Skip to content

Guides

/

Connectors

/

/

Cloud Security Accessed Provider Endpoints
Copy for LLM
Copy page as Markdown for LLMs
View as Markdown
Open this page as Markdown
Open in ChatGPT
Get insights from ChatGPT
Open in Claude
Get insights from Claude

AWS Cloud Security

Operation	Provider Endpoints
Query Compliance Findings	POST /findingsv2
Query IOMs	POST /findingsv2
Query Threats	POST /findingsv2

AWS EventBridge SQS

Operation	Provider Endpoints
Query Compliance Findings	POST /

CrowdStrike Falcon® Insight EDR

Operation	Provider Endpoints
Query Cloud Resource Inventory	GET /cloud-security-assets/entities/resources/v1 GET /cloud-security-assets/queries/resources/v1
Query Compliance Findings	GET /cloud-security-assets/combined/compliance-controls/by-account-region-and-resource-type/v1
Query IOMs	GET /detects/entities/iom/v2 GET /detects/queries/iom/v2

Microsoft Defender for Cloud

Operation	Provider Endpoints
Query Cloud Resource Inventory	POST /providers/Microsoft.ResourceGraph/resources
Query Compliance Findings	GET /subscriptions/{subscriptionId}/providers/Microsoft.Security/regulatoryComplianceStandards
Query Events	POST /api/v1/activities/
Query Threats	GET /subscriptions/{subscriptionId}/providers/Microsoft.Security/alerts

Palo Alto Networks Cortex Cloud Security

Operation	Provider Endpoints
Query Cloud Resource Inventory	POST /public_api/v1/assets
Query Compliance Findings	POST /public_api/v1/issue/search
Query IOMs	POST /public_api/v1/issue/search

Previous page

Next page