List Incidents - Blink Documentation

Search for incidents by providing an FQL filter, sorting, and paging details.

Basic Parameters

Parameter	Description
Filter	Optional filter and sort criteria in the form of an FQL query. For more information about FQL queries, see our FQL documentation in Falcon.
Return All Pages	Automatically fetch all resources, page by page.

Advanced Parameters

Parameter	Description
Limit	The maximum records to return. [1-500].
Offset	Starting index of overall result set from which to return ids.
Sort	The property to sort on, followed by a dot (.), followed by the sort direction, either “asc” or “desc”.

Example Output

{
	"meta": {
		"query_time": 2,
		"pagination": {
			"offset": 0,
			"limit": 95,
			"total": 16
		},
		"powered_by": "<string>",
		"trace_id": "<string>"
	},
	"resources": [
		"<string>",
		"<string>"
	],
	"errors": []
}

Workflow Library Example

List Incidents with Crowdstrike and Send Results Via Email

Preview this Workflow on desktop

Integrations

​Basic Parameters

​Advanced Parameters

​Example Output

​Workflow Library Example

Basic Parameters

Advanced Parameters

Example Output

Workflow Library Example