Slack alerts to a webhook endpoint allow for integration and ingestion with other security tools, such as a SIEM or a SOAR.
For more information on how to use webhook endpoints to integrate with security tools, refer to Integrating with your SIEM.
A webhook alert provides detailed information about a violation as shown in the table below:
Detection rule link
Detection Rule Violated
Permalink
Violation link
Violation Time
Integration Metadata
Findings