Added a sample powershell script to gather all exclusions configured (SVEs, ML Exclusions and IOA exclusions).
This will also allow a user to choose a format such as 'CSV', 'JSON' or 'Text' via the -Output parameter.
Additional parameters that can be used are -ClientId, -ClientSecret, -Hostname (API Hostname) and -Cloud (US-1, US-2, etc). US-1 is the default if no other is chosen.
You can also pass the API client parameters on the command line.
PS C:\Users\dberry\Documents> .\get-all-exclusions-multi-output.ps1 -ClientId '1234567890abcdef1234567890abcdef' -ClientSecret 'abcdefghijklmnopqrstuvwxyz1234567890abcdefg' -OutputFormat 'Text'
cmdlet get-ioa-exclusions.ps1 at command pipeline position 1
Supply values for the following parameters:
OutputFormat: Text
Requesting Falcon token...
Retrieving ML exclusions...
Additional parameters that can be used are -Hostname (API Hostname) and -Cloud (US-1, US-2, etc).
PSFalcon Script: get-all-exclusions-multi-output.ps1
Added a sample powershell script to gather all exclusions configured (SVEs, ML Exclusions and IOA exclusions).
This will also allow a user to choose a format such as 'CSV', 'JSON' or 'Text' via the -Output parameter.
Additional parameters that can be used are -ClientId, -ClientSecret, -Hostname (API Hostname) and -Cloud (US-1, US-2, etc). US-1 is the default if no other is chosen.
Added features and functionality
This is a new sample PSFalcon script
Other
Example script execution.
Once the script execution is complete you will have one file for each exclusion type.
You can also pass the API client parameters on the command line.
Additional parameters that can be used are -Hostname (API Hostname) and -Cloud (US-1, US-2, etc).
US-1 is the default if no other is chosen.