Security Monitoring

Create and manage your security rules, signals, filters, and more. See the Datadog Security page for more information.

Change the triage state of a security signal →

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/statehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/statehttps://api.datadoghq.eu/api/v2/security_monitoring/signals/{signal_id}/statehttps://api.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/statehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/statehttps://api.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/statehttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/statehttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/state

List findings → preview

GET https://api.ap1.datadoghq.com/api/v2/posture_management/findingshttps://api.ap2.datadoghq.com/api/v2/posture_management/findingshttps://api.datadoghq.eu/api/v2/posture_management/findingshttps://api.ddog-gov.com/api/v2/posture_management/findingshttps://api.us2.ddog-gov.com/api/v2/posture_management/findingshttps://api.datadoghq.com/api/v2/posture_management/findingshttps://api.us3.datadoghq.com/api/v2/posture_management/findingshttps://api.us5.datadoghq.com/api/v2/posture_management/findings

Add a security signal to an incident →

PATCH https://api.ap1.datadoghq.com/api/v1/security_analytics/signals/{signal_id}/add_to_incidenthttps://api.ap2.datadoghq.com/api/v1/security_analytics/signals/{signal_id}/add_to_incidenthttps://api.datadoghq.eu/api/v1/security_analytics/signals/{signal_id}/add_to_incidenthttps://api.ddog-gov.com/api/v1/security_analytics/signals/{signal_id}/add_to_incidenthttps://api.us2.ddog-gov.com/api/v1/security_analytics/signals/{signal_id}/add_to_incidenthttps://api.datadoghq.com/api/v1/security_analytics/signals/{signal_id}/add_to_incidenthttps://api.us3.datadoghq.com/api/v1/security_analytics/signals/{signal_id}/add_to_incidenthttps://api.us5.datadoghq.com/api/v1/security_analytics/signals/{signal_id}/add_to_incident

Mute or unmute a batch of findings → preview

PATCH https://api.ap1.datadoghq.com/api/v2/posture_management/findingshttps://api.ap2.datadoghq.com/api/v2/posture_management/findingshttps://api.datadoghq.eu/api/v2/posture_management/findingshttps://api.ddog-gov.com/api/v2/posture_management/findingshttps://api.us2.ddog-gov.com/api/v2/posture_management/findingshttps://api.datadoghq.com/api/v2/posture_management/findingshttps://api.us3.datadoghq.com/api/v2/posture_management/findingshttps://api.us5.datadoghq.com/api/v2/posture_management/findings

Get a finding → preview

GET https://api.ap1.datadoghq.com/api/v2/posture_management/findings/{finding_id}https://api.ap2.datadoghq.com/api/v2/posture_management/findings/{finding_id}https://api.datadoghq.eu/api/v2/posture_management/findings/{finding_id}https://api.ddog-gov.com/api/v2/posture_management/findings/{finding_id}https://api.us2.ddog-gov.com/api/v2/posture_management/findings/{finding_id}https://api.datadoghq.com/api/v2/posture_management/findings/{finding_id}https://api.us3.datadoghq.com/api/v2/posture_management/findings/{finding_id}https://api.us5.datadoghq.com/api/v2/posture_management/findings/{finding_id}

Modify the triage assignee of a security signal →

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/assigneehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/assigneehttps://api.datadoghq.eu/api/v2/security_monitoring/signals/{signal_id}/assigneehttps://api.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/assigneehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/assigneehttps://api.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/assigneehttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/assigneehttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/assignee

Get the list of vulnerability notification rules →

GET https://api.ap1.datadoghq.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.ap2.datadoghq.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.datadoghq.eu/api/v2/security/vulnerabilities/notification_ruleshttps://api.ddog-gov.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.us2.ddog-gov.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.datadoghq.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.us3.datadoghq.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.us5.datadoghq.com/api/v2/security/vulnerabilities/notification_rules

Create a new vulnerability-based notification rule →

POST https://api.ap1.datadoghq.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.ap2.datadoghq.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.datadoghq.eu/api/v2/security/vulnerabilities/notification_ruleshttps://api.ddog-gov.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.us2.ddog-gov.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.datadoghq.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.us3.datadoghq.com/api/v2/security/vulnerabilities/notification_ruleshttps://api.us5.datadoghq.com/api/v2/security/vulnerabilities/notification_rules

Get details of a vulnerability notification rule →

GET https://api.ap1.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.ap2.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.datadoghq.eu/api/v2/security/vulnerabilities/notification_rules/{id}https://api.ddog-gov.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.us2.ddog-gov.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.us3.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.us5.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}

Delete a vulnerability-based notification rule →

DELETE https://api.ap1.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.ap2.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.datadoghq.eu/api/v2/security/vulnerabilities/notification_rules/{id}https://api.ddog-gov.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.us2.ddog-gov.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.us3.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.us5.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}

Patch a vulnerability-based notification rule →

PATCH https://api.ap1.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.ap2.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.datadoghq.eu/api/v2/security/vulnerabilities/notification_rules/{id}https://api.ddog-gov.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.us2.ddog-gov.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.us3.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}https://api.us5.datadoghq.com/api/v2/security/vulnerabilities/notification_rules/{id}

Get the list of signal-based notification rules →

GET https://api.ap1.datadoghq.com/api/v2/security/signals/notification_ruleshttps://api.ap2.datadoghq.com/api/v2/security/signals/notification_ruleshttps://api.datadoghq.eu/api/v2/security/signals/notification_ruleshttps://api.ddog-gov.com/api/v2/security/signals/notification_ruleshttps://api.us2.ddog-gov.com/api/v2/security/signals/notification_ruleshttps://api.datadoghq.com/api/v2/security/signals/notification_ruleshttps://api.us3.datadoghq.com/api/v2/security/signals/notification_ruleshttps://api.us5.datadoghq.com/api/v2/security/signals/notification_rules

Create a new signal-based notification rule →

POST https://api.ap1.datadoghq.com/api/v2/security/signals/notification_ruleshttps://api.ap2.datadoghq.com/api/v2/security/signals/notification_ruleshttps://api.datadoghq.eu/api/v2/security/signals/notification_ruleshttps://api.ddog-gov.com/api/v2/security/signals/notification_ruleshttps://api.us2.ddog-gov.com/api/v2/security/signals/notification_ruleshttps://api.datadoghq.com/api/v2/security/signals/notification_ruleshttps://api.us3.datadoghq.com/api/v2/security/signals/notification_ruleshttps://api.us5.datadoghq.com/api/v2/security/signals/notification_rules

Get details of a signal-based notification rule →

GET https://api.ap1.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.ap2.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.datadoghq.eu/api/v2/security/signals/notification_rules/{id}https://api.ddog-gov.com/api/v2/security/signals/notification_rules/{id}https://api.us2.ddog-gov.com/api/v2/security/signals/notification_rules/{id}https://api.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.us3.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.us5.datadoghq.com/api/v2/security/signals/notification_rules/{id}

