Actions99
- InterACT Actions
- Notification Actions
- Organization Actions
- Task Actions
- Policy Actions
- Repository Actions
- Setting Actions
- Triage Rule Actions
- User Actions
- Acquisition Actions
- API Token Actions
- Asset Actions
- Auto Asset Tag Actions
- Baseline Actions
- Case Actions
- Evidence Actions
Overview
This node integrates with Binalyze AIR to manage various resources related to digital forensics and incident response. Specifically, the Case - Get operation retrieves detailed information about a particular case by its unique Case ID. This is useful in workflows where you need to fetch case details for further processing, reporting, or decision-making.
Practical examples:
- Automatically retrieving case details when a new alert is triggered to enrich incident data.
- Fetching case metadata before updating or closing a case in an automated incident response pipeline.
- Integrating case information into dashboards or ticketing systems.
Properties
| Name | Meaning |
|---|---|
| Case ID | The unique identifier of the case to retrieve. This must be provided to fetch the case. |
Output
The node outputs JSON data representing the full details of the requested case. This typically includes all properties and metadata associated with the case as stored in Binalyze AIR, such as case status, owner, timestamps, related assets, and other forensic information.
No binary data output is indicated for this operation.
Dependencies
- Requires an API key credential for authenticating with the Binalyze AIR API.
- The node depends on network connectivity to the Binalyze AIR service endpoint.
- Proper permissions on the API key to access case information are necessary.
Troubleshooting
Common issues:
- Providing an invalid or non-existent Case ID will likely result in an error or empty response.
- Network or authentication failures can prevent successful retrieval.
- Insufficient API permissions may cause authorization errors.
Error messages and resolutions:
- "Unknown resource" — indicates the resource parameter was incorrect; ensure "cases" is selected.
- API authentication errors — verify that the API key credential is correctly configured and has required scopes.
- Case not found errors — double-check the Case ID value for correctness.
Links and References
- Binalyze AIR Official Documentation
- Binalyze AIR API Reference (for detailed case object schema and endpoints)