Security
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Enrich ES webhook event trigger alert with annotation

elend
Path Finder
‎07-30-2024 01:09 PM

Hi there, now I'm trying some of escu's built-in rules and sending them as notable alerts and via msteams webhooks. However, from the built-in query, only a few fields can be sent to the webhook alert as shown in the capture below.

aler-teams.png

 

Is it possible to enrich this information with some information like in the annotation section?

700px-Annotations.png

 
 
Labels (1)
Labels
0 Karma
Reply
Get Updates on the Splunk Community!

Preparing your Splunk Environment for OpenSSL3

The Splunk platform will transition to OpenSSL version 3 in a future release. Actions are required to prepare ...

Unleash Unified Security and Observability with Splunk Cloud Platform

     Now Available on Microsoft AzureThursday, March 27, 2025  |  11AM PST / 2PM EST | Register NowStep boldly ...

Splunk AppDynamics with Cisco Secure Application

Web applications unfortunately present a target rich environment for security vulnerabilities and attacks. ...
Top