Update Threat Incident
Update the incident details of a threat.
Parameters
| Parameter | Description |
|---|---|
| New Incident Status | The new incident status. Options: <br/>in_progress<br/>resolved<br/>unresolved<br/> |
| Threats IDs | Threats to update their external ticket ID. |
Example Output
{
"errors": [
{
"type": "object"
}
],
"data": {
"affected": "integer",
"details": [
{
"analystVerdict": "updated",
"result": "updated",
"threatId": "225494730938493804"
}
]
}
}
Automation Library Example
Update Threat Incident with Sentinelone and Send Results Via Email
Preview this Automation on desktop