Cloud-AWS
A collection of projects supporting AWS Integration (by CrowdStrike)
falconpy
The CrowdStrike Falcon SDK for Python (by CrowdStrike)
Our great sponsors
Cloud-AWS | falconpy | |
---|---|---|
18 | 30 | |
137 | 304 | |
0.7% | 5.9% | |
7.3 | 9.5 | |
9 days ago | 4 days ago | |
Python | Python | |
MIT License | The Unlicense |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Cloud-AWS
Posts with mentions or reviews of Cloud-AWS.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-01-04.
-
CS Sensor communication in AWS envirnoments
Nothing better than CrowdStrike and AWS!
-
CrowdStrike alternative to Kaspersky Scan Engine
You can find the sample here: https://github.com/CrowdStrike/Cloud-AWS/tree/main/s3-bucket-protection
- Best way to protect AWS EC2 instances with CrowdStrike, cloud posture?
-
Crowdstrike install with the terraform
We have an example bootstrap for AWS environments that leverages Terraform located here: https://github.com/CrowdStrike/Cloud-AWS/tree/main/Agent-Install-Examples/Terraform-bootstrap-s3
-
PSFalcon Documentation
Download and install Falcon using PowerShell (no PSFalcon required)
-
Installing Crowdstrike as Task Sequence Step in Endpoint Manager
I have my moments :) CrowdStrike actually do all the heavy lifting... https://github.com/CrowdStrike/Cloud-AWS/blob/main/Agent-Install-Examples/powershell/sensor_install.ps1
-
Is it possible to use PSFalcon to download and install the latest sensor?
Here's a bash version: https://github.com/CrowdStrike/Cloud-AWS/tree/main/Agent-Install-Examples/bash/API-download
-
What components are part of the "Falcon CWP for AWS" package?
Falcon sensor - sensor/agent is available as an EXE or container, or direct download over API (powershell example).
-
Using QuickScan API
Integration example: Protect a S3 bucket with CrowdStrike Quickscan
-
How do I create an unattended install with powershell?
MDM/Deployment tool of your choice + this example installer script = smooth sailing.
falconpy
Posts with mentions or reviews of falconpy.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-07-12.
-
Identity API for PSfalcon or FalconPY
And for falconpy: https://github.com/CrowdStrike/falconpy/wiki/Identity-Protection
-
APIs for Operational stuffs
https://github.com/CrowdStrike/falconpy/tree/main/samples https://github.com/CrowdStrike/psfalcon/tree/master/samples
-
API - Group by Remediation
We also have an example that does some sorting and basic aggregation that's a little similar (but does not focus on remediations). Similar to your suggestion, this sample also consumes all available matches at the outset using a pretty expansive query.
-
How do i search for all hosts with FQL/FalconPy?
Here's a sample that will paginate through all of your hosts. Depending on the API call you're using, you can request up to 5,000 hosts.
-
Find Host by CVE List
Howdy Yall, qq. Does anyone know if it is possible to search not just one CVE but a short list? from the github here https://github.com/CrowdStrike/falconpy/blob/main/samples/spotlight/find_hosts_by_cve.py
-
Host and MSSP Endpoint’s
Logging in with the parent credentials to the Hosts Service Class will show hosts from child CIDs when you make calls to QueryDevicesByFilter or QueryDevicesByFilterScroll. For an example on how to paginate through the results, you can check out the sample here: https://github.com/CrowdStrike/falconpy/blob/main/samples/hosts/sensor_versions_by_hostname_scrolling.py
-
Help with simple python script
start with samples work backward: https://github.com/CrowdStrike/falconpy/tree/main/samples/hosts
-
How to Resolve a 405 Error When Setting Up CrowdStrike Stream with Google Chronicle?
I would need to see more of your code to get an idea for why you're running into this error. You may find it easier to review an existing integration that populates Chronicle via the Event Streams API instead. This one leverages our Python SDK: https://github.com/CrowdStrike/falcon-integration-gateway.
-
Associate Put file ID with put file name in Falconpy
Can I see more of your code? Feels like we're missing something. Sample code (queued execute): https://github.com/CrowdStrike/falconpy/blob/main/samples/rtr/queued_execute.py
-
Error when attempting to update Device Control policy
I think you may be right. It looks like the payload handler for this operation is not looking for the id key. (I will track this fix using the GitHub issue you just created. )