XDR - Incident - Search Incidents
Details
This atomic belongs to the Cisco XDR: Incident atomic group.
Searches for incidents in your Cisco XDR private intelligence store.
Target: Platform APIs
Steps:
[] Build the query string
[] Request incidents from Cisco XDR
[] Check if the request was successful:
[]> If it was, set the output variable
[]> If it wasn't, return an error
More information about this API: https://developer.cisco.com/docs/cisco-xdr/search-incidents-in-private-intel-incidents-enriched-with-enrichment_status-when-available/
About
Authorship
Cisco Managed