CrowdStrike - Delete Custom IOCs
Details
This atomic belongs to the CrowdStrike atomic group.
Deletes one or more custom indicators of compromise (IOC) from CrowdStrike.
Target: CrowdStrike integration target or an HTTP Endpoint for "api.crowdstrike.com"
Account Key: None if using an integration-provided target, access token if using an HTTP Endpoint target
Steps:
[] Build the authorization header
[] Build the query string
[] Request the indicators be deleted
[] Check if the API request succeeded:
[]> If it didn't, output an error
More information about this API can be found in the CrowdStrike documentation.
About
Integration
Authorship
Cisco Managed