Skip to content

2.0.8
Compare
Choose a tag to compare
@bk-cs bk-cs released this 14 May 20:36
· 1660 commits to master since this release
2.0.8
fef9f2c 
New Commands
* Added 'Get-FalconQuickScanQuota' to display QuickScan quota information
* Added commands for global 'overwatch-dashboards' APIs:
    'Get-FalconOverWatchEvent'
    'Get-FalconOverWatchDetection'
    'Get-FalconOverWatchIncident'
* Added commands for 'falcon-complete-dashboards' APIs:
    'Get-FalconCompleteAllowlist'
    'Get-FalconCompleteBlocklist'
    'Get-FalconCompleteCollection'
    'Get-FalconCompleteDetection'
    'Get-FalconCompleteEscalation'
    'Get-FalconCompleteIncident'
    'Get-FalconCompleteRemediation'
* Added commands for 'recon' APIs:
    'Edit-FalconReconAction'
    'Edit-FalconReconRule'
    'Get-FalconReconAction'
    'Get-FalconReconNotification'
    'Get-FalconReconRule'
    'New-FalconReconAction'
    'New-FalconReconRule'
    'Remove-FalconReconAction'
    'Remove-FalconReconRule'
* Added command for 'zero-trust-assessment' API:
    'Get-FalconZTA'

New Parameters
* Added 'Total' switch to each command that has 'offset' or 'after' values to provide the total result
  count rather than the actual results

Changed Commands
* Updated custom indicator commands to match new 'iocs' APIs
    'Edit-FalconIOC'
    'Get-FalconIOC'
    'New-FalconIOC'
    'Remove-FalconIOC'
* Updated 'Invoke-FalconRTR' to fix various issues that would cause 'get' requests to fail with more
  than one host
* Modified 'Confirm-FalconGetFile' to reduce the complexity of the output when checking the status
  of a batch 'get' request -- the command now returns each result with the 'aid' value appended to it
  rather than being sorted by 'aid' (which required additional object manipulation to access relevant
  properties)
* Added a check before 'Receive' commands that will abort the command and output an error if the file
  already exists
* Added custom indicators to 'Export-FalconConfig' and 'Import-FalconConfig'

Removed Commands
* Removed custom indicator commands that no longer have supported APIs
    'Get-IOCHost',
    'Get-IOCProcess'
    'Get-IOCTotal'

Parameter Changes
* Removed '.zip' pattern from 'Receive-FalconMalQuerySample' as single file downloads were not zipped

GitHub Issues
* Issue #45: Updated 'Edit-FalconScript' to correctly convert relative to absolute file path
Assets 2
Loading