Contact sales
Details

This atomic belongs to the Cisco XDR: Analytics atomic group.

Fetches findings for a specific detection from Cisco XDR.

Target: Query APIs

Steps:

  • Fetch the detection's findings
  • Check if the request was successful (if not, end the workflow)
  • Extract the finding list
  • Set the output variables

More information about this API: https://queryservice.us.security.cisco.com/swagger-ui#/Detections/get-findings-by-detection-id

About
Authorship
Cisco Managed