AsyncAPI channel · Palo Alto Networks · Cortex XDR Webhooks

alert/created

Triggered when a new alert is generated by Cortex XDR analytics engines, BIOC (Behavioral Indicator of Compromise) rules, IOC matches, endpoint agents, or third-party integrated data sources. Alerts represent individual suspicious or malicious activities detected across the protected environment.

Open source AsyncAPI → All Palo Alto Networks channels Palo Alto Networks provider profile
Provider: Palo Alto Networks AsyncAPI: v2.6.0 Spec: Cortex XDR Webhooks Operations: 1 Messages: 1

Channel address

alert/created

Operations

onAlertCreated
New alert generated

Messages

AlertCreated
A new Cortex XDR alert has been generated
Content-Type: application/json

About AsyncAPI

The AsyncAPI specification describes event-driven APIs the way OpenAPI describes request/response APIs. A channel is the named pipe — a webhook URL, a Kafka topic, a WebSocket route, an MQTT subject — that producers and consumers publish or subscribe to. Each channel carries one or more messages with structured payloads, and an operation declares whether a given party sends or receives on that channel.

Browse every event-driven channel on the APIs.io network or compare with the broader Naftiko capability, Agent Skill, and MCP server surfaces of the same providers.