Get FalconMalQuerySample - CrowdStrike/psfalcon GitHub Wiki
Retrieve Falcon MalQuery indexed file metadata
Requires 'MalQuery: Read'.
| Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
|---|---|---|---|---|---|---|---|
| Id | String[] | Sha256 hash value | X | X |
Get-FalconMalQuerySample [-Id] <String[]> [-WhatIf] [-Confirm] [<CommonParameters>]GET /malquery/entities/metadata/v1
Get-FalconMalQuerySample -Id <sha256>, <sha256>2023-04-25: PSFalcon v2.2.5