Delete a signal-based notification rule →

DELETE https://api.ap1.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.ap2.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.datadoghq.eu/api/v2/security/signals/notification_rules/{id}https://api.ddog-gov.com/api/v2/security/signals/notification_rules/{id}https://api.us2.ddog-gov.com/api/v2/security/signals/notification_rules/{id}https://api.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.us3.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.us5.datadoghq.com/api/v2/security/signals/notification_rules/{id}

Patch a signal-based notification rule →

PATCH https://api.ap1.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.ap2.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.datadoghq.eu/api/v2/security/signals/notification_rules/{id}https://api.ddog-gov.com/api/v2/security/signals/notification_rules/{id}https://api.us2.ddog-gov.com/api/v2/security/signals/notification_rules/{id}https://api.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.us3.datadoghq.com/api/v2/security/signals/notification_rules/{id}https://api.us5.datadoghq.com/api/v2/security/signals/notification_rules/{id}

List security findings →

GET https://api.ap1.datadoghq.com/api/v2/security/findingshttps://api.ap2.datadoghq.com/api/v2/security/findingshttps://api.datadoghq.eu/api/v2/security/findingshttps://api.ddog-gov.com/api/v2/security/findingshttps://api.us2.ddog-gov.com/api/v2/security/findingshttps://api.datadoghq.com/api/v2/security/findingshttps://api.us3.datadoghq.com/api/v2/security/findingshttps://api.us5.datadoghq.com/api/v2/security/findings

Search security findings →

POST https://api.ap1.datadoghq.com/api/v2/security/findings/searchhttps://api.ap2.datadoghq.com/api/v2/security/findings/searchhttps://api.datadoghq.eu/api/v2/security/findings/searchhttps://api.ddog-gov.com/api/v2/security/findings/searchhttps://api.us2.ddog-gov.com/api/v2/security/findings/searchhttps://api.datadoghq.com/api/v2/security/findings/searchhttps://api.us3.datadoghq.com/api/v2/security/findings/searchhttps://api.us5.datadoghq.com/api/v2/security/findings/search

Create cases for security findings →

POST https://api.ap1.datadoghq.com/api/v2/security/findings/caseshttps://api.ap2.datadoghq.com/api/v2/security/findings/caseshttps://api.datadoghq.eu/api/v2/security/findings/caseshttps://api.ddog-gov.com/api/v2/security/findings/caseshttps://api.us2.ddog-gov.com/api/v2/security/findings/caseshttps://api.datadoghq.com/api/v2/security/findings/caseshttps://api.us3.datadoghq.com/api/v2/security/findings/caseshttps://api.us5.datadoghq.com/api/v2/security/findings/cases

Detach security findings from their case →

DELETE https://api.ap1.datadoghq.com/api/v2/security/findings/caseshttps://api.ap2.datadoghq.com/api/v2/security/findings/caseshttps://api.datadoghq.eu/api/v2/security/findings/caseshttps://api.ddog-gov.com/api/v2/security/findings/caseshttps://api.us2.ddog-gov.com/api/v2/security/findings/caseshttps://api.datadoghq.com/api/v2/security/findings/caseshttps://api.us3.datadoghq.com/api/v2/security/findings/caseshttps://api.us5.datadoghq.com/api/v2/security/findings/cases

Attach security findings to a case →

PATCH https://api.ap1.datadoghq.com/api/v2/security/findings/cases/{case_id}https://api.ap2.datadoghq.com/api/v2/security/findings/cases/{case_id}https://api.datadoghq.eu/api/v2/security/findings/cases/{case_id}https://api.ddog-gov.com/api/v2/security/findings/cases/{case_id}https://api.us2.ddog-gov.com/api/v2/security/findings/cases/{case_id}https://api.datadoghq.com/api/v2/security/findings/cases/{case_id}https://api.us3.datadoghq.com/api/v2/security/findings/cases/{case_id}https://api.us5.datadoghq.com/api/v2/security/findings/cases/{case_id}

Create Jira issues for security findings →

POST https://api.ap1.datadoghq.com/api/v2/security/findings/jira_issueshttps://api.ap2.datadoghq.com/api/v2/security/findings/jira_issueshttps://api.datadoghq.eu/api/v2/security/findings/jira_issueshttps://api.ddog-gov.com/api/v2/security/findings/jira_issueshttps://api.us2.ddog-gov.com/api/v2/security/findings/jira_issueshttps://api.datadoghq.com/api/v2/security/findings/jira_issueshttps://api.us3.datadoghq.com/api/v2/security/findings/jira_issueshttps://api.us5.datadoghq.com/api/v2/security/findings/jira_issues

Attach security findings to a Jira issue →

PATCH https://api.ap1.datadoghq.com/api/v2/security/findings/jira_issueshttps://api.ap2.datadoghq.com/api/v2/security/findings/jira_issueshttps://api.datadoghq.eu/api/v2/security/findings/jira_issueshttps://api.ddog-gov.com/api/v2/security/findings/jira_issueshttps://api.us2.ddog-gov.com/api/v2/security/findings/jira_issueshttps://api.datadoghq.com/api/v2/security/findings/jira_issueshttps://api.us3.datadoghq.com/api/v2/security/findings/jira_issueshttps://api.us5.datadoghq.com/api/v2/security/findings/jira_issues

Mute or unmute security findings →

PATCH https://api.ap1.datadoghq.com/api/v2/security/findings/mutehttps://api.ap2.datadoghq.com/api/v2/security/findings/mutehttps://api.datadoghq.eu/api/v2/security/findings/mutehttps://api.ddog-gov.com/api/v2/security/findings/mutehttps://api.us2.ddog-gov.com/api/v2/security/findings/mutehttps://api.datadoghq.com/api/v2/security/findings/mutehttps://api.us3.datadoghq.com/api/v2/security/findings/mutehttps://api.us5.datadoghq.com/api/v2/security/findings/mute

Update a custom framework →

PUT https://api.ap1.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.ap2.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.datadoghq.eu/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.ddog-gov.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.us2.ddog-gov.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.us3.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.us5.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}

Delete a custom framework →

DELETE https://api.ap1.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.ap2.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.datadoghq.eu/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.ddog-gov.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.us2.ddog-gov.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.us3.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.us5.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}

Get a custom framework →

GET https://api.ap1.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.ap2.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.datadoghq.eu/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.ddog-gov.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.us2.ddog-gov.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.us3.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}https://api.us5.datadoghq.com/api/v2/cloud_security_management/custom_frameworks/{handle}/{version}

List resource filters →

GET https://api.ap1.datadoghq.com/api/v2/cloud_security_management/resource_filtershttps://api.ap2.datadoghq.com/api/v2/cloud_security_management/resource_filtershttps://api.datadoghq.eu/api/v2/cloud_security_management/resource_filtershttps://api.ddog-gov.com/api/v2/cloud_security_management/resource_filtershttps://api.us2.ddog-gov.com/api/v2/cloud_security_management/resource_filtershttps://api.datadoghq.com/api/v2/cloud_security_management/resource_filtershttps://api.us3.datadoghq.com/api/v2/cloud_security_management/resource_filtershttps://api.us5.datadoghq.com/api/v2/cloud_security_management/resource_filters

