Overview
SentinelOne is an endpoint detection and response (EDR) platform with autonomous threat response. The Pwnbook integration surfaces active threats, agent health, and STAR (SentinelOne Threat Intelligence Response) alerts so endpoint security data sits alongside the rest of your security context.Prerequisites
- A SentinelOne account
- A SentinelOne API token with read access to the relevant site(s)
- Admin or Owner access in Pwnbook
Setup
Generate a SentinelOne API token
- In the SentinelOne console, click your user avatar → My User.
- Under API Token, click Generate.
- Copy the token.
What’s available
| View | Description |
|---|---|
| Threats | Active and resolved threats with severity, classification, and endpoint |
| Agents | Connected endpoint count and sensor health |
| STAR alerts | Automated response rule triggers |