I am trying to find API list for SIEM but unable to get it.
I have SOAR Swagger API, but not able to find SIEM. Please let me know if anyone has any idea.
+10Details on the APIs available for the SIEM are here: https://cloud.google.com/chronicle/docs/reference/backstory-api-quotas
If you'd like to see an example of them implemented, I highly recommend the SecOps CLI: https://github.com/chronicle/cli
-mike
+4Adding the urls for the search and ingestion APIs and Chronicle API Samples in Python:
https://cloud.google.com/chronicle/docs/reference/search-api
https://cloud.google.com/chronicle/docs/reference/ingestion-api
https://github.com/chronicle/api-samples-python
Hope this helps.
+2- Bronze 1
Oh also take a look at https://cloud.google.com/chronicle/docs/reference/rest
It has a lot of API calls that are not in the normal ones that the google staff posted! GL!
But especially the payload for some of the rest endpoints does not work cause documentation is NOT correct. Where can the swagger be found, like for the soar api, it might be somewhere hidden?
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.