Send FalconScript - CrowdStrike/psfalcon GitHub Wiki
Upload a custom Real-time Response script
Requires 'Real time response (admin): Write'.
| Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
|---|---|---|---|---|---|---|---|
| Platform | String[] | Operating system platform |
windowsmaclinux
|
X | |||
| PermissionType | String | Permission level [public: 'Administrators' and 'Active Responders', group: 'Administrators', private: creator] |
privategrouppublic
|
X | |||
| Name | String | Script name | 1 |
32766 |
X | ||
| Description | String | Script description | X | ||||
| Comment | String | Audit log comment | 1 |
4096 |
X | ||
| Path | String | Path to local file or string-based script content | X |
Send-FalconScript [-Platform] <String[]> [-PermissionType] <String> [[-Name] <String>] [[-Description] <String>] [[-Comment] <String>] [-Path] <String> [-WhatIf] [-Confirm] [<CommonParameters>]POST /real-time-response/entities/scripts/v1
Send-FalconScript -Path .\hello_world.ps1 -Platform windows -PermissionType group2023-11-27: PSFalcon v2.2.6