Update resource filters →

PUT https://api.ap1.datadoghq.com/api/v2/cloud_security_management/resource_filtershttps://api.ap2.datadoghq.com/api/v2/cloud_security_management/resource_filtershttps://api.datadoghq.eu/api/v2/cloud_security_management/resource_filtershttps://api.ddog-gov.com/api/v2/cloud_security_management/resource_filtershttps://api.us2.ddog-gov.com/api/v2/cloud_security_management/resource_filtershttps://api.datadoghq.com/api/v2/cloud_security_management/resource_filtershttps://api.us3.datadoghq.com/api/v2/cloud_security_management/resource_filtershttps://api.us5.datadoghq.com/api/v2/cloud_security_management/resource_filters

Create a custom framework →

POST https://api.ap1.datadoghq.com/api/v2/cloud_security_management/custom_frameworkshttps://api.ap2.datadoghq.com/api/v2/cloud_security_management/custom_frameworkshttps://api.datadoghq.eu/api/v2/cloud_security_management/custom_frameworkshttps://api.ddog-gov.com/api/v2/cloud_security_management/custom_frameworkshttps://api.us2.ddog-gov.com/api/v2/cloud_security_management/custom_frameworkshttps://api.datadoghq.com/api/v2/cloud_security_management/custom_frameworkshttps://api.us3.datadoghq.com/api/v2/cloud_security_management/custom_frameworkshttps://api.us5.datadoghq.com/api/v2/cloud_security_management/custom_frameworks

Get all security filters →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/security_filtershttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/security_filtershttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/security_filtershttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/security_filtershttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/security_filtershttps://api.datadoghq.com/api/v2/security_monitoring/configuration/security_filtershttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/security_filtershttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/security_filters

Create a security filter →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/security_filtershttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/security_filtershttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/security_filtershttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/security_filtershttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/security_filtershttps://api.datadoghq.com/api/v2/security_monitoring/configuration/security_filtershttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/security_filtershttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/security_filters

Get a security filter →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}

Update a security filter →

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}

Delete a security filter →

DELETE https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/{security_filter_id}

Get all suppression rules →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/suppressionshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/suppressionshttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/suppressionshttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/suppressionshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/suppressionshttps://api.datadoghq.com/api/v2/security_monitoring/configuration/suppressionshttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/suppressionshttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/suppressions

Create a suppression rule →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/suppressionshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/suppressionshttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/suppressionshttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/suppressionshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/suppressionshttps://api.datadoghq.com/api/v2/security_monitoring/configuration/suppressionshttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/suppressionshttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/suppressions

Get a suppression rule →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}

Update a suppression rule →

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}

Delete a suppression rule →

DELETE https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}

Validate a suppression rule →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/validationhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/validationhttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/suppressions/validationhttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/validationhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/validationhttps://api.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/validationhttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/validationhttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/validation

Get suppressions affecting future rule →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/ruleshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/ruleshttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/suppressions/ruleshttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/ruleshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/ruleshttps://api.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/ruleshttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/ruleshttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/rules

Get suppressions affecting a specific rule →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}

Get a suppression's version history →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}/version_historyhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}/version_historyhttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/suppressions/{suppression_id}/version_historyhttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}/version_historyhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}/version_historyhttps://api.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}/version_historyhttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}/version_historyhttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/suppressions/{suppression_id}/version_history

Get all critical assets →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/critical_assetshttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.datadoghq.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets

Create a critical asset →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/critical_assetshttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.datadoghq.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/critical_assetshttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets

Get a critical asset →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}

Update a critical asset →

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}

Delete a critical asset →

DELETE https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/{critical_asset_id}

Get critical assets affecting a specific rule →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/rules/{rule_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/rules/{rule_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/critical_assets/rules/{rule_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assets/rules/{rule_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/critical_assets/rules/{rule_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/rules/{rule_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/rules/{rule_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/critical_assets/rules/{rule_id}

Get content pack states → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/content_packs/stateshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/content_packs/stateshttps://api.datadoghq.eu/api/v2/security_monitoring/content_packs/stateshttps://api.ddog-gov.com/api/v2/security_monitoring/content_packs/stateshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/content_packs/stateshttps://api.datadoghq.com/api/v2/security_monitoring/content_packs/stateshttps://api.us3.datadoghq.com/api/v2/security_monitoring/content_packs/stateshttps://api.us5.datadoghq.com/api/v2/security_monitoring/content_packs/states

Activate content pack → preview

PUT https://api.ap1.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/activatehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/activatehttps://api.datadoghq.eu/api/v2/security_monitoring/content_packs/{content_pack_id}/activatehttps://api.ddog-gov.com/api/v2/security_monitoring/content_packs/{content_pack_id}/activatehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/content_packs/{content_pack_id}/activatehttps://api.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/activatehttps://api.us3.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/activatehttps://api.us5.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/activate

Deactivate content pack → preview

PUT https://api.ap1.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/deactivatehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/deactivatehttps://api.datadoghq.eu/api/v2/security_monitoring/content_packs/{content_pack_id}/deactivatehttps://api.ddog-gov.com/api/v2/security_monitoring/content_packs/{content_pack_id}/deactivatehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/content_packs/{content_pack_id}/deactivatehttps://api.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/deactivatehttps://api.us3.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/deactivatehttps://api.us5.datadoghq.com/api/v2/security_monitoring/content_packs/{content_pack_id}/deactivate

List rules →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/ruleshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/ruleshttps://api.datadoghq.eu/api/v2/security_monitoring/ruleshttps://api.ddog-gov.com/api/v2/security_monitoring/ruleshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/ruleshttps://api.datadoghq.com/api/v2/security_monitoring/ruleshttps://api.us3.datadoghq.com/api/v2/security_monitoring/ruleshttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules

Create a detection rule →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/ruleshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/ruleshttps://api.datadoghq.eu/api/v2/security_monitoring/ruleshttps://api.ddog-gov.com/api/v2/security_monitoring/ruleshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/ruleshttps://api.datadoghq.com/api/v2/security_monitoring/ruleshttps://api.us3.datadoghq.com/api/v2/security_monitoring/ruleshttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules

Get a rule's details →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.datadoghq.eu/api/v2/security_monitoring/rules/{rule_id}https://api.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}https://api.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}

Update an existing rule →

PUT https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.datadoghq.eu/api/v2/security_monitoring/rules/{rule_id}https://api.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}https://api.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}

Delete an existing rule →

DELETE https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.datadoghq.eu/api/v2/security_monitoring/rules/{rule_id}https://api.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}https://api.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}

Test an existing rule →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/testhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/testhttps://api.datadoghq.eu/api/v2/security_monitoring/rules/{rule_id}/testhttps://api.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}/testhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}/testhttps://api.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/testhttps://api.us3.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/testhttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/test

Test a rule →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/testhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/testhttps://api.datadoghq.eu/api/v2/security_monitoring/rules/testhttps://api.ddog-gov.com/api/v2/security_monitoring/rules/testhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/testhttps://api.datadoghq.com/api/v2/security_monitoring/rules/testhttps://api.us3.datadoghq.com/api/v2/security_monitoring/rules/testhttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules/test

