# Crowdstrike Next-Gen SIEM integration (QUX)

Integrating **Vectra Detect** data with **CrowdStrike NextGen-SIEM** enables seamless threat detection and enhanced security visibility. This guide outlines the steps required to configure and direct Vectra’s log output to CrowdStrike’s NG-SIEM platform. By leveraging syslog output directed through a log collector (such as Humio), the data is transmitted to CrowdStrike’s NextGen-SIEM using the HEC (HTTP Event Collector) data connector. A custom parser within NG-SIEM processes this data, ensuring that it is accurately parsed and stored in CrowdStrike’s NextGen-SIEM environment. This setup allows security teams to monitor Vectra alerts and events within the broader CrowdStrike ecosystem, supporting improved threat correlation and streamlined incident response.

### Attachments

{% file src="<https://4227135129-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FHJ1ltuWFvsArFWtevnRn%2Fuploads%2Fgit-blob-b91650316a1b81098c262e684f330352bb83f172%2FVectra-Detect-QUX-Oct-31.yaml?alt=media>" %}

{% file src="<https://4227135129-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FHJ1ltuWFvsArFWtevnRn%2Fuploads%2Fgit-blob-b01a4ad4a51c420b34a29428ae7685a92e44d67f%2FVectra_QUX_NGSIEM_Integration_Guide.pdf?alt=media>" %}