Jump to Content
Home
Getting Started
API Reference
Trust Center
Tour
StatusPage
Support
Getting Started
Trust Center
Tour
StatusPage
Support
Home
Getting Started
API Reference
Intake Filters
All
Pages
Start typing to search…
Getting Started
What is Stairwell?
Onboarding Overview
Core Concepts
Quick Start: Deploy a Forwarder
Quick Start: Your First Hunt
Quick Start: API Access
Security Operations
AI Triage
Opinions
Variants & Sightings
Hunting & Search
CEL Query Language
IOC Simple Search
Example Queries
Bulk Search
Run-to-Ground Overview
Understanding the RTG Page
Run-to-Ground Best Practices
Threat Reports
Work with Threat Reports
Share Threat Reports
YARA Rules
Manage YARA Rules
Best Practices
Rule Feeds
integrations
CrowdStrike
Splunk
SentinelOne
Tines
TheHive
Browser Extension
Google SecOps
Generic SIEM/SOAR (Webhook)
Platform Administration
Assets
Asset Registration
Asset Identifiers
Archive Inactive Assets
Sleep & Wake Forwarders
Forwarder Deployment
Connectivity Requirements
Recommended Exclusions
Forwarder Performance Tuning
Handle Multiple Installations
Windows
Install (Manual)
Install (Intune)
Install (SCCM)
Install (Tanium)
Uninstall Forwarder
Update Forwarder
Antivirus Exclusions
Windows Install Parameters
Mac
Install (Manual)
Install (JAMF)
Install (Kandji)
Install (Generic MDM)
Uninstall Forwarder
Update Forwarder
Anti-Tamper Protection
Linux
Install (Manual)
Install (Script)
Uninstall Forwarder
Upgrade Forwarder
Forwarder Troubleshooting
What to Check First
Proxy Support
Change Logging Level
Force or Skip a Backscan
Windows Forwarder Troubleshooting
macOS Forwarder Troubleshooting
Linux Forwarder Troubleshooting
Groups & Policies
Policies Overview
Manage Groups
Create & Edit Policies
Policy Stacking
Asset Configuration
Exclusions
Intake Filters
CLI Utility
Introduction to Swell CLI
Install on Linux
Install on Linux Appliance
Install on macOS
Install on Windows
Install (SentinelOne RSO)
User Management
User Roles & Types
Create & Revoke Auth Tokens
What Auth Tokens Can Access
Manage Environments
Multi-Tenancy & Organizations
Event Notifications
SSO & Authentication
Configure SSO
Reset SSO Settings
Supported Identity Providers
downloads
Stairwell File Forwarder
Windows Forwarder
Windows v1.7.8
Windows v1.7.6
Windows v1.7.4
Windows v1.7.2
Linux Forwarder
Linux v2.4.6
Linux v2.4.5
Linux v2.4.3
macOS Forwarder
macOS v1.7.0
macOS v1.6.12
macOS v1.6.10
Support & FAQ
Who to Contact for Support
Forwarder Deployment Checklist
How Stairwell Differs from VirusTotal
Asset Deployment Strategy
Timezone Reference
File Size & Processing Limits
Stairwell Platform Access Policy
Managing False Positives and Alert Fatigue
Use Cases
Proactive Threat Hunting Based on Emerging TTPs
Rapid IOC Sweep for Newly Disclosed Threats
Secure your Software Development Pipeline
Executive Exposure Assessment
Investigating Suspicious Domains
Investigating Suspicious Domain Contact Without EDR Alerts
Powered by
Intake Filters
Updated 4 days ago
Exclusions
CLI Utility
Ask AI
