API & Integrations
API Access
- Authentication: Bearer token
- Token expiration: configurable (8 hours to 365 days)
- Tokens can be revoked or rotated
SIEM Integration
- Pull via REST API
- Push via SYSLOG forwarder
Supported Integrations
- SIEM platforms
- YARA rules
- Third-party tools deployment