Documentazione API
Get all alerts
Copia
curl --request GET \
--url https://local.casebender.com:3000/api/alerts \
--header 'X-Api-Key: <api-key>'Copia
[
{
"id": "<string>",
"tinyId": 123,
"title": "<string>",
"description": "<string>",
"statusValue": "<string>",
"status": {
"id": "<string>",
"stage": "New",
"label": "<string>",
"color": "<string>",
"value": "<string>",
"canDelete": true
},
"count": 123,
"severity": 123,
"type": "<string>",
"source": "<string>",
"sourceRef": "<string>",
"externalLink": "<string>",
"tlp": 123,
"pap": 123,
"customFields": {},
"createdAt": "<string>",
"updatedAt": "<string>",
"createdAtLabel": "<string>",
"updatedAtLabel": "<string>",
"severityColor": "<string>",
"severityLabel": "<string>",
"teams": [],
"tags": [],
"organizations": [],
"assigneeId": "<string>",
"createdById": "<string>",
"deletedAt": "<string>",
"observables": [],
"visibleToAllOrganizations": true,
"primaryAlertId": "<string>",
"case": "<unknown>",
"assignee": "<unknown>",
"aiInsights": {
"resolutionQuality": 123,
"complianceScore": 123,
"recommendations": [
"<string>"
],
"timeToResolution": 123,
"riskScore": 123,
"category": "<string>",
"trendAnalysis": {
"trend": "increasing",
"confidence": 123
},
"similarCases": [
{
"id": "<string>",
"similarity": 123,
"resolution": "<string>"
}
],
"complianceImpact": {
"frameworks": [
"<string>"
],
"severity": "low",
"details": "<string>"
},
"threatIntel": {
"knownThreatActors": [
"<string>"
],
"relatedMalware": [
"<string>"
],
"iocPatterns": [
"<string>"
],
"riskLevel": "low",
"confidence": 123,
"ttps": [
"<string>"
],
"targetedSystems": [
"<string>"
],
"exploitationRisk": 123,
"malwareFamily": "<string>"
},
"patternAnalysis": {
"behavioralPatterns": [
"<string>"
],
"anomalyScore": 123,
"relatedTechniques": [
"<string>"
],
"mitreAttackPaths": [
"<string>"
],
"automationPotential": 123,
"falsePositiveRisk": 123,
"lateralMovementRisk": 123
},
"businessImpact": {
"financialRisk": 123,
"reputationalRisk": 123,
"operationalRisk": 123,
"dataRisk": 123,
"overallImpact": "low",
"affectedServices": [
"<string>"
],
"estimatedLoss": 123,
"recoveryTime": 123
},
"timeToDetect": 123,
"priorityScore": 123,
"mitreReference": "<string>",
"affectedAssets": [
"<string>"
],
"attackVector": "<string>",
"remediationSteps": [
"<string>"
],
"falsePositiveProbability": 123,
"relatedAlerts": [
{
"id": "<string>",
"type": "<string>",
"severity": 123
}
],
"securityPosture": {
"vulnerabilities": [
{
"id": "<string>",
"severity": "low",
"description": "<string>",
"remediation": "<string>",
"cve": "<string>"
}
],
"exposedServices": [
"<string>"
],
"patchStatus": "up-to-date",
"configurationIssues": [
"<string>"
]
},
"incidentResponse": {
"status": "new",
"timeline": [
{
"timestamp": 123