get_detection_pcap
Retrieve packet capture (PCAP) files for specific threat detections to analyze network traffic and investigate security incidents.
Instructions
Get pcap file for a specific detection.
Returns:
str: Base64 encoded pcap data or error message.
Raises:
Exception: If retrieval fails.
Input Schema
TableJSON Schema
| Name | Required | Description | Default |
|---|---|---|---|
| detection_id | Yes | ID of the detection to retrieve pcap for |