-
Notifications
You must be signed in to change notification settings - Fork 0
/
sample-post.json
41 lines (41 loc) · 1017 Bytes
/
sample-post.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
{
"id": "<snip>",
"name": "<snip>",
"etag": "<snip>",
"type": "Microsoft.SecurityInsights/Incidents",
"properties": {
"title": "Custom Alert Rule",
"description": "Custom incident rule",
"severity": "Medium",
"status": "New",
"owner": {
"objectId": "",
"email": "",
"assignedTo": "",
"userPrincipalName": ""
},
"labels": [],
"firstActivityTimeUtc": "2021-05-13T09:41:08.844Z",
"lastActivityTimeUtc": "2021-05-13T09:41:08.844Z",
"lastModifiedTimeUtc": "2021-05-13T10:30:23.0752524Z",
"createdTimeUtc": "2021-05-13T10:30:23.0615255Z",
"incidentNumber": 113,
"additionalData": {
"alertsCount": 1,
"bookmarksCount": 0,
"commentsCount": 0,
"alertProductNames": [
"Azure Sentinel"
],
"tactics": [
"Persistence"
]
},
"relatedAnalyticRuleIds": [
"<snip>"
],
"incidentUrl": "<snip>",
"providerName": "Azure Sentinel",
"providerIncidentId": "113"
}
}