I would like to retrieve generated alerts in google secops SIEM on daily basis. For that I identified the following API endpoint to get the required data: listAlerts_deprecated
It seems that this endpoint will be soon deprecated. Is there an alternative endpoint that provides information about generated alerts ?
Hi,
I think you can use the Chronicle v1alpha API: Method: legacy.legacySearchAlerts | Google Security Operations | Google Cloud
I'd also recommend checking out the legacySearchRulesAlerts API method if you're interested in searching for alerts generated by rules in SecOps' detection engine.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.