Receive FalconArtifact
Download an artifact from a Falcon Intelligence Sandbox report
Artifact identifier values can be retrieved for specific Falcon Intelligence Sandbox reports using 'Get-FalconReport'.
Requires 'Sandbox (Falcon Intelligence): Read'.
| Name | Type | Min | Max | Allowed | Pipeline | PipelineByName | Description |
|---|---|---|---|---|---|---|---|
| Path | String | Destination path | |||||
| Id | String | X | X | Artifact identifier | |||
| Force | Switch | Overwrite an existing file when present |
Receive-FalconArtifact [-Path] <String> [-Id] <String> [-Force] [-WhatIf] [-Confirm] [<CommonParameters>]$Report = Get-FalconReport -Id <id>
Receive-FalconArtifact -Id $Report.ioc_report_strict_csv_artifact_id -Path .\ioc_report_strict_csv_artifact_id.csvSee Get-FalconReport.
2022-12-12: PSFalcon v2.2.3
