Get FalconFileVantageRuleGroup
bk-cs edited this page Sep 14, 2023
·
1 revision
Search for FileVantage rule groups
Requires 'Falcon FileVantage: Read'.
Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
---|---|---|---|---|---|---|---|
Id | String[] | FileVantage rule group identifier | X | X | |||
Type | String | Rule group type |
LinuxFiles MacFiles WindowsFiles WindowsRegistry
|
||||
Sort | String | Property and direction to sort results |
created_timestamp|asc created_timestamp|desc modified_timestamp|asc modified_timestamp|desc
|
||||
Limit | Int32 | Maximum number of results per request | 1 |
500 |
|||
Offset | Int32 | Position to begin retrieving results | |||||
Detailed | Switch | Retrieve detailed information | |||||
All | Switch | Repeat requests until all available results are retrieved | |||||
Total | Switch | Display total result count instead of results |
Get-FalconFileVantageRuleGroup [-Type] <String> [[-Sort] <String>] [[-Limit] <Int32>] [-Offset <Int32>] [-Detailed] [-All] [-Total] [-WhatIf] [-Confirm] [<CommonParameters>]
Get-FalconFileVantageRuleGroup -Id <String[]> [-WhatIf] [-Confirm] [<CommonParameters>]
GET /filevantage/entities/rule-groups/v1
GET /filevantage/queries/rule-groups/v1
2023-09-14: PSFalcon v2.2.6
- Using PSFalcon
-
Commands and Permissions
- Configuration Import/Export
- Container Security
- Detection and Prevention Policies
- Discover for Cloud and Containers
- Discover
- Event Streams
- Falcon Complete Dashboards
- Falcon Complete Message Center
- Falcon Data Replicator
- Falcon Intelligence
- Falcon Intelligence Recon
- Falcon OverWatch Dashboards
- Falcon Sandbox
- FileVantage
- Firewall Management
- Flight Control
- Horizon
- Host and Host Group Management
- Identity Protection
- Image Assessment
- Incident and Detection Monitoring
- Installation Tokens
- Kubernetes Protection
- MalQuery
- Mobile Host Enrollment
- On-Demand Scanning
- Quarantine
- Real-time Response
- Real-time Response Policy
- Scheduled Reports and Searches
- Sensor Download
- Sensor Update Policy
- Spotlight
- Tailored Intelligence
- Third-party ingestion
- USB Device Control Policy
- Users and Roles
- Zero Trust Assessment
- Examples
-
CrowdStrike SDKs
- PSFalcon - PowerShell
- FalconPy - Python 3
- goFalcon - Go
- Rusty Falcon - Rust