• Products
  • Get started
  • Documentation
  • Resources
Products
Get started
Documentation
Resources
Atlassian Support
/
Opsgenie
/
Resources
/
Integrate Opsgenie with your IT tools
/
Integrate Opsgenie with your tools

Integrate Opsgenie with Threat Stack

Threat Stack logo

What does Opsgenie offer Threat Stack users?

With the Threat Stack Integration, Opsgenie acts as a dispatcher for these alerts and determines the right people to notify based on on-call schedules– notifies via email, text messages (SMS), phone calls, and iPhone & Android push notifications, and escalates alerts until the alert is acknowledged or closed.

Functionality of the Integration

  • When an alert is created in Threat Stack, an alert is automatically created in Opsgenie.

Add Threat Stack Integration in Opsgenie

  1. Go to Opsgenie ThreatStack Integration page.

Under the Free and Essentials plans, the tabs under the Team dashboard are limited to Main, Integrations, Members, and Activity Stream.

2. Specify who is notified of Threat Stack alerts using the Teams field. Auto-complete suggestions are provided as you type.

An alternative for Step 1) and Step 2) is to add the integration from the Team Dashboard of the team which will own the integration. To add an integration directly to a team, navigate to the Team Dashboard and open Integrations tab. Click Add Integration and select the integration that you would like to add.

3. Copy the Webhook URL.

4. Click Save Integration.

Threat Stack Integration settings

Configuration in Threat Stack

  1. In Threat Stack, go to "Configurations" and select the "Integrations" tab.

  2. Navigate to "Webhook API".

  3. Fill in the Name and Description fields.

  4. Paste the integration API URL copied previously into the "Webhook URL" field.

  5. Select which severity level to fire alerts for in the "Alert Severity" field.

  6. Click Save.

Threat Stack webhook

Sample payload sent from Threat Stack

JSON

1 2 3 4 5 6 7 8 9 { "created_at": 1459447024000, "id": "56fd65138c1e0c173af5a3de", "organization_id": "545d0293b620cd090d000023", "server_or_region": "Threat_Stack_Demo_Ubuntu1", "severity": 3, "source": "Host", "title": "Threat Intelligence Activity: Communication to openbl by 185.110.132.54" }

Sample alert

Threat Slack sample alert
Last modified on Feb 11, 2021
Cached at 8:52 PM on Apr 10, 2021 |

Additional Help

Ask the Community
On this pageWhat does offer users?Functionality of the IntegrationAdd Integration in Configuration in Sample payload sent from Sample alert
CommunityQuestions, discussions, and articles