.

The other options, while relevant to endpoint security management, do not specifically address the location of quarantined file records. For instance, configuration settings relate to global policies rather than individual file management, while reporting focuses on broader file activity metrics, and threat history pertains to tracking events rather than specific file quarantines. Hence, the "Monitor" section is the most logical and dedicated area for accessing quarantined files.