API Evangelist API Evangelist
API Learnings
Toolbox
API Evangelist LLC
API Learnings
Toolbox
API Evangelist LLC

Need help?

Contact us
Kin Lane

Chat with Kin

AI assistant · trained on my blog

palo-alto-networks

Cortex XSIAM API

A REST API for Cortex XSIAM, the AI-driven security operations platform that combines SIEM, XDR, SOAR, and ASM capabilities. The API provides endpoints for incident management, alert handling, data ingestion configuration, XQL query execution, asset management, and automation rule management. Shares endpoint patterns with Cortex XDR but includes additional capabilities for log collection configuration, data model management, and AI-assisted investigation.

Documentation GitHub OpenAPI

Documentation

Specifications

Schemas & Data

📊
JSONSchema
json-schema/cortex-xsiam-api-alert-schema.json
📊
JSONSchema
json-schema/cortex-xsiam-api-asset-schema.json
📊
JSONSchema
json-schema/cortex-xsiam-api-audit-log-schema.json
📊
JSONSchema
json-schema/cortex-xsiam-api-endpoint-schema.json
📊
JSONSchema
json-schema/cortex-xsiam-api-filter-schema.json
📊
JSONSchema
json-schema/cortex-xsiam-api-incident-schema.json
📊
JSONSchema
json-schema/cortex-xsiam-api-sort-order-schema.json
📊
JSONSchema
json-schema/cortex-xsiam-data-ingestion-event-data-payload-schema.json
📊
JSONSchema
json-schema/cortex-xsiam-data-ingestion-log-data-payload-schema.json
📊
JSONSchema
json-schema/cortex-xsiam-data-ingestion-xdr-data-payload-schema.json
📊
JSONStructure
json-structure/cortex-xsiam-api-alert-structure.json
📊
JSONStructure
json-structure/cortex-xsiam-api-asset-structure.json
📊
JSONStructure
json-structure/cortex-xsiam-api-audit-log-structure.json
📊
JSONStructure
json-structure/cortex-xsiam-api-endpoint-structure.json
📊
JSONStructure
json-structure/cortex-xsiam-api-filter-structure.json
📊
JSONStructure
json-structure/cortex-xsiam-api-incident-structure.json
📊
JSONStructure
json-structure/cortex-xsiam-api-sort-order-structure.json
📊
JSONStructure
json-structure/cortex-xsiam-data-ingestion-event-data-payload-structure.json
📊
JSONStructure
json-structure/cortex-xsiam-data-ingestion-log-data-payload-structure.json
📊
JSONStructure
json-structure/cortex-xsiam-data-ingestion-xdr-data-payload-structure.json

Examples

📝
Example
examples/cortex-xsiam-api-alert-example.json
📝
Example
examples/cortex-xsiam-api-asset-example.json
📝
Example
examples/cortex-xsiam-api-audit-log-example.json
📝
Example
examples/cortex-xsiam-api-endpoint-example.json
📝
Example
examples/cortex-xsiam-api-filter-example.json
📝
Example
examples/cortex-xsiam-api-incident-example.json
📝
Example
examples/cortex-xsiam-api-sort-order-example.json
📝
Example
examples/cortex-xsiam-data-ingestion-event-data-payload-example.json
📝
Example
examples/cortex-xsiam-data-ingestion-log-data-payload-example.json
📝
Example
examples/cortex-xsiam-data-ingestion-xdr-data-payload-example.json

OpenAPI

palo-alto-cortex-xsiam-api-openapi-original.yml Raw ↑
#AI-Driven SOC #Automation #Security Analytics #SIEM #XDR
← Back to C APIs
API Details
ID
palo-alto-networks:cortex-xsiam-api
Base URL
https://api-{fqdn}/public_api/v1/
Docs
https://docs-cortex.paloaltonetworks.com/r/Cortex-XSIAM-REST-API
Provider
palo-alto-networks
View repo →
Explore more
All APIs Contracts