Validate a detection rule →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/validationhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/validationhttps://api.datadoghq.eu/api/v2/security_monitoring/rules/validationhttps://api.ddog-gov.com/api/v2/security_monitoring/rules/validationhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/validationhttps://api.datadoghq.com/api/v2/security_monitoring/rules/validationhttps://api.us3.datadoghq.com/api/v2/security_monitoring/rules/validationhttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules/validation

Convert an existing rule from JSON to Terraform →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/converthttps://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/converthttps://api.datadoghq.eu/api/v2/security_monitoring/rules/{rule_id}/converthttps://api.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}/converthttps://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}/converthttps://api.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/converthttps://api.us3.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/converthttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/convert

Convert a rule from JSON to Terraform →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/converthttps://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/converthttps://api.datadoghq.eu/api/v2/security_monitoring/rules/converthttps://api.ddog-gov.com/api/v2/security_monitoring/rules/converthttps://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/converthttps://api.datadoghq.com/api/v2/security_monitoring/rules/converthttps://api.us3.datadoghq.com/api/v2/security_monitoring/rules/converthttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules/convert

Bulk export security monitoring rules →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/bulk_exporthttps://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/bulk_exporthttps://api.datadoghq.eu/api/v2/security_monitoring/rules/bulk_exporthttps://api.ddog-gov.com/api/v2/security_monitoring/rules/bulk_exporthttps://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/bulk_exporthttps://api.datadoghq.com/api/v2/security_monitoring/rules/bulk_exporthttps://api.us3.datadoghq.com/api/v2/security_monitoring/rules/bulk_exporthttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules/bulk_export

Get a rule's version history → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/version_historyhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/version_historyhttps://api.datadoghq.eu/api/v2/security_monitoring/rules/{rule_id}/version_historyhttps://api.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}/version_historyhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/{rule_id}/version_historyhttps://api.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/version_historyhttps://api.us3.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/version_historyhttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules/{rule_id}/version_history

Run a historical job → preview

POST https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/jobshttps://api.ap2.datadoghq.com/api/v2/siem-historical-detections/jobshttps://api.datadoghq.eu/api/v2/siem-historical-detections/jobshttps://api.ddog-gov.com/api/v2/siem-historical-detections/jobshttps://api.us2.ddog-gov.com/api/v2/siem-historical-detections/jobshttps://api.datadoghq.com/api/v2/siem-historical-detections/jobshttps://api.us3.datadoghq.com/api/v2/siem-historical-detections/jobshttps://api.us5.datadoghq.com/api/v2/siem-historical-detections/jobs

List historical jobs → preview

GET https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/jobshttps://api.ap2.datadoghq.com/api/v2/siem-historical-detections/jobshttps://api.datadoghq.eu/api/v2/siem-historical-detections/jobshttps://api.ddog-gov.com/api/v2/siem-historical-detections/jobshttps://api.us2.ddog-gov.com/api/v2/siem-historical-detections/jobshttps://api.datadoghq.com/api/v2/siem-historical-detections/jobshttps://api.us3.datadoghq.com/api/v2/siem-historical-detections/jobshttps://api.us5.datadoghq.com/api/v2/siem-historical-detections/jobs

Get a job's details → preview

GET https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.ap2.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.datadoghq.eu/api/v2/siem-historical-detections/jobs/{job_id}https://api.ddog-gov.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.us2.ddog-gov.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.us3.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.us5.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}

Delete an existing job → preview

DELETE https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.ap2.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.datadoghq.eu/api/v2/siem-historical-detections/jobs/{job_id}https://api.ddog-gov.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.us2.ddog-gov.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.us3.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}https://api.us5.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}

Cancel a historical job → preview

PATCH https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/cancelhttps://api.ap2.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/cancelhttps://api.datadoghq.eu/api/v2/siem-historical-detections/jobs/{job_id}/cancelhttps://api.ddog-gov.com/api/v2/siem-historical-detections/jobs/{job_id}/cancelhttps://api.us2.ddog-gov.com/api/v2/siem-historical-detections/jobs/{job_id}/cancelhttps://api.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/cancelhttps://api.us3.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/cancelhttps://api.us5.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/cancel

Convert a job result to a signal → preview

POST https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/jobs/signal_converthttps://api.ap2.datadoghq.com/api/v2/siem-historical-detections/jobs/signal_converthttps://api.datadoghq.eu/api/v2/siem-historical-detections/jobs/signal_converthttps://api.ddog-gov.com/api/v2/siem-historical-detections/jobs/signal_converthttps://api.us2.ddog-gov.com/api/v2/siem-historical-detections/jobs/signal_converthttps://api.datadoghq.com/api/v2/siem-historical-detections/jobs/signal_converthttps://api.us3.datadoghq.com/api/v2/siem-historical-detections/jobs/signal_converthttps://api.us5.datadoghq.com/api/v2/siem-historical-detections/jobs/signal_convert

Get a job's hist signals → preview

GET https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/histsignalshttps://api.ap2.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/histsignalshttps://api.datadoghq.eu/api/v2/siem-historical-detections/jobs/{job_id}/histsignalshttps://api.ddog-gov.com/api/v2/siem-historical-detections/jobs/{job_id}/histsignalshttps://api.us2.ddog-gov.com/api/v2/siem-historical-detections/jobs/{job_id}/histsignalshttps://api.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/histsignalshttps://api.us3.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/histsignalshttps://api.us5.datadoghq.com/api/v2/siem-historical-detections/jobs/{job_id}/histsignals

List hist signals → preview

GET https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/histsignalshttps://api.ap2.datadoghq.com/api/v2/siem-historical-detections/histsignalshttps://api.datadoghq.eu/api/v2/siem-historical-detections/histsignalshttps://api.ddog-gov.com/api/v2/siem-historical-detections/histsignalshttps://api.us2.ddog-gov.com/api/v2/siem-historical-detections/histsignalshttps://api.datadoghq.com/api/v2/siem-historical-detections/histsignalshttps://api.us3.datadoghq.com/api/v2/siem-historical-detections/histsignalshttps://api.us5.datadoghq.com/api/v2/siem-historical-detections/histsignals

Get a hist signal's details → preview

GET https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/histsignals/{histsignal_id}https://api.ap2.datadoghq.com/api/v2/siem-historical-detections/histsignals/{histsignal_id}https://api.datadoghq.eu/api/v2/siem-historical-detections/histsignals/{histsignal_id}https://api.ddog-gov.com/api/v2/siem-historical-detections/histsignals/{histsignal_id}https://api.us2.ddog-gov.com/api/v2/siem-historical-detections/histsignals/{histsignal_id}https://api.datadoghq.com/api/v2/siem-historical-detections/histsignals/{histsignal_id}https://api.us3.datadoghq.com/api/v2/siem-historical-detections/histsignals/{histsignal_id}https://api.us5.datadoghq.com/api/v2/siem-historical-detections/histsignals/{histsignal_id}

