CrowdStrike - Check Detection Type
- 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
CrowdStrike - Check Detection Type
- Updated on 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
CrowdStrike - Check Detection Type
Description
CrowdStrike's Check Detection Type Automation is a powerful tool that helps organizations quickly and accurately identify the type of threat they are facing, such as malware, ransomware, phishing, or other malicious activities. It can be used to detect malicious activity on both cloud and on-premises systems, making it an invaluable tool for organizations of all sizes. It uses advanced analytics and machine learning to quickly identify the type of threat, allowing organizations to take the appropriate action quickly and efficiently. Additionally, the automation is designed to be highly secure and reliable, providing organizations with peace of mind that their data is safe and secure. With CrowdStrike's Check Detection Type Automation, organizations can quickly and accurately identify threats and take the appropriate action to protect their systems and data.
Trigger Request
HTTP Post Request
Headers:
| Key | Value |
|---|---|
| Content-Type | application/json |
- Json body parameters:
| Parameters | Type | Description |
|---|---|---|
| Behaviors | object | Array of behaviors. Retrieved from Get_detection_details flow. |
| access_token | string | Access token for CrowdStrike API. Can be achieved by calling to CrowdStrike_Base_Token flow. |
| alertID | string | The CDC alert ID to send the output to. |
| detectId | string | The relative CrowdStrike detection ID. |
| detectSeverity | string | The CrowdStrike assigned severity for the detection. |
| device | object | The CrowdStrike device object. |
| threadID | string | The CDC message thread to send the output to. |
Supported CDC Versions
- 2.8
Was this article helpful?