Group FalconMalQuerySample - CrowdStrike/psfalcon GitHub Wiki

Group-FalconMalQuerySample

SYNOPSIS

Schedule MalQuery samples for download

DESCRIPTION

Requires 'MalQuery: Write'.

PARAMETERS

Name Type Description Min Max Allowed Pipeline PipelineByName
Id String[] Sha256 hash value X X

SYNTAX

Group-FalconMalQuerySample [-Id] <String[]> [-WhatIf] [-Confirm] [<CommonParameters>]

REFERENCE

Endpoints

POST /malquery/entities/samples-multidownload/v1

falconpy

PostMalQueryEntitiesSamplesMultidownloadV1

USAGE

Download an archive of multiple MalQuery samples

$Request = Group-FalconMalQuerySample -Id <sha256>, <sha256>
Receive-FalconMalQuerySample -Id $Request.reqid -Path .\infected.zip

2023-04-25: PSFalcon v2.2.5

⚠️ **GitHub.com Fallback** ⚠️