• Get started
  • Documentation

Integrate Opsgenie with Threat Stack

Threat Stack logo

What does Opsgenie offer Threat Stack users?

With the Threat Stack Integration, Opsgenie acts as a dispatcher for these alerts and determines the right people to notify based on on-call schedules– notifies via email, text messages (SMS), phone calls, and iPhone & Android push notifications, and escalates alerts until the alert is acknowledged or closed.

Functionality of the Integration

  • When an alert is created in Threat Stack, an alert is automatically created in Opsgenie.

Add Threat Stack Integration in Opsgenie

If you're using Opsgenie's Free or Essentials plan or if you’re using Opsgenie with Jira Service Management's Standard plan, you can add this integration from your team dashboard only. The Integrations page under Settings is not available in your plan.

  1. Go to Teams and select your team.

  2. Select Integrations on the left navigation and then select Add integration.

Adding the integration from your team dashboard will make your team the owner of the integration. This means Opsgenie will assign the alerts received through this integration to your team only. Follow the rest of the steps in this section to set up the integration.

  1. Go to Settings > Integrations. Search for Threat Stack and select Add

  2. Specify who is notified of Threat Stack alerts using the Responders field. Auto-complete suggestions are provided as you type.

  3. Copy the Webhook URL.

  4. Click Save Integration.

Configuration in Threat Stack

  1. In Threat Stack, go to "Configurations" and select the "Integrations" tab.

  2. Navigate to "Webhook API".

  3. Fill in the Name and Description fields.

  4. Paste the integration API URL copied previously into the "Webhook URL" field.

  5. Select which severity level to fire alerts for in the "Alert Severity" field.

  6. Click Save.

Threat Stack webhook

Sample payload sent from Threat Stack

JSON

1 2 3 4 5 6 7 8 9 { "created_at": 1459447024000, "id": "56fd65138c1e0c173af5a3de", "organization_id": "545d0293b620cd090d000023", "server_or_region": "Threat_Stack_Demo_Ubuntu1", "severity": 3, "source": "Host", "title": "Threat Intelligence Activity: Communication to openbl by 185.110.132.54" }

Still need help?

The Atlassian Community is here for you.