Falcon Complete Dashboards

Getting identifiers or totals for detections, device count collections, and incidents

Search for Falcon Complete detection, device collection or incident identifiers

Get-FalconCompleteDetection [-All]

Get-FalconCompleteCollection [-All]

Get-FalconCompleteIncident [-All]

Display the total number of Falcon Complete detections, device collections or incidents

NOTE: The total value is returned in the response header and displayed in the Verbose stream by PSFalcon as pagination_total. It is not output as part of the typical response but is exposed when using the -Verbose parameter.

Get-FalconCompleteDetection -Total
<int_value>

Get-FalconCompleteCollection -Total
<int_value>

Get-FalconCompleteIncident -Total
<int_value>

Getting identifiers or totals for allowlists, blocklists, escalations, and remediations

Search for Falcon Complete allowlist, blocklist, escalation, or remediation identifiers

Get-FalconCompleteAllowlist [-All]

Get-FalconCompleteBlocklist [-All]

Get-FalconCompleteEscalation [-All]

Get-FalconCompleteRemediation [-All]

Display the total number of Falcon Complete allowlist, blocklist, escalation, and remediation tickets

NOTE: The total value is returned in the response header and displayed in the Verbose stream by PSFalcon as pagination_total. It is not output as part of the typical response but is exposed when using the -Verbose parameter.

Get-FalconCompleteAllowlist -Total
<int_value>

Get-FalconCompleteBlocklist -Total
<int_value>

Get-FalconCompleteEscalation -Total
<int_value>

Get-FalconCompleteRemediation -Total
<int_value>

See CrowdStrike API Documentation.

Using PSFalcon
Commands by Permission
Other Commands
Examples
- Code Examples
- Samples
CrowdStrike SDKs
- FalconPy - Python 3
- goFalcon - Go
- Rusty Falcon - Rust

Provide feedback

Saved searches

Use saved searches to filter your results more quickly