Home
EN
Location
Documentation Home
Palo Alto Networks
Support
Live Community
Knowledge Base
MENU
Home
Security Operations
Cortex XDR
Cortex XDR™ API Reference
APIs
Response Action APIs
Document:
Cortex XDR™ API Reference
Response Action APIs
Download PDF
Last Updated:
Wed Aug 03 23:51:12 PDT 2022
Table of Contents
Search the Table of Contents
APIs Overview
Get Started with APIs
APIs
XQL Query APIs
Start an XQL Query
Get XQL Query Results
Get XQL Query Results Stream
Get XQL Query Quota
Incident Management APIs
Get Incidents
Get Extra Incident Data
Update an Incident
Get Alerts
Update an Alert
Retrieve PCAP Packet
Insert CEF Alerts
Insert Parsed Alerts
Replace Featured Hosts
Replace Featured Users
Replace Featured IP Addresses
Replace Featured Active Directory Groups
Endpoint Management APIs
Get All Endpoints
Get Endpoint
Delete Endpoints
Get Policy
Get Violations
Create Distributions
Get Distribution Version
Get Distribution Status
Get Distribution URL
Set an Endpoint Alias
Assign Tags
Remove Tags
Response Action APIs
Restore File
Retrieve File
File Retrieval Details
Quarantine Files
Get Quarantine Status
Allow List Files
Block List Files
Isolate Endpoints
Unisolate Endpoints
Scan Endpoints
Cancel Scan Endpoints
Get Action Status
Script Execution APIs
Get Scripts
Get Script Metadata
Get Script Execution Status
Get Script Execution Results
Get Script Execution Result Files
Get Script Code
Run Script
Run Snippet Code Script
Rule Management APIs
Insert Simple Indicators, CSV
Insert Simple Indicators, JSON
Audit Log APIs
Get Audit Agent Report
Get Audit Management Log
System Management APIs
System Health Check
Get Tenant Info
API Field Mapping
APIs Overview
Get Started with APIs
APIs
XQL Query APIs
Start an XQL Query
Get XQL Query Results
Get XQL Query Results Stream
Get XQL Query Quota
Incident Management APIs
Get Incidents
Get Extra Incident Data
Update an Incident
Get Alerts
Update an Alert
Retrieve PCAP Packet
Insert CEF Alerts
Insert Parsed Alerts
Replace Featured Hosts
Replace Featured Users
Replace Featured IP Addresses
Replace Featured Active Directory Groups
Endpoint Management APIs
Get All Endpoints
Get Endpoint
Delete Endpoints
Get Policy
Get Violations
Create Distributions
Get Distribution Version
Get Distribution Status
Get Distribution URL
Set an Endpoint Alias
Assign Tags
Remove Tags
Response Action APIs
Restore File
Retrieve File
File Retrieval Details
Quarantine Files
Get Quarantine Status
Allow List Files
Block List Files
Isolate Endpoints
Unisolate Endpoints
Scan Endpoints
Cancel Scan Endpoints
Get Action Status
Script Execution APIs
Get Scripts
Get Script Metadata
Get Script Execution Status
Get Script Execution Results
Get Script Execution Result Files
Get Script Code
Run Script
Run Snippet Code Script
Rule Management APIs
Insert Simple Indicators, CSV
Insert Simple Indicators, JSON
Audit Log APIs
Get Audit Agent Report
Get Audit Management Log
System Management APIs
System Health Check
Get Tenant Info
API Field Mapping
Previous
Next
Response Action APIs
Restore File
File Retrieval Details
Retrieve File
Quarantine Files
Get Quarantine Status
Allow List Files
Block List Files
Isolate Endpoints
Unisolate Endpoints
Scan Endpoints
Cancel Scan Endpoints
Get Action Status
Previous
Next
Most Popular
Recommended For You
Recommended Videos
Recommended videos not found.
