Webhooks
Slack alerts to a webhook endpoint allow for integration and ingestion with other security tools, such as a SIEM or a SOAR.
For more information on how to use webhook endpoints to integrate with security tools, refer to Integrating with your SIEM.
Information in Webhook
A webhook alert provides detailed information about a violation as shown in the table below:
Metadata | Information | |
---|---|---|
Detection rule link | ||
Detection Rule Violated | ||
Permalink | ||
Violation link | ||
Violation Time | ||
Integration Metadata | ||
Findings | ||
Last updated