New FalconScheduledScan - CrowdStrike/psfalcon GitHub Wiki
Create a scheduled scan targeting host groups
Requires 'On-demand scans (ODS): Write'.
| Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
|---|---|---|---|---|---|---|---|
| StartTime | String | Start time (yyyy-MM-ddThh:mm) | |||||
| Repeat | String | Repetition frequency |
neverdailyweeklyevery_other_weekevery_4_weeksmonthly
|
||||
| FilePath | String[] | File path(s) to scan | |||||
| SensorDetection | String | On-sensor machine-learning detection level |
disabledcautiousmoderateaggressiveextra_aggressive
|
||||
| SensorPrevention | String | On-sensor machine-learning prevention level |
disabledcautiousmoderateaggressiveextra_aggressive
|
||||
| CloudDetection | String | Cloud-based machine-learning detection level |
disabledcautiousmoderateaggressiveextra_aggressive
|
||||
| CloudPrevention | String | Cloud-based machine-learning prevention level |
disabledcautiousmoderateaggressiveextra_aggressive
|
||||
| ScanExclusion | String[] | File path(s) to exclude, in glob syntax | |||||
| ScanInclusion | String[] | File path(s) to include, in glob syntax | |||||
| Quarantine | Boolean | Quarantine malicious files | |||||
| MaxFileSize | Int32 | Maximum file size, in MB | |||||
| CpuPriority | String | Maximum CPU utilization |
up_to_1up_to_25up_to_50up_to_75up_to_100
|
||||
| Notification | Boolean | Show notification to end user | |||||
| MaxDuration | Int32 | Allowable scan duration, in hours | 0 |
24 |
|||
| PauseDuration | Int32 | Allowable pause duration, in hours | 0 |
24 |
|||
| Description | String | On-demand scan description | |||||
| Id | String[] | Host group identifier | X | X |
New-FalconScheduledScan [-StartTime] <String> [-Repeat] <String> [-FilePath] <String[]> [-SensorDetection] <String> [-SensorPrevention] <String> [-CloudDetection] <String> [-CloudPrevention] <String> [[-ScanExclusion] <String[]>] [[-ScanInclusion] <String[]>] [[-Quarantine] <Boolean>] [[-MaxFileSize] <Int32>] [[-CpuPriority] <String>] [[-Notification] <Boolean>] [[-MaxDuration] <Int32>] [[-PauseDuration] <Int32>] [[-Description] <String>] [-Id] <String[]> [-WhatIf] [-Confirm] [<CommonParameters>]POST /ods/entities/scheduled-scans/v1
2023-11-27: PSFalcon v2.2.6
