List and query incidents. Required license for running the action: Cortex Xpanse Expander
External Documentation
To learn more, visit the Cortex Xpanse documentation.
Parameter | Description |
---|---|
Filters | A list of filters that are applied on the results. For Example:[{ "field" : "ip_address", "value" : "127.0.0.1", "operator" : "in" }, { "field" : "modification_time", "value" : "IncidentFilter_value", "operator" : "in" }] For more information see Cortex Xpanse documentation. |
Sort Field | The field the results are sorted by. |
Sort Type | The type of sort the results are sorted by. |
Parameter | Description |
---|---|
End Offset | The paginating end offset of the results. |
Next Page Token | The next page token that was returned in the last call. |
Return Next Page Token | Should the response include a Next Page Token field for pagination. |
Starting Offset | The paginating starting offset of the results. |
List Incidents with Cortex Xpanse and Send Results Via Email
Preview this Workflow on desktop
List and query incidents. Required license for running the action: Cortex Xpanse Expander
External Documentation
To learn more, visit the Cortex Xpanse documentation.
Parameter | Description |
---|---|
Filters | A list of filters that are applied on the results. For Example:[{ "field" : "ip_address", "value" : "127.0.0.1", "operator" : "in" }, { "field" : "modification_time", "value" : "IncidentFilter_value", "operator" : "in" }] For more information see Cortex Xpanse documentation. |
Sort Field | The field the results are sorted by. |
Sort Type | The type of sort the results are sorted by. |
Parameter | Description |
---|---|
End Offset | The paginating end offset of the results. |
Next Page Token | The next page token that was returned in the last call. |
Return Next Page Token | Should the response include a Next Page Token field for pagination. |
Starting Offset | The paginating starting offset of the results. |
List Incidents with Cortex Xpanse and Send Results Via Email
Preview this Workflow on desktop