Stream threats to your SIEM

Deliver the threats your protected apps detect to your SOC, SIEM or Slack in real time via signed webhooks.

1. Add a webhook

In Settings → Webhooks, register a delivery URL and pick the minimum severity to deliver (e.g. High and above).

2. What gets delivered

Threat events are sent as JSON — threat type, severity, package name, app version, device, country and timestamp.

3. Verify the signature

Each delivery includes an X-Appsolid-Signature header (formatted sha256=<HMAC>). Compare it to the HMAC-SHA256 of the raw body computed with your webhook secret to reject tampering.

expected = "sha256=" + HMAC_SHA256(secret, raw_request_body)
verify( expected == request.headers['X-Appsolid-Signature'] )

4. Route to your SOC or Slack

Point the webhook URL at your SIEM ingest endpoint, or a Slack/fraud-system relay.

Monitoring Production threat monitoring Security & AppSec teams

Get Started All guides

Stream threats to your SIEM

1. Add a webhook

2. What gets delivered

3. Verify the signature

4. Route to your SOC or Slack

Related