CrowdStrike - Get IOC Details
- 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
CrowdStrike - Get IOC Details
- Updated on 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
CrowdStrike - Get IOC Details
Description
CrowdStrike's Get IOC Details Automation provides a streamlined way to access and retrieve Indicators of Compromise (IOCs) from the CrowdStrike Falcon platform. This automation allows users to quickly and easily retrieve IOCs from the Falcon platform, enabling them to take action on potential threats, investigate incidents, and respond to security alerts. Get IOC Details provides a secure and efficient way to access and retrieve IOCs, allowing users to quickly analyze and respond to threats. The automation allows users to filter IOCs by type, date, and other criteria, and provides the ability to export IOCs in multiple formats. With Get IOC Details, users can quickly and easily access and retrieve the data they need to investigate and respond to security incidents.
Trigger Request
HTTP Post Request
Headers:
| Key | Value |
|---|---|
| Content-Type | application/json |
- Json body parameters:
| Parameters | Type | Description |
|---|---|---|
| accessToken | string | Access token for the CrowdStrike API. Can be achieved by calling to CrowdStrike_Base_Token flow. |
| iocValue | string | The value of the indicator to search for. |
Supported CDC Versions
- 2.8
Was this article helpful?