Bulk Containment of the hosts.(possibly 1000 hosts or more) #1379
Description
We are looking to quarantine (contain) multiple hosts at once using CrowdStrike Falcon. While we know the Falcon Console allows containment per host via the UI, we need to contain a large number of hosts (up to ~1,000) in one operation.
We would like guidance on:
How to use the CrowdStrike Falcon API (or Real Time Response) with Python to achieve bulk host containment.
Best practices to handle large-scale containment, including API rate limits, authentication, and error handling.
Sample scripts, code snippets, or references to official Python libraries for automating this task.
Our goal is to safely and efficiently quarantine multiple hosts at scale while following CrowdStrike best practices.
Any pointers, examples, or documentation references would be greatly appreciated!