CrowdStrike - Execute Command Flow
- 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
CrowdStrike - Execute Command Flow
- Updated on 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
CrowdStrike - Execute Command Flow
Description
CrowdStrike's Execute Command Flow is a playbook that enables organizations to quickly and securely execute commands on their endpoints. This automation allows users to quickly and easily send commands to their endpoints, such as launching a scan, deploying an agent, or running a script. With this automation, organizations can ensure that their endpoints are up-to-date and secure, and can proactively respond to security threats. The Execute Command Flow also provides a secure connection between the endpoint and the CrowdStrike platform, allowing organizations to securely send commands without having to worry about malicious actors intercepting the command. Additionally, the automation provides detailed logging and reporting, allowing organizations to easily track the status of their endpoints and the actions they have taken.
Trigger Request
HTTP Post Request
Headers:
| Key | Value |
|---|---|
| Content-Type | application/json |
- Json body parameters:
| Parameters | Type | Description |
|---|---|---|
| base_command | string | Any supported command like, rm, ls, cat, etc. |
| command_string | string | The full command line includes parameters. for example, 'rm test.txt'. |
| device_id | string | The target device CrowdStrike ID to execute the command on. |
Supported CDC Versions
- 2.8
Was this article helpful?