Get FalconActor - CrowdStrike/psfalcon Wiki

Get-FalconActor

SYNOPSIS

Search for threat actors

DESCRIPTION

Requires 'Actors (Falcon X): Read'.

PARAMETERS

Name Type Min Max Allowed Pipeline PipelineByName Description
Id String[] X X Threat actor identifier
Filter String Falcon Query Language expression to limit results
Query String Perform a generic substring search across available fields
Sort String name|asc
name|desc
target_countries|asc
target_countries|desc
target_industries|asc
target_industries|desc
type|asc
type|desc
created_date|asc
created_date|desc
last_activity_date|asc
last_activity_date|desc
last_modified_date|asc
last_modified_date|desc
Property and direction to sort results
Limit Int32 1 5000 Maximum number of results per request
Fields String[] Specific fields, or a predefined collection name surrounded by two underscores [default: basic]
Offset Int32 Position to begin retrieving results
Detailed Switch Retrieve detailed information
All Switch Repeat requests until all available results are retrieved
Total Switch Display total result count instead of results

SYNTAX

Get-FalconActor [[-Filter] <String>] [[-Query] <String>] [[-Sort] <String>] [[-Limit] <Int32>] [-Offset <Int32>] [-All] [-Total] [-WhatIf] -Confirm] [<CommonParameters>]
Get-FalconActor -Id <String[]> [[-Fields] <String[]>] [-WhatIf] [-Confirm] [<CommonParameters>]
Get-FalconActor [[-Filter] <String>] [[-Query] <String>] [[-Sort] <String>] [[-Limit] <Int32>] [[-Fields] <String[]>] [-Offset <Int32>] -Detailed -All] [-WhatIf] [-Confirm] [<CommonParameters>]

Generated 20220922 using PSFalcon v2.2.3

⚠️ **GitHub.com Fallback** ⚠️