Search hist signals → preview

POST https://api.ap1.datadoghq.com/api/v2/siem-historical-detections/histsignals/searchhttps://api.ap2.datadoghq.com/api/v2/siem-historical-detections/histsignals/searchhttps://api.datadoghq.eu/api/v2/siem-historical-detections/histsignals/searchhttps://api.ddog-gov.com/api/v2/siem-historical-detections/histsignals/searchhttps://api.us2.ddog-gov.com/api/v2/siem-historical-detections/histsignals/searchhttps://api.datadoghq.com/api/v2/siem-historical-detections/histsignals/searchhttps://api.us3.datadoghq.com/api/v2/siem-historical-detections/histsignals/searchhttps://api.us5.datadoghq.com/api/v2/siem-historical-detections/histsignals/search

Get a list of security signals →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/searchhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/searchhttps://api.datadoghq.eu/api/v2/security_monitoring/signals/searchhttps://api.ddog-gov.com/api/v2/security_monitoring/signals/searchhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/searchhttps://api.datadoghq.com/api/v2/security_monitoring/signals/searchhttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/searchhttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/search

Get a quick list of security signals →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/signalshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signalshttps://api.datadoghq.eu/api/v2/security_monitoring/signalshttps://api.ddog-gov.com/api/v2/security_monitoring/signalshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signalshttps://api.datadoghq.com/api/v2/security_monitoring/signalshttps://api.us3.datadoghq.com/api/v2/security_monitoring/signalshttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals

Get a signal's details →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}https://api.datadoghq.eu/api/v2/security_monitoring/signals/{signal_id}https://api.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}https://api.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/incidentshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/incidentshttps://api.datadoghq.eu/api/v2/security_monitoring/signals/{signal_id}/incidentshttps://api.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/incidentshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/incidentshttps://api.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/incidentshttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/incidentshttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/incidents

Returns a list of Secrets rules → preview

GET https://api.ap1.datadoghq.com/api/v2/static-analysis/secrets/ruleshttps://api.ap2.datadoghq.com/api/v2/static-analysis/secrets/ruleshttps://api.datadoghq.eu/api/v2/static-analysis/secrets/ruleshttps://api.ddog-gov.com/api/v2/static-analysis/secrets/ruleshttps://api.us2.ddog-gov.com/api/v2/static-analysis/secrets/ruleshttps://api.datadoghq.com/api/v2/static-analysis/secrets/ruleshttps://api.us3.datadoghq.com/api/v2/static-analysis/secrets/ruleshttps://api.us5.datadoghq.com/api/v2/static-analysis/secrets/rules

Ruleset get multiple → preview

POST https://api.ap1.datadoghq.com/api/v2/static-analysis/rulesetshttps://api.ap2.datadoghq.com/api/v2/static-analysis/rulesetshttps://api.datadoghq.eu/api/v2/static-analysis/rulesetshttps://api.ddog-gov.com/api/v2/static-analysis/rulesetshttps://api.us2.ddog-gov.com/api/v2/static-analysis/rulesetshttps://api.datadoghq.com/api/v2/static-analysis/rulesetshttps://api.us3.datadoghq.com/api/v2/static-analysis/rulesetshttps://api.us5.datadoghq.com/api/v2/static-analysis/rulesets

List vulnerabilities → deprecated preview

GET https://api.ap1.datadoghq.com/api/v2/security/vulnerabilitieshttps://api.ap2.datadoghq.com/api/v2/security/vulnerabilitieshttps://api.datadoghq.eu/api/v2/security/vulnerabilitieshttps://api.ddog-gov.com/api/v2/security/vulnerabilitieshttps://api.us2.ddog-gov.com/api/v2/security/vulnerabilitieshttps://api.datadoghq.com/api/v2/security/vulnerabilitieshttps://api.us3.datadoghq.com/api/v2/security/vulnerabilitieshttps://api.us5.datadoghq.com/api/v2/security/vulnerabilities

List vulnerable assets → preview

GET https://api.ap1.datadoghq.com/api/v2/security/vulnerable-assetshttps://api.ap2.datadoghq.com/api/v2/security/vulnerable-assetshttps://api.datadoghq.eu/api/v2/security/vulnerable-assetshttps://api.ddog-gov.com/api/v2/security/vulnerable-assetshttps://api.us2.ddog-gov.com/api/v2/security/vulnerable-assetshttps://api.datadoghq.com/api/v2/security/vulnerable-assetshttps://api.us3.datadoghq.com/api/v2/security/vulnerable-assetshttps://api.us5.datadoghq.com/api/v2/security/vulnerable-assets

Get SBOM →

GET https://api.ap1.datadoghq.com/api/v2/security/sboms/{asset_type}https://api.ap2.datadoghq.com/api/v2/security/sboms/{asset_type}https://api.datadoghq.eu/api/v2/security/sboms/{asset_type}https://api.ddog-gov.com/api/v2/security/sboms/{asset_type}https://api.us2.ddog-gov.com/api/v2/security/sboms/{asset_type}https://api.datadoghq.com/api/v2/security/sboms/{asset_type}https://api.us3.datadoghq.com/api/v2/security/sboms/{asset_type}https://api.us5.datadoghq.com/api/v2/security/sboms/{asset_type}

List assets SBOMs →

GET https://api.ap1.datadoghq.com/api/v2/security/sbomshttps://api.ap2.datadoghq.com/api/v2/security/sbomshttps://api.datadoghq.eu/api/v2/security/sbomshttps://api.ddog-gov.com/api/v2/security/sbomshttps://api.us2.ddog-gov.com/api/v2/security/sbomshttps://api.datadoghq.com/api/v2/security/sbomshttps://api.us3.datadoghq.com/api/v2/security/sbomshttps://api.us5.datadoghq.com/api/v2/security/sboms

List scanned assets metadata → preview

GET https://api.ap1.datadoghq.com/api/v2/security/scanned-assets-metadatahttps://api.ap2.datadoghq.com/api/v2/security/scanned-assets-metadatahttps://api.datadoghq.eu/api/v2/security/scanned-assets-metadatahttps://api.ddog-gov.com/api/v2/security/scanned-assets-metadatahttps://api.us2.ddog-gov.com/api/v2/security/scanned-assets-metadatahttps://api.datadoghq.com/api/v2/security/scanned-assets-metadatahttps://api.us3.datadoghq.com/api/v2/security/scanned-assets-metadatahttps://api.us5.datadoghq.com/api/v2/security/scanned-assets-metadata

Bulk update triage state of security signals →

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/bulk/statehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/bulk/statehttps://api.datadoghq.eu/api/v2/security_monitoring/signals/bulk/statehttps://api.ddog-gov.com/api/v2/security_monitoring/signals/bulk/statehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/bulk/statehttps://api.datadoghq.com/api/v2/security_monitoring/signals/bulk/statehttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/bulk/statehttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/bulk/state

