Defender - Get Incident
- 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
Defender - Get Incident
- Updated on 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
Defender - Get Incident
Description
AlertsDefender – Get Incident Alerts is a playbooks that helps organizations stay informed of security incidents. The playbook is designed to detect and alert users of any suspicious activity or potential security threats. It monitors for malicious activity on the network, such as suspicious IP addresses, unauthorized access attempts, and other suspicious activity. The playbook will send out alerts to the appropriate personnel when any of these activities are detected. This allows organizations to take immediate action to address the issue and prevent any further damage. The playbook also provides detailed reports and analytics to help organizations better understand the threats they face and take the necessary steps to protect their systems. With Defender, organizations can stay ahead of security threats and ensure their data is safe and secure.
Trigger Request
HTTP Post Request
Headers:
| Key | Value |
|---|---|
| Content-Type | application/json |
- Json body parameters:
| Parameters | Type | Description |
|---|---|---|
| incident_id | string | Please provide the description of this parameter. |
Supported CDC Versions
- 2.8
Was this article helpful?