Submit Indicator

description enhance tracking, alerting, and threat detection by submitting a new indicator to microsoft defender endpoint url /api/indicators method post inputs json body (object) indicatorvalue (string) indicatortype (string) action (string) title (string) expirationtime (string) severity (string) description (string) recommendedactions (string) output example \[ { "status code" 405, "response headers" { "date" "thu, 04 may 2023 18 07 32 gmt", "content length" "0", "connection" "keep alive", "allow" "post", "strict transport security" "max age=15724800; includesubdomains" }, "reason" "method not allowed", "response text" "" } ] output parameters status code (number) reason (string) response text (string) response headers header type date string content length string connection string allow string strict transport security string