Get a list of Abnormal cases identified by Abnormal Security.
External DocumentationTo learn more, visit the Abnormal documentation.

Parameters

ParameterDescription
FilterValue must be of the format filter={FILTER KEY} gte YYYY-MM-DDTHH:MM:SSZ lte YYYY-MM-DDTHH:MM:SSZ. A {FILTER KEY} must be specified, and currently the only key that is supported for /threats is receivedTime. At least 1 of gte/lte must be specified, with a datetime string following the YYYY-MM-DDTHH:MM:SSZ format.

Example Output

{
	"cases": [
		{
			"caseId": "1234",
			"severity": "Potential Account Takeover"
		}
	],
	"pageNumber": 1,
	"total": 2
}

Workflow Library Example

List Cases with Abnormal and Send Results Via Email
Workflow LibraryPreview this Workflow on desktop