Scan Endpoint
Runs a scan on the selected endpoint. Scan execution results can be fetched by the Get Scan Status action.
Parameters
| Parameter | Description |
|---|---|
| Endpoint | The endpoint in which the script will be run. Select the endpoint's hostname or manually type its ID. |
| Incident ID | String representing the incident ID.When included in the request, the Isolate Endpoints action will appear in the Cortex XDR Incident View Timeline tab. |
Workflow Library Example
Scan Endpoint with Cortex Xdr and Send Results Via Email
Preview this Workflow on desktop