Skip to content

threatHuntResult

The results of the Threat Hunt.

Arguments

Argument Type Description
huntId (required) String! ID of the threat hunt.
objectId String The ID of the object in the threat hunt.

Returns

ThreatHuntResult!

Sample

query ThreatHuntResult($huntId: String!) {
  threatHuntResult(huntId: $huntId) {
    huntId
    status
  }
}

{
  "huntId": "example-string"
}

{
  "data": {
    "threatHuntResult": {
      "huntId": "example-string",
      "status": "ABORTED",
      "config": {
        "clusterUuid": "example-string",
        "maxMatchesPerSnapshot": 0,
        "name": "example-string",
        "notes": "example-string",
        "shouldTrustFilesystemTimeInfo": true
      },
      "results": [
        {
          "location": "example-string"
        }
      ]
    }
  }
}