List security events from Defender, Guardian, and Architect.

External Documentation

To learn more, visit the Tessian documentation.

Parameters

ParameterDescription
Created AfterOnly include events that were created after this time. You should use either this parameter, or the after_checkpoint parameter, but not both at once.
If this parameter is provided, but no events are returned, the checkpoint will behave as if no checkpoint was provided at all.
LimitThe maximum number of events to return.
Pagination CursorUse with the output of the checkpoint field to retrieve the next set of events.

Example Output

[
	{
		"from": "<string>",
		"urls": [],
		"portal_link": "<string>",
		"subject": "<string>",
		"confidence": "<string>"
	},
	{
		"from": "<string>",
		"urls": [],
		"portal_link": "<string>",
		"subject": "<string>",
		"confidence": "<string>"
	}
]

Workflow Library Example

List Security Events with Tessian and Send Results Via Email

Preview this Workflow on desktop