支援的 Microsoft 365 Defender APISupported Microsoft 365 Defender APIs

重要

改良的 Microsoft 365 安全性中心現在可用。The improved Microsoft 365 security center is now available. 這個新的體驗會將適用於端點的 Defender、適用於 Office 365 的 Defender、Microsoft 365 Defender 和更多功能帶到 Microsoft 365 安全性中心。This new experience brings Defender for Endpoint, Defender for Office 365, Microsoft 365 Defender, and more into the Microsoft 365 security center. 了解新功能Learn what's new.

適用於:Applies to:

  • Microsoft 365 DefenderMicrosoft 365 Defender

重要

部分資訊與發行前版本產品有關,在正式發行之前可能會實質上進行修改。Some information relates to prereleased product which may be substantially modified before it's commercially released. Microsoft 對此處提供的資訊,不提供任何明確或隱含的瑕疵擔保。Microsoft makes no warranties, express or implied, with respect to the information provided here.

可用 APIs 的清單List of available APIs

文章Article 描述Description
進階搜捕 APIAdvanced Hunting API 執行高級搜尋查詢。Run Advanced Hunting queries.
事件 APIIncident APIs 列出和更新事件,以及其他實用工作。List and update incidents, along with other practical tasks.
流式 API (預覽) Streaming API (Preview) 在單一資料流程中發生即時事件及警示。Ship real-time events and alerts as they occur in a single data stream.

端點 URIsEndpoint URIs

主要 APIs 的基底 URI 是: https://api.security.microsoft.comThe base URI for both of the main APIs is: https://api.security.microsoft.com. 為了獲得較佳的效能,請使用與您的地理位置更接近的伺服器:For better performance, use a server closer to your geolocation:

  • 美國: api-us.security.microsoft.comThe United States: api-us.security.microsoft.com
  • 歐洲: api-eu.security.microsoft.comEurope: api-eu.security.microsoft.com
  • 英國: api-uk.security.microsoft.comThe United Kingdom: api-uk.security.microsoft.com

您可以透過存取來取得權杖 https://api.security.microsoft.comTokens can be acquired by accessing https://api.security.microsoft.com.

所有沿路徑的 APIs 都 /api 使用 OData 通訊協定; 例如, https://api.security.microsoft.com/api/incidentsAll APIs along the /api path use the OData Protocol; for example, https://api.security.microsoft.com/api/incidents.