Am IT Helpdesk, asked to investigate events in Crowdstrike and idk how to do it. Can you help?

My supervisor has given me suspicious domain check tasks on company managed hardware. We're going into Falcon Crowdstrike and investigating events, running a search for .xyz, .club, and .top domains. Most of these are ad sites.

We then run those against reputation checker websites.

Now for the part I don't understand how to do. When a domain comes up as suspicious, I can see the user and 30 fields of information about the event, mostly just numbers. I switch to …

check club crowdstrike cybersecurity domain domains don events falcon hardware helpdesk managed run search understand websites