Tines · Example Payload

Tines Action Example

Queries threat intelligence API for IOC enrichment

Security AutomationNo-CodeWorkflow AutomationSecurity OperationsSOARIncident ResponseREST APIWebhooks

Tines Action Example is an example object payload from Tines, with 21 top-level fields. It illustrates the shape of data this provider's APIs accept or return.

Top-level fields

idguidtypenamedescriptionstory_idgroup_idteam_idpositionoptionsdisabledmonitor_failuresmonitor_all_eventsmonitor_no_events_emittedsourcesreceiversblended_events_countlogs_countcreated_atupdated_atlast_event_at

Example Payload

Raw ↑ 
{
  "id": 12345,
  "guid": "a1b2c3d4e5f67890abcdef1234567890",
  "type": "Agents::HTTPRequestAgent",
  "name": "Fetch threat intel",
  "description": "Queries threat intelligence API for IOC enrichment",
  "story_id": 7981,
  "group_id": null,
  "team_id": 1,
  "position": { "x": 200, "y": 300 },
  "options": {
    "url": "https://api.threatintel.example.com/ioc/{{indicator}}",
    "method": "GET",
    "headers": {
      "Authorization": "Bearer <<CREDENTIAL.threatintel_api_key>>"
    },
    "payload": {}
  },
  "disabled": false,
  "monitor_failures": true,
  "monitor_all_events": false,
  "monitor_no_events_emitted": null,
  "sources": [11111],
  "receivers": [12346],
  "blended_events_count": 452,
  "logs_count": 0,
  "created_at": "2021-05-10T09:01:00Z",
  "updated_at": "2024-01-10T11:30:00Z",
  "last_event_at": "2024-01-15T14:20:05Z"
}