Bulk update triage assignee of security signals →

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/bulk/assigneehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/bulk/assigneehttps://api.datadoghq.eu/api/v2/security_monitoring/signals/bulk/assigneehttps://api.ddog-gov.com/api/v2/security_monitoring/signals/bulk/assigneehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/bulk/assigneehttps://api.datadoghq.com/api/v2/security_monitoring/signals/bulk/assigneehttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/bulk/assigneehttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/bulk/assignee

Get investigation queries for a signal →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/investigation_querieshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/investigation_querieshttps://api.datadoghq.eu/api/v2/security_monitoring/signals/{signal_id}/investigation_querieshttps://api.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/investigation_querieshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/investigation_querieshttps://api.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/investigation_querieshttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/investigation_querieshttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/investigation_queries

Get suggested actions for a signal →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/suggested_actionshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/suggested_actionshttps://api.datadoghq.eu/api/v2/security_monitoring/signals/{signal_id}/suggested_actionshttps://api.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/suggested_actionshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/suggested_actionshttps://api.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/suggested_actionshttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/suggested_actionshttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/suggested_actions

List indicators of compromise → preview

GET https://api.ap1.datadoghq.com/api/v2/security/siem/ioc-explorerhttps://api.ap2.datadoghq.com/api/v2/security/siem/ioc-explorerhttps://api.datadoghq.eu/api/v2/security/siem/ioc-explorerhttps://api.ddog-gov.com/api/v2/security/siem/ioc-explorerhttps://api.us2.ddog-gov.com/api/v2/security/siem/ioc-explorerhttps://api.datadoghq.com/api/v2/security/siem/ioc-explorerhttps://api.us3.datadoghq.com/api/v2/security/siem/ioc-explorerhttps://api.us5.datadoghq.com/api/v2/security/siem/ioc-explorer

Get an indicator of compromise → preview

GET https://api.ap1.datadoghq.com/api/v2/security/siem/ioc-explorer/indicatorhttps://api.ap2.datadoghq.com/api/v2/security/siem/ioc-explorer/indicatorhttps://api.datadoghq.eu/api/v2/security/siem/ioc-explorer/indicatorhttps://api.ddog-gov.com/api/v2/security/siem/ioc-explorer/indicatorhttps://api.us2.ddog-gov.com/api/v2/security/siem/ioc-explorer/indicatorhttps://api.datadoghq.com/api/v2/security/siem/ioc-explorer/indicatorhttps://api.us3.datadoghq.com/api/v2/security/siem/ioc-explorer/indicatorhttps://api.us5.datadoghq.com/api/v2/security/siem/ioc-explorer/indicator

Export security monitoring resource to Terraform → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/{resource_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/{resource_id}https://api.datadoghq.eu/api/v2/security_monitoring/terraform/{resource_type}/{resource_id}https://api.ddog-gov.com/api/v2/security_monitoring/terraform/{resource_type}/{resource_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/terraform/{resource_type}/{resource_id}https://api.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/{resource_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/{resource_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/{resource_id}

Export security monitoring resources to Terraform → preview

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/bulkhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/bulkhttps://api.datadoghq.eu/api/v2/security_monitoring/terraform/{resource_type}/bulkhttps://api.ddog-gov.com/api/v2/security_monitoring/terraform/{resource_type}/bulkhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/terraform/{resource_type}/bulkhttps://api.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/bulkhttps://api.us3.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/bulkhttps://api.us5.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/bulk

Convert security monitoring resource to Terraform → preview

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/converthttps://api.ap2.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/converthttps://api.datadoghq.eu/api/v2/security_monitoring/terraform/{resource_type}/converthttps://api.ddog-gov.com/api/v2/security_monitoring/terraform/{resource_type}/converthttps://api.us2.ddog-gov.com/api/v2/security_monitoring/terraform/{resource_type}/converthttps://api.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/converthttps://api.us3.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/converthttps://api.us5.datadoghq.com/api/v2/security_monitoring/terraform/{resource_type}/convert

Update security signal triage state or assignee →

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/updatehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/updatehttps://api.datadoghq.eu/api/v2/security_monitoring/signals/{signal_id}/updatehttps://api.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/updatehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/updatehttps://api.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/updatehttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/updatehttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/update

Bulk update security signals →

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/bulk/updatehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/bulk/updatehttps://api.datadoghq.eu/api/v2/security_monitoring/signals/bulk/updatehttps://api.ddog-gov.com/api/v2/security_monitoring/signals/bulk/updatehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/bulk/updatehttps://api.datadoghq.com/api/v2/security_monitoring/signals/bulk/updatehttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/bulk/updatehttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/bulk/update

Bulk delete security monitoring rules →

DELETE https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/bulk_deletehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/bulk_deletehttps://api.datadoghq.eu/api/v2/security_monitoring/rules/bulk_deletehttps://api.ddog-gov.com/api/v2/security_monitoring/rules/bulk_deletehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/bulk_deletehttps://api.datadoghq.com/api/v2/security_monitoring/rules/bulk_deletehttps://api.us3.datadoghq.com/api/v2/security_monitoring/rules/bulk_deletehttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules/bulk_delete

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/entitieshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/entitieshttps://api.datadoghq.eu/api/v2/security_monitoring/signals/{signal_id}/entitieshttps://api.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/entitieshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/signals/{signal_id}/entitieshttps://api.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/entitieshttps://api.us3.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/entitieshttps://api.us5.datadoghq.com/api/v2/security_monitoring/signals/{signal_id}/entities

Get the version history of security filters →

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/versionshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/versionshttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/security_filters/versionshttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/security_filters/versionshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/security_filters/versionshttps://api.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/versionshttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/versionshttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/security_filters/versions

List entity context sync configurations → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/integration_confighttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/integration_confighttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/integration_confighttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/integration_confighttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/integration_confighttps://api.datadoghq.com/api/v2/security_monitoring/configuration/integration_confighttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/integration_confighttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/integration_config

Create an entity context sync configuration → preview

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/integration_confighttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/integration_confighttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/integration_confighttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/integration_confighttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/integration_confighttps://api.datadoghq.com/api/v2/security_monitoring/configuration/integration_confighttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/integration_confighttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/integration_config

Get an entity context sync configuration → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}

Update an entity context sync configuration → preview

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}

Delete an entity context sync configuration → preview

DELETE https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.datadoghq.eu/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}

Validate entity context sync credentials → preview

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/validatehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/validatehttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/integration_config/validatehttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/validatehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/validatehttps://api.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/validatehttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/validatehttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/validate

Validate an entity context sync configuration → preview

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}/validatehttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}/validatehttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}/validatehttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}/validatehttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}/validatehttps://api.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}/validatehttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}/validatehttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/integration_config/{integration_config_id}/validate

Get sample log generation subscriptions → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.datadoghq.eu/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.ddog-gov.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.us3.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.us5.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.datadoghq.eu/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.ddog-gov.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.us3.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptionshttps://api.us5.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/bulkhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/bulkhttps://api.datadoghq.eu/api/v2/security_monitoring/sample_log_generation/subscriptions/bulkhttps://api.ddog-gov.com/api/v2/security_monitoring/sample_log_generation/subscriptions/bulkhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/sample_log_generation/subscriptions/bulkhttps://api.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/bulkhttps://api.us3.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/bulkhttps://api.us5.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/bulk

