Hi, I am new to FireEye and this may sound stupid. I am using a script to download alerts from apps.fireeye.com/helix is there any way of downloading alerts centrally or do I have to access each endpoint? I am looking at getting events to do some analysis and reporting on them thank you John
This endpoint will give you all events:
api/v1/events. Mongo JSON query syntax used to filter for specific results. You can also find more information in the helix documentation.
Hope this helps!