Get FalconScanFile - CrowdStrike/psfalcon GitHub Wiki
Search for files found by on-demand or scheduled scans
Requires 'On-demand scans (ODS): Read'.
| Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
|---|---|---|---|---|---|---|---|
| Id | String[] | Malicious file identifier | X | X | |||
| Filter | String | Falcon Query Language expression to limit results | |||||
| Sort | String | Property and direction to sort results |
id|ascid|descscan_id|ascscan_id|deschost_id|aschost_id|deschost_scan_id|aschost_scan_id|descfilename|ascfilename|deschash|aschash|descpattern_id|ascpattern_id|descseverity|ascseverity|desclast_updated|asclast_updated|desc
|
||||
| Limit | Int32 | Maximum number of results per request | |||||
| Offset | Int32 | Position to begin retrieving results | |||||
| Detailed | Switch | Retrieve detailed information | |||||
| All | Switch | Repeat requests until all available results are retrieved | |||||
| Total | Switch | Display total result count instead of results |
Get-FalconScanFile [[-Filter] <String>] [[-Sort] <String>] [[-Limit] <Int32>] [-Offset <Int32>] [-Detailed] [-All] [-Total] [-WhatIf] [-Confirm] [<CommonParameters>]Get-FalconScanFile -Id <String[]> [-WhatIf] [-Confirm] [<CommonParameters>]GET /ods/entities/malicious-files/v1
GET /ods/queries/malicious-files/v1
query_malicious_files
get_malicious_files_by_ids
2023-04-25: PSFalcon v2.2.5
