Find FalconHostname - CrowdStrike/psfalcon GitHub Wiki

Find-FalconHostname

SYNOPSIS

Find hosts using a list of hostnames

DESCRIPTION

Perform hostname searches in groups of 100.

Requires 'Hosts: Read'.

PARAMETERS

Name Type Description Min Max Allowed Pipeline PipelineByName
Path String Path to a plain text file containing hostnames
Include String[] Include additional properties agent_version
cid
external_ip
first_seen
hostname
last_seen
local_ip
mac_address
os_build
os_version
platform_name
product_type
product_type_desc
serial_number
system_manufacturer
system_product_name
tags
Partial Switch Perform a non-exact search
Array String[] An array containing hostnames X

SYNTAX

Find-FalconHostname [-Path] <String> [[-Include] <String[]>] [-Partial] [-WhatIf] [-Confirm] [<CommonParameters>]
Find-FalconHostname [[-Include] <String[]>] [-Partial] -Array <String[]> [-WhatIf] [-Confirm] [<CommonParameters>]

USAGE

Finding hosts with a list of hostnames

A search with Get-FalconHost and a hostname filter is used to find device_id values that match a specific hostname. To find hosts using a list of hostnames, you can loop through the list or use Find-FalconHostname.

Find-FalconHostname can accept a list of hostnames as an array, or from a plaintext file containing a hostname on each line. If a match is found, the hostname and device_id will be output, otherwise a warning message will be generated.

'hostname1','hostname2' | Find-FalconHostname
Find-FalconHostname -Array 'hostname3','hostname4'
Find-FalconHostname -Path .\my_hostname_list.txt

2023-04-25: PSFalcon v2.2.5

⚠️ **GitHub.com Fallback** ⚠️