Method: Falcon::RealTimeResponseApi#r_tr_execute_command

Defined in:

lib/crimson-falcon/api/real_time_response_api.rb

#r_tr_execute_command(body, opts = {}) ⇒ DomainCommandExecuteResponseWrapper

Execute a command on a single host.

Parameters:

• body (DomainCommandExecuteRequest) —

  Use this endpoint to run these [real time response commands](falcon.crowdstrike.com/support/documentation/11/getting-started-guide#rtr_commands): - `cat` - `cd` - `clear` - `env` - `eventlog` - `filehash` - `getsid` - `help` - `history` - `ipconfig` - `ls` - `mount` - `netstat` - `ps` - `reg query` Required values. The rest of the fields are unused. **`base_command`** read-only command type we are going to execute, for example: `ls` or `cd`. Refer to the RTR documentation for the full list of commands. **`command_string`** Full command string for the command. For example `cd C:\some_directory` **`session_id`** RTR session ID to run the command on

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainCommandExecuteResponseWrapper)

# File 'lib/crimson-falcon/api/real_time_response_api.rb', line 1022

def r_tr_execute_command(body, opts = {})
  data, _status_code, _headers = r_tr_execute_command_with_http_info(body, opts)
  data
end