Unsubscribe from sample log generation → preview

DELETE https://api.ap1.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/{content_pack_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/{content_pack_id}https://api.datadoghq.eu/api/v2/security_monitoring/sample_log_generation/subscriptions/{content_pack_id}https://api.ddog-gov.com/api/v2/security_monitoring/sample_log_generation/subscriptions/{content_pack_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/sample_log_generation/subscriptions/{content_pack_id}https://api.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/{content_pack_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/{content_pack_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/sample_log_generation/subscriptions/{content_pack_id}

Get entity context → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/entity_contexthttps://api.ap2.datadoghq.com/api/v2/security_monitoring/entity_contexthttps://api.datadoghq.eu/api/v2/security_monitoring/entity_contexthttps://api.ddog-gov.com/api/v2/security_monitoring/entity_contexthttps://api.us2.ddog-gov.com/api/v2/security_monitoring/entity_contexthttps://api.datadoghq.com/api/v2/security_monitoring/entity_contexthttps://api.us3.datadoghq.com/api/v2/security_monitoring/entity_contexthttps://api.us5.datadoghq.com/api/v2/security_monitoring/entity_context

Get a SAST ruleset → preview

GET https://api.ap1.datadoghq.com/api/v2/static-analysis/rulesets/{ruleset_name}https://api.ap2.datadoghq.com/api/v2/static-analysis/rulesets/{ruleset_name}https://api.datadoghq.eu/api/v2/static-analysis/rulesets/{ruleset_name}https://api.ddog-gov.com/api/v2/static-analysis/rulesets/{ruleset_name}https://api.us2.ddog-gov.com/api/v2/static-analysis/rulesets/{ruleset_name}https://api.datadoghq.com/api/v2/static-analysis/rulesets/{ruleset_name}https://api.us3.datadoghq.com/api/v2/static-analysis/rulesets/{ruleset_name}https://api.us5.datadoghq.com/api/v2/static-analysis/rulesets/{ruleset_name}

List codegen rulesets → preview

GET https://api.ap1.datadoghq.com/api/v2/static-analysis/codegen/rulesetshttps://api.ap2.datadoghq.com/api/v2/static-analysis/codegen/rulesetshttps://api.datadoghq.eu/api/v2/static-analysis/codegen/rulesetshttps://api.ddog-gov.com/api/v2/static-analysis/codegen/rulesetshttps://api.us2.ddog-gov.com/api/v2/static-analysis/codegen/rulesetshttps://api.datadoghq.com/api/v2/static-analysis/codegen/rulesetshttps://api.us3.datadoghq.com/api/v2/static-analysis/codegen/rulesetshttps://api.us5.datadoghq.com/api/v2/static-analysis/codegen/rulesets

Get default rulesets for a language → preview

GET https://api.ap1.datadoghq.com/api/v2/static-analysis/default-rulesets/{language}https://api.ap2.datadoghq.com/api/v2/static-analysis/default-rulesets/{language}https://api.datadoghq.eu/api/v2/static-analysis/default-rulesets/{language}https://api.ddog-gov.com/api/v2/static-analysis/default-rulesets/{language}https://api.us2.ddog-gov.com/api/v2/static-analysis/default-rulesets/{language}https://api.datadoghq.com/api/v2/static-analysis/default-rulesets/{language}https://api.us3.datadoghq.com/api/v2/static-analysis/default-rulesets/{language}https://api.us5.datadoghq.com/api/v2/static-analysis/default-rulesets/{language}

Analyze code → preview

POST https://api.ap1.datadoghq.com/api/v2/static-analysis/static-analysis-server/analyzehttps://api.ap2.datadoghq.com/api/v2/static-analysis/static-analysis-server/analyzehttps://api.datadoghq.eu/api/v2/static-analysis/static-analysis-server/analyzehttps://api.ddog-gov.com/api/v2/static-analysis/static-analysis-server/analyzehttps://api.us2.ddog-gov.com/api/v2/static-analysis/static-analysis-server/analyzehttps://api.datadoghq.com/api/v2/static-analysis/static-analysis-server/analyzehttps://api.us3.datadoghq.com/api/v2/static-analysis/static-analysis-server/analyzehttps://api.us5.datadoghq.com/api/v2/static-analysis/static-analysis-server/analyze

Get AST for source code → preview

POST https://api.ap1.datadoghq.com/api/v2/static-analysis/static-analysis-server/get-asthttps://api.ap2.datadoghq.com/api/v2/static-analysis/static-analysis-server/get-asthttps://api.datadoghq.eu/api/v2/static-analysis/static-analysis-server/get-asthttps://api.ddog-gov.com/api/v2/static-analysis/static-analysis-server/get-asthttps://api.us2.ddog-gov.com/api/v2/static-analysis/static-analysis-server/get-asthttps://api.datadoghq.com/api/v2/static-analysis/static-analysis-server/get-asthttps://api.us3.datadoghq.com/api/v2/static-analysis/static-analysis-server/get-asthttps://api.us5.datadoghq.com/api/v2/static-analysis/static-analysis-server/get-ast

Get tree-sitter WASM file → preview

GET https://api.ap1.datadoghq.com/api/v2/static-analysis/static-analysis-server/tree-sitter-wasm/{file}https://api.ap2.datadoghq.com/api/v2/static-analysis/static-analysis-server/tree-sitter-wasm/{file}https://api.datadoghq.eu/api/v2/static-analysis/static-analysis-server/tree-sitter-wasm/{file}https://api.ddog-gov.com/api/v2/static-analysis/static-analysis-server/tree-sitter-wasm/{file}https://api.us2.ddog-gov.com/api/v2/static-analysis/static-analysis-server/tree-sitter-wasm/{file}https://api.datadoghq.com/api/v2/static-analysis/static-analysis-server/tree-sitter-wasm/{file}https://api.us3.datadoghq.com/api/v2/static-analysis/static-analysis-server/tree-sitter-wasm/{file}https://api.us5.datadoghq.com/api/v2/static-analysis/static-analysis-server/tree-sitter-wasm/{file}

Get node types for a language → preview

GET https://api.ap1.datadoghq.com/api/v2/static-analysis/static-analysis-server/node-types/{language}https://api.ap2.datadoghq.com/api/v2/static-analysis/static-analysis-server/node-types/{language}https://api.datadoghq.eu/api/v2/static-analysis/static-analysis-server/node-types/{language}https://api.ddog-gov.com/api/v2/static-analysis/static-analysis-server/node-types/{language}https://api.us2.ddog-gov.com/api/v2/static-analysis/static-analysis-server/node-types/{language}https://api.datadoghq.com/api/v2/static-analysis/static-analysis-server/node-types/{language}https://api.us3.datadoghq.com/api/v2/static-analysis/static-analysis-server/node-types/{language}https://api.us5.datadoghq.com/api/v2/static-analysis/static-analysis-server/node-types/{language}

