assign_acquisition_task

Assign evidence collection tasks to specific endpoints for digital forensics using case IDs, acquisition profiles, and endpoint IDs. Supports compression, encryption, and CPU usage limits.

Instructions

Assign an evidence acquisition task to specific endpoints

Input Schema

Name	Required	Description
`acquisitionProfileId`	Yes	The acquisition profile ID to use for the task
`analyzers`	No	Array of analyzer IDs to use (e.g. ["bha", "wsa"])
`caseId`	Yes	The case ID to associate the acquisition with
`cpuLimit`	No	CPU usage limit percentage (1-100). Defaults to 80
`enableCompression`	No	Whether to enable compression. Defaults to true
`enableEncryption`	No	Whether to enable encryption. Defaults to false
`encryptionPassword`	No	Password for encryption if enabled
`endpointIds`	Yes	Array of endpoint IDs to collect evidence from
`keywords`	No	Array of keywords to search for
`organizationIds`	No	Array of organization IDs to filter by. Defaults to [0]

Input Schema (JSON Schema)

{
  "properties": {
    "acquisitionProfileId": {
      "description": "The acquisition profile ID to use for the task",
      "type": "string"
    },
    "analyzers": {
      "description": "Array of analyzer IDs to use (e.g. [\"bha\", \"wsa\"])",
      "items": {
        "type": "string"
      },
      "type": "array"
    },
    "caseId": {
      "description": "The case ID to associate the acquisition with",
      "type": "string"
    },
    "cpuLimit": {
      "description": "CPU usage limit percentage (1-100). Defaults to 80",
      "type": "number"
    },
    "enableCompression": {
      "description": "Whether to enable compression. Defaults to true",
      "type": "boolean"
    },
    "enableEncryption": {
      "description": "Whether to enable encryption. Defaults to false",
      "type": "boolean"
    },
    "encryptionPassword": {
      "description": "Password for encryption if enabled",
      "type": "string"
    },
    "endpointIds": {
      "description": "Array of endpoint IDs to collect evidence from",
      "items": {
        "type": "string"
      },
      "type": "array"
    },
    "keywords": {
      "description": "Array of keywords to search for",
      "items": {
        "type": "string"
      },
      "type": "array"
    },
    "organizationIds": {
      "description": "Array of organization IDs to filter by. Defaults to [0]",
      "items": {
        "type": "number"
      },
      "type": "array"
    }
  },
  "required": [
    "caseId",
    "acquisitionProfileId",
    "endpointIds"
  ],
  "type": "object"
}

This server cannot be installed

Other Tools from Binalyze AIR MCP Server

Related Tools

assign_log_retrieval_task
@binalyze/air-mcp
assign_image_acquisition_task
@binalyze/air-mcp
import_task_assignments_to_case
@binalyze/air-mcp
compare_baseline
@binalyze/air-mcp
download_task_report
@binalyze/air-mcp
export_case_endpoints
@binalyze/air-mcp