Varonis DatAlert API
API for accessing threat detection and incident response capabilities from Varonis DatAlert. Provides endpoints for retrieving alerts, managing alert status, adding notes to alerts, and accessing alerted events for investigation and threat hunting. The DatAlert API enables integration with SIEM and SOAR platforms for centralized security operations.
Documentation
Documentation
https://docs.varonis.com/api/datalert
Authentication
https://docs.varonis.com/api/authentication
Specifications
Schemas & Data
JSONSchema
json-schema/varonis-datalert-alert-schema.json
JSONSchema
json-schema/varonis-datalert-alerted-event-schema.json
JSONSchema
json-schema/varonis-datalert-threat-model-schema.json
JSONStructure
json-structure/varonis-datalert-alert-structure.json
JSONStructure
json-structure/varonis-datalert-alerted-event-structure.json
Examples
Example
examples/varonis-datalert-alert-example.json
Example
examples/varonis-datalert-alerted-event-example.json
OpenAPI
#Incident Response
#Security Alerts
#Threat Detection