CrowdClient is a Python library for interacting with CrowdStrike Falcon's REST API.

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for tyler-tee from gravatar.com tyler-tee

Unverified details

These details have not been verified by PyPI
Project links
Meta
Report project as malware

Project description

CrowdClient

CrowdClient is a Python library for interacting with CrowdStrike Falcon's REST API.

Installation

pip install crowdclient

Usage

General Use

from CrowdClient.crowdclient import CrowdClient

# Instantiate your client
falcon_client = CrowdClient(<client_id>, <client_secret>)

# Authenticate to retrieve and store an authentication token for subsequent requests
falcon_client.authenticate()

# Get current detections (defaults to new detections only of all severities sorted newest -> oldest)
# Returns a list of all ID's matching above criteria
detections = falcon_client.get_detections()

# Get the number of hosts in your environment exhibiting activity related to a specified indicator
host_count = falcon_client.indicator_host_count('8.8.8.8', 'ipv4')

Real-Time Response

from CrowdClient.crowdclient import RTRClient

# Instantiate your client and authenticate
rtr_client = RTRClient(<client_id>, <client_secret>, verify_cert=False)
rtr_client.authenticate()

# Initiate a batch session for multiple hosts
batch_id = rtr_client.batch_init(['hostid1', 'hostid2', 'hostid3'])

# Issue an RTR Admin command using the established session - Exclude a host if you'd like
rtr_client.batch_admin_cmd(batch_id, command='ls', command_string='ls C:\Users\', optional_hosts=['hostid3'])

# View the script ID's available for the user to use with the 'runscript' command
script_ids = rtr_client.get_scripts()

# Get the details for said scripts
script_details = rtr_client.script_details(script_ids)

License

MIT

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for tyler-tee from gravatar.com tyler-tee

Unverified details

These details have not been verified by PyPI
Project links
Meta

Release history Release notifications | RSS feed

This version

0.3.6

0.3.5

0.3.4

0.3.3

0.3.2

0.3.1

0.3.0

0.2.9

0.2.8

0.2.7

0.2.6

0.2.5

0.2.4

0.2.3

0.2.2

0.2.1

0.2.0

0.1.4

0.1.3

0.1.2

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

CrowdClient-0.3.6.tar.gz (10.1 kB view details)

Uploaded Source

File details

Details for the file CrowdClient-0.3.6.tar.gz.

File metadata

  • Download URL: CrowdClient-0.3.6.tar.gz
  • Upload date:
  • Size: 10.1 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/45.2.0.post20200210 requests-toolbelt/0.9.1 tqdm/4.42.1 CPython/3.7.6

File hashes

Hashes for CrowdClient-0.3.6.tar.gz
Algorithm Hash digest
SHA256 6a11e85dddcb4d69d8113bf01d6fce3ee40e2c43572fa618359193cf32acce70
MD5 2d02d5f00b67c41afe51de8d46926636
BLAKE2b-256 e2914c4a8ee325ae25bc90bf3f016375315e8f703ad0976147f45471a26f357a

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page