CrowdStrike - Get Detection by Query
- 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
CrowdStrike - Get Detection by Query
- Updated on 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
CrowdStrike - Get Detection by Query
Description
CrowdStrike's Get Detection by Query Automation is a powerful tool that helps organizations quickly and easily access their security data. This automation allows users to query the CrowdStrike Falcon platform for detections and retrieve the results in a structured format. With this automation, users can quickly and easily access their security data, allowing them to identify and respond to potential threats quickly and accurately. This automation helps organizations stay ahead of the curve and ensure that their security data is up-to-date and accurate. Additionally, this automation helps organizations save time and resources by eliminating the need for manual data retrieval, allowing them to focus on more important tasks.
Trigger Request
HTTP Post Request
Headers:
| Key | Value |
|---|---|
| Content-Type | application/json |
- Json body parameters:
| Parameters | Type | Description |
|---|---|---|
| access_token | string | Access token for the CrowdStrike API. Can be achieved by calling to CrowdStrike_Base_Token flow. |
| filter | string | An FQL (Falcon Query Language) expression to filter detections by. |
| limit | integer | Please provide the description of this parameter. |
| offset | integer | Please provide the description of this parameter. |
| query | string | Please provide the description of this parameter. |
| sort | string | Please provide the description of this parameter. |
Supported CDC Versions
- 2.8
Was this article helpful?