Secureworks website screenshot

Secureworks

Secureworks is a cybersecurity company that provides the Taegis XDR (Extended Detection and Response) platform, offering threat detection, investigation, and response capabilities backed by 20 years of security intelligence. Taegis ingests and correlates telemetry across endpoints, network, cloud, and identity sources to detect threats and automate response workflows. The Taegis XDR API exposes GraphQL APIs for alerts, investigations, endpoint assets, identities, threat intelligence, connectors, collectors, playbooks, and users, with OAuth2 client credentials authentication and multi-region deployment support.

1 APIs 0 Features
CybersecurityXDRThreat DetectionSecurity OperationsIncident ResponseMDRThreat Intelligence

APIs

Secureworks Taegis XDR API

The Secureworks Taegis XDR API provides GraphQL-based programmatic access to the Taegis extended detection and response platform. The API supports alerts, investigations, endpoi...

Collections

GraphQL

Secureworks GraphQL API

The Secureworks Taegis XDR API provides GraphQL-based programmatic access to the Taegis extended detection and response platform. The API supports alerts, investigations, endpoi...

GRAPHQL

Pricing Plans

Rate Limits

Secureworks Rate Limits

5 limits

RATE LIMITS

FinOps

Semantic Vocabularies

Secureworks Context

25 classes · 3 properties

JSON-LD

API Governance Rules

Secureworks API Rules

8 rules · 3 errors 3 warnings 2 info

SPECTRAL

JSON Structure

Secureworks Investigation Structure

10 properties

JSON STRUCTURE

Example Payloads

Resources

🔗
LinkedIn
LinkedIn
🔗
Website
Website
🔗
Documentation
Documentation
🔑
Authentication
Authentication
👥
GitHubOrganization
GitHubOrganization
📦
SDKs
SDKs
🔗
Documentation
Documentation
📰
Blog
Blog
🔗
JSONSchema
JSONSchema
🔗
JSONStructure
JSONStructure
🔗
JSONLDContext
JSONLDContext
💻
Examples
Examples
🔗
SpectralRuleset
SpectralRuleset
🔗
Vocabulary
Vocabulary

Sources

Raw ↑
opencollection: 1.0.0
info:
  name: Secureworks Taegis XDR API
  version: 1.0.0
request:
  auth:
    type: bearer
    token: '{{bearerToken}}'
items:
- info:
    name: Authentication
    type: folder
  items:
  - info:
      name: Obtain Access Token
      type: http
    http:
      method: POST
      url: https://api.ctpx.secureworks.com/auth/api/v2/auth/token
      body:
        type: json
        data: '{}'
      auth:
        type: basic
        username: '{{username}}'
        password: '{{password}}'
    docs: Exchange client credentials for an OAuth2 bearer access token using the client credentials grant flow. The client_id
      and client_secret are provided via HTTP Basic authentication. The returned access_token is used in subsequent API requests
      via the Authorization Bearer header.
- info:
    name: GraphQL
    type: folder
  items:
  - info:
      name: Execute GraphQL Query
      type: http
    http:
      method: POST
      url: https://api.ctpx.secureworks.com/graphql
      body:
        type: json
        data: '{}'
    docs: 'Execute a GraphQL query or mutation against the Taegis XDR platform. The Taegis XDR API is primarily a GraphQL
      API supporting the following domains: Alerts, Audits, Collectors, Connectors, Endpoint Assets, Identities, Investigations,
      Playbooks, Threat Intelligence, BYOTI, Countermeasures, File Upload, Notifications, Tenants, and Users.'
- info:
    name: System
    type: folder
  items:
  - info:
      name: Get Service Version
      type: http
    http:
      method: GET
      url: https://api.ctpx.secureworks.com/assets/version
    docs: Check the current service version of the Taegis XDR API.
bundled: true