Receive FalconMalQuerySample - CrowdStrike/psfalcon Wiki

Receive-FalconMalQuerySample

SYNOPSIS

Download a sample or sample archive from Falcon MalQuery [password: 'infected']

DESCRIPTION

Requires 'MalQuery: Read'.

PARAMETERS

Name Type Min Max Allowed Pipeline PipelineByName Description
Path String Destination path
Id String X X Sha256 hash value or MalQuery sample archive identifier
Force Switch Overwrite an existing file when present

SYNTAX

Receive-FalconMalQuerySample [-Path] <String> [-Id] <String> [-Force] [-WhatIf] [-Confirm] [<CommonParameters>]

USAGE

2022-10-06: PSFalcon v2.2.3

⚠️ **GitHub.com Fallback** ⚠️