Sensor Download
| Operation ID | Description | ||||
|---|---|---|---|---|---|
|
Get sensor installer details by provided query | ||||
|
Download sensor installer by SHA256 ID | ||||
|
Get sensor installer details by provided SHA256 IDs | ||||
|
Get CCID to use with sensor installers | ||||
|
Get sensor installer IDs by provided query | ||||
Get sensor installer details by provided query
get_combined_sensor_installers_by_query
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Datatype | Description |
|---|---|---|---|---|---|
| limit |
 |
|
query | integer | The number of items to return in this response (default: 100, max: 500). Use with the offset parameter to manage pagination of results. |
| filter |
|
|
query | string | Filter items using a query in Falcon Query Language (FQL). An asterisk wildcard * includes all results. Common filter options include:
|
| offset |
|
|
query | integer | The first item to return, where 0 is the latest item. Use with the limit parameter to manage pagination of results. |
| parameters |
|
|
query | string | Full query string parameters payload in JSON format. |
| sort |
|
|
query | string | Sort items using their properties. Common sort options include:
|
from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.get_combined_sensor_installers_by_query(offset=integer,
limit=integer,
sort="string",
filter="string"
)
print(response)from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.GetCombinedSensorInstallersByQuery(offset=integer,
limit=integer,
sort="string",
filter="string"
)
print(response)from falconpy import APIHarness
falcon = APIHarness(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.command("GetCombinedSensorInstallersByQuery",
offset=integer,
limit=integer,
sort="string",
filter="string"
)
print(response)Download sensor installer by SHA256 ID
download_sensor_installer
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Datatype | Description |
|---|---|---|---|---|---|
| download_path |
|
 |
query | string | File path to use for the saved file. Must be present to trigger a file download. |
| id |
|
|
query | string | SHA256 of the installer to download |
| file_name |
|
|
query | string | File name to use for the saved file. Must be present to trigger a file download. |
| parameters |
|
|
query | string | Full query string parameters payload in JSON format. |
from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.download_sensor_installer(id="string",
download_path="/tmp/",
file_name="cs_installer.bin"
)
print(response)from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.DownloadSensorInstallerById(id="string",
download_path="/tmp/",
file_name="cs_installer.exe"
)
print(response)from falconpy import APIHarness
falcon = APIHarness(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.command("DownloadSensorInstallerById", id="string")
print(response)Get sensor installer details by provided SHA256 IDs
get_sensor_installer_entities
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Datatype | Description |
|---|---|---|---|---|---|
| ids |
|
|
query | string or list of strings | The IDs of the installers to retrieve details for. |
| parameters |
|
|
query | string | Full query string parameters payload in JSON format. |
from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
id_list = 'ID1,ID2,ID3' # Can also pass a list here: ['ID1', 'ID2', 'ID3']
response = falcon.get_sensor_installer_entities(ids=id_list)
print(response)from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
id_list = 'ID1,ID2,ID3' # Can also pass a list here: ['ID1', 'ID2', 'ID3']
response = falcon.GetSensorInstallersEntities(ids=id_list)
print(response)from falconpy import APIHarness
falcon = APIHarness(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
id_list = 'ID1,ID2,ID3' # Can also pass a list here: ['ID1', 'ID2', 'ID3']
response = falcon.command("GetSensorInstallersEntities", ids=id_list)
print(response)Get CCID to use with sensor installers
get_sensor_installer_ccid
- Consumes: application/json
- Produces: application/json
No keywords or arguments accepted.
from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.get_sensor_installer_ccid()
print(response)from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.GetSensorInstallersCCIDByQuery()
print(response)from falconpy import APIHarness
falcon = APIHarness(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.command("GetSensorInstallersCCIDByQuery")
print(response)Get sensor installer IDs by provided query
get_sensor_installers_by_query
- Consumes: application/json
- Produces: application/json
| Name | Service | Uber | Type | Datatype | Description |
|---|---|---|---|---|---|
| filter |
|
|
query | string | Filter items using a query in Falcon Query Language (FQL). An asterisk wildcard * includes all results. Common filter options include:
|
| limit |
|
|
query | integer | The number of items to return in this response (default: 100, max: 500). Use with the offset parameter to manage pagination of results. |
| offset |
|
|
query | integer | The first item to return, where 0 is the latest item. Use with the limit parameter to manage pagination of results. |
| parameters |
|
|
query | string | Full query string parameters payload in JSON format. |
| sort |
|
|
query | string | Sort items using their properties. Common sort options include:
|
from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.get_sensor_installers_by_query(offset=integer,
limit=integer,
sort="string",
filter="string"
)
print(response)from falconpy import SensorDownload
falcon = SensorDownload(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.GetSensorInstallersByQuery(offset=integer,
limit=integer,
sort="string",
filter="string"
)
print(response)from falconpy import APIHarness
falcon = APIHarness(client_id="API_CLIENT_ID_HERE",
client_secret="API_CLIENT_SECRET_HERE"
)
response = falcon.command("GetSensorInstallersByQuery",
offset=integer,
limit=integer,
sort="string",
filter="string"
)
print(response)
- Home
- Discussions Board
- Glossary of Terms
- Installation, Upgrades and Removal
- Samples Collection
- Using FalconPy
- API Operations
-
Service Collections
- Alerts
- API Integrations
- ASPM
- Certificate Based Exclusions
- Cloud Connect AWS (deprecated)
- Cloud Snapshots
- Compliance Assessments
- Configuration Assessment
- Configuration Assessment Evaluation Logic
- Container Alerts
- Container Detections
- Container Images
- Container Packages
- Container Vulnerabilities
- CSPM Registration
- Custom IOAs
- Custom Storage
- D4C Registration (deprecated)
- DataScanner
- Delivery Settings
- Detects
- Device Control Policies
- Discover
- Downloads
- Drift Indicators
- Event Streams
- Exposure Management
- Falcon Complete Dashboard
- Falcon Container
- Falcon Intelligence Sandbox
- FDR
- FileVantage
- Firewall Management
- Firewall Policies
- Foundry LogScale
- Host Group
- Host Migration
- Hosts
- Identity Protection
- Image Assessment Policies
- Incidents
- Installation Tokens
- Intel
- IOA Exclusions
- IOC
- IOCs (deprecated)
- Kubernetes Protection
- MalQuery
- Message Center
- ML Exclusions
- Mobile Enrollment
- MSSP (Flight Control)
- OAuth2
- ODS (On Demand Scan)
- Overwatch Dashboard
- Prevention Policy
- Quarantine
- Quick Scan
- Quick Scan Pro
- Real Time Response
- Real Time Response Admin
- Real Time Response Audit
- Recon
- Report Executions
- Response Policies
- Sample Uploads
- Scheduled Reports
- Sensor Download
- Sensor Update Policy
- Sensor Usage
- Sensor Visibility Exclusions
- Spotlight Evaluation Logic
- Spotlight Vulnerabilities
- Tailored Intelligence
- ThreatGraph
- Unidentified Containers
- User Management
- Workflows
- Zero Trust Assessment
- Documentation Support
-
CrowdStrike SDKs
- Crimson Falcon - Ruby
- FalconPy - Python 3
- FalconJS - Javascript
- goFalcon - Go
- PSFalcon - Powershell
- Rusty Falcon - Rust
