Create Deep Visibility Query - Blink Documentation

Initializes a search for events matching the search query across agents. Use the “queryId” field in the response to fetch matched events.

Parameters

Parameter	Description
From Date	Filter results after the given date.
Query	The query to be created. Should be formatted in SentinelOne Query Language (S1QL). For more information, see S1QL Cheatsheet.
To Date	Filter results before the given date.

Example Output

{
	"data": {
		"queryId": "q4015ce6017fb176bc5b215dade314778",
		"queryModeInfo": {
			"lastActivatedAt": "2022-07-22T19:53:09+00:00",
			"mode": "scalyr"
		}
	}
}

Workflow Library Example

Create Deep Visibility Query with Sentinelone and Send Results Via Email

Preview this Workflow on desktop

Integrations

​Parameters

​Example Output

​Workflow Library Example

Parameters

Example Output

Workflow Library Example