This site uses cookies for analytics, personalized content and ads. By continuing to browse this site, you agree to this use. Learn more
Skip to main content
Microsoft
Microsoft Graph
Microsoft Graph
  • Home
    • Components
    • Partners
  • Graph Explorer
    • All
    • .NET Core
    • .NET Framework
    • Android
    • Angular
    • iOS
    • Java
    • JavaScript
    • Node.js
    • PHP
    • Python
    • React
    • Ruby
    • UWP
    • Xamarin
  • Docs
  • API Reference
    • All Resources
    • Blog
    • Events
    • Samples & SDKs
    • Training
    • Tools
    • Videos & Podcasts
    • Support
    • My Apps
    • Microsoft 365 Developer Program
    • My Dashboard
    • Docs
    • FAQ
      • Microsoft 365
      • Azure
      • Office 365
      • Dynamics 365
      • SQL
      • Windows 10
      • Windows Server
      • Enterprise Mobility + Security
      • Power BI
      • Teams
      • Visual Studio
      • Microsoft Advertising
      • AI
      • Internet of Things
      • Azure Cognitive Services
      • Quantum
      • Microsoft HoloLens
      • Mixed Reality
      • Docs
      • TechNet
      • Developer Network
      • Windows Dev Center
      • Windows IT Pro Center
      • FastTrack
      • Partner Network
      • Solution Providers
      • Partner Center
      • Cloud Hosting
      • Education
      • Financial services
      • Government
      • Health
      • Manufacturing & resources
      • Retail
      • Security
      • Licensing
      • AppSource
      • Azure Marketplace
      • Events
      • Research
    • View Sitemap

Use Microsoft Graph to correlate multiple security alerts in order to improve threat protection and response

Anomali

"The security API not only allows us to receive actionable alert information but also allows our security analysts to pivot and enrich alerts with asset and user information."

Anomali.com

Image showing security alerts API aggregating alerts from multiple sources for an application

Use one API to access security alerts from Microsoft and partners

Calls to the Security API are federated to all supported Microsoft security products, services, and partners. The results are aggregated in a common schema, making it easier to correlate alerts from multiple sources. By connecting and enriching alerts, you can more easily understand the scope and impact of an attack. Query for all alerts pertaining to specific users, devices, files, or even command lines when investigating a specific threat or use webhook subscriptions to get notified when any new alert matching your search criteria is created or updated.

Image showing an alert update with status, assignment, feedback, and tags.

Update alert tags, status, and assignments

Tag alerts with additional context or threat intelligence to inform response and remediation. Ensure that comments and feedback on alerts are captured for visibility to all workflows. Keep alert status and assignments in sync so that all integrated solutions reflect the current state. Use webhook subscriptions to get notified of changes.

Learn more about correlating security alerts

Security API overview

LEARN MORE

Get started with the security API

LEARN MORE

Security API whitepaper

LEARN MORE
Follow us
YouTube terms of service
Share this page
What's new
  • Surface Go 2
  • Surface Book 3
  • Microsoft 365
  • Surface Pro X
  • Windows 10 apps
Microsoft Store
  • Account profile
  • Download Center
  • Microsoft Store support
  • Returns
  • Order tracking
  • Store locations
  • Virtual workshops and training
Education
  • Microsoft in education
  • Office for students
  • Office 365 for schools
  • Deals for students & parents
  • Microsoft Azure in education
Enterprise
  • Azure
  • AppSource
  • Automotive
  • Government
  • Healthcare
  • Manufacturing
  • Financial services
  • Retail
Developer
  • Microsoft Visual Studio
  • Windows Dev Center
  • Developer Network
  • TechNet
  • Microsoft developer program
  • Channel 9
  • Office Dev Center
  • Microsoft Garage
Company
  • Careers
  • About Microsoft
  • Company news
  • Privacy at Microsoft
  • Investors
  • Diversity and inclusion
  • Accessibility
  • Security
English (United States)
  • Sitemap
  • Contact Microsoft
  • Privacy & cookies
  • Terms of use
  • Trademarks
  • Safety & eco
  • About our ads
  • © Microsoft 2020

Sign in required


Your session has expired. Please sign-in again to continue. Unfortunately any unsaved changes will be lost.

Sign in