CrowdStrike - Incident Actions
- 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
CrowdStrike - Incident Actions
- Updated on 02 Apr 2025
- 1 Minute to read
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
CrowdStrike - Incident Actions
Description
CrowdStrike's Incident Actions is a playbook that provides a streamlined and efficient way to respond to security incidents. It allows organizations to quickly detect, investigate, and respond to threats in real time. This playbook leverages the power of the CrowdStrike Falcon platform to provide a comprehensive set of security incident response capabilities. With Incident Actions, organizations can quickly identify, investigate, and respond to threats, and take proactive steps to prevent future incidents. The playbook includes features such as automated incident response workflows, automated threat intelligence analysis, and automated alerting and notification. Additionally, Incident Actions allows organizations to customize their security incident response processes to meet their specific needs. With Incident Actions, organizations can quickly and effectively respond to security incidents, and ensure that their systems remain secure and protected.
Trigger Request
HTTP Post Request
Headers:
| Key | Value |
|---|---|
| Content-Type | application/json |
- Json body parameters:
| Parameters | Type | Description |
|---|---|---|
| access_token | string | Access token for the CrowdStrike API. Can be achieved by calling to CrowdStrike_Base_Token flow. |
| action_parameters | array | Please provide the description of this parameter. |
| ids | array | Please provide the description of this parameter. |
Supported CDC Versions
- 2.8
Was this article helpful?