Get FalconContainerDriftIndicator - CrowdStrike/psfalcon GitHub Wiki
Search for Falcon Container Security container drift indicators
Requires 'Falcon Container Image: Read'.
| Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
|---|---|---|---|---|---|---|---|
| Id | String[] | Falcon Cloud Security drift indicator | X | X | |||
| Filter | String |
Falcon Query Language expression to limit resultscidcloud_namecommand_linecontainer_idfile_namefile_sha256host_idindicator_process_idnamespaceoccurred_atparent_process_idpod_namepreventedscheduler_nameseverityworker_node_name
|
|||||
| Sort | String | Property and direction to sort results | |||||
| Limit | Int32 | Maximum number of results per request | |||||
| Offset | Int32 | Position to begin retrieving results | |||||
| Detailed | Switch | Retrieve detailed information | |||||
| All | Switch | Repeat requests until all available results are retrieved | |||||
| Total | Switch | Display total result count instead of results |
Get-FalconContainerDriftIndicator [[-Filter] <String>] [[-Sort] <String>] [[-Limit] <Int32>] [-Offset <Int32>] [-All] [-Total] [-WhatIf] [-Confirm] [<CommonParameters>]Get-FalconContainerDriftIndicator -Id <String[]> [-WhatIf] [-Confirm] [<CommonParameters>]Get-FalconContainerDriftIndicator [[-Filter] <String>] [[-Sort] <String>] [[-Limit] <Int32>] [-Offset <Int32>] -Detailed [-WhatIf] [-Confirm] [<CommonParameters>]GET /container-security/combined/drift-indicators/v1
GET /container-security/entities/drift-indicators/v1
GET /container-security/queries/drift-indicators/v1
SearchDriftIndicators
ReadDriftIndicatorEntities
SearchAndReadDriftIndicatorEntities
2024-09-03: PSFalcon v2.2.7