List datasets → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/datasetshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/datasetshttps://api.datadoghq.eu/api/v2/security_monitoring/datasetshttps://api.ddog-gov.com/api/v2/security_monitoring/datasetshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/datasetshttps://api.datadoghq.com/api/v2/security_monitoring/datasetshttps://api.us3.datadoghq.com/api/v2/security_monitoring/datasetshttps://api.us5.datadoghq.com/api/v2/security_monitoring/datasets

Create a dataset → preview

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/datasetshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/datasetshttps://api.datadoghq.eu/api/v2/security_monitoring/datasetshttps://api.ddog-gov.com/api/v2/security_monitoring/datasetshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/datasetshttps://api.datadoghq.com/api/v2/security_monitoring/datasetshttps://api.us3.datadoghq.com/api/v2/security_monitoring/datasetshttps://api.us5.datadoghq.com/api/v2/security_monitoring/datasets

Get dataset dependencies → preview

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/datasets/dependencieshttps://api.ap2.datadoghq.com/api/v2/security_monitoring/datasets/dependencieshttps://api.datadoghq.eu/api/v2/security_monitoring/datasets/dependencieshttps://api.ddog-gov.com/api/v2/security_monitoring/datasets/dependencieshttps://api.us2.ddog-gov.com/api/v2/security_monitoring/datasets/dependencieshttps://api.datadoghq.com/api/v2/security_monitoring/datasets/dependencieshttps://api.us3.datadoghq.com/api/v2/security_monitoring/datasets/dependencieshttps://api.us5.datadoghq.com/api/v2/security_monitoring/datasets/dependencies

Get a dataset → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.datadoghq.eu/api/v2/security_monitoring/datasets/{dataset_id}https://api.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}

Update a dataset → preview

PATCH https://api.ap1.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.datadoghq.eu/api/v2/security_monitoring/datasets/{dataset_id}https://api.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}

Delete a dataset → preview

DELETE https://api.ap1.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.datadoghq.eu/api/v2/security_monitoring/datasets/{dataset_id}https://api.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.us3.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}https://api.us5.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}

Get a dataset at a specific version → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version/{version}https://api.ap2.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version/{version}https://api.datadoghq.eu/api/v2/security_monitoring/datasets/{dataset_id}/version/{version}https://api.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}/version/{version}https://api.us2.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}/version/{version}https://api.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version/{version}https://api.us3.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version/{version}https://api.us5.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version/{version}

Get the version history of a dataset → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version_historyhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version_historyhttps://api.datadoghq.eu/api/v2/security_monitoring/datasets/{dataset_id}/version_historyhttps://api.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}/version_historyhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/datasets/{dataset_id}/version_historyhttps://api.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version_historyhttps://api.us3.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version_historyhttps://api.us5.datadoghq.com/api/v2/security_monitoring/datasets/{dataset_id}/version_history

Bulk convert rules to Terraform →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/rules/convert/bulkhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/rules/convert/bulkhttps://api.datadoghq.eu/api/v2/security_monitoring/rules/convert/bulkhttps://api.ddog-gov.com/api/v2/security_monitoring/rules/convert/bulkhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/rules/convert/bulkhttps://api.datadoghq.com/api/v2/security_monitoring/rules/convert/bulkhttps://api.us3.datadoghq.com/api/v2/security_monitoring/rules/convert/bulkhttps://api.us5.datadoghq.com/api/v2/security_monitoring/rules/convert/bulk

Assign or unassign security findings → preview

PATCH https://api.ap1.datadoghq.com/api/v2/security/findings/assigneehttps://api.ap2.datadoghq.com/api/v2/security/findings/assigneehttps://api.datadoghq.eu/api/v2/security/findings/assigneehttps://api.ddog-gov.com/api/v2/security/findings/assigneehttps://api.us2.ddog-gov.com/api/v2/security/findings/assigneehttps://api.datadoghq.com/api/v2/security/findings/assigneehttps://api.us3.datadoghq.com/api/v2/security/findings/assigneehttps://api.us5.datadoghq.com/api/v2/security/findings/assignee

Create ServiceNow tickets for security findings → preview

POST https://api.ap1.datadoghq.com/api/v2/security/findings/servicenow_ticketshttps://api.ap2.datadoghq.com/api/v2/security/findings/servicenow_ticketshttps://api.datadoghq.eu/api/v2/security/findings/servicenow_ticketshttps://api.ddog-gov.com/api/v2/security/findings/servicenow_ticketshttps://api.us2.ddog-gov.com/api/v2/security/findings/servicenow_ticketshttps://api.datadoghq.com/api/v2/security/findings/servicenow_ticketshttps://api.us3.datadoghq.com/api/v2/security/findings/servicenow_ticketshttps://api.us5.datadoghq.com/api/v2/security/findings/servicenow_tickets

Attach security findings to a ServiceNow ticket → preview

PATCH https://api.ap1.datadoghq.com/api/v2/security/findings/servicenow_ticketshttps://api.ap2.datadoghq.com/api/v2/security/findings/servicenow_ticketshttps://api.datadoghq.eu/api/v2/security/findings/servicenow_ticketshttps://api.ddog-gov.com/api/v2/security/findings/servicenow_ticketshttps://api.us2.ddog-gov.com/api/v2/security/findings/servicenow_ticketshttps://api.datadoghq.com/api/v2/security/findings/servicenow_ticketshttps://api.us3.datadoghq.com/api/v2/security/findings/servicenow_ticketshttps://api.us5.datadoghq.com/api/v2/security/findings/servicenow_tickets

Test a notification rule →

POST https://api.ap1.datadoghq.com/api/v2/security_monitoring/configuration/notification_rules/send_notification_previewhttps://api.ap2.datadoghq.com/api/v2/security_monitoring/configuration/notification_rules/send_notification_previewhttps://api.datadoghq.eu/api/v2/security_monitoring/configuration/notification_rules/send_notification_previewhttps://api.ddog-gov.com/api/v2/security_monitoring/configuration/notification_rules/send_notification_previewhttps://api.us2.ddog-gov.com/api/v2/security_monitoring/configuration/notification_rules/send_notification_previewhttps://api.datadoghq.com/api/v2/security_monitoring/configuration/notification_rules/send_notification_previewhttps://api.us3.datadoghq.com/api/v2/security_monitoring/configuration/notification_rules/send_notification_previewhttps://api.us5.datadoghq.com/api/v2/security_monitoring/configuration/notification_rules/send_notification_preview

Get a single entity context → preview

GET https://api.ap1.datadoghq.com/api/v2/security_monitoring/entity_context/{id}https://api.ap2.datadoghq.com/api/v2/security_monitoring/entity_context/{id}https://api.datadoghq.eu/api/v2/security_monitoring/entity_context/{id}https://api.ddog-gov.com/api/v2/security_monitoring/entity_context/{id}https://api.us2.ddog-gov.com/api/v2/security_monitoring/entity_context/{id}https://api.datadoghq.com/api/v2/security_monitoring/entity_context/{id}https://api.us3.datadoghq.com/api/v2/security_monitoring/entity_context/{id}https://api.us5.datadoghq.com/api/v2/security_monitoring/entity_context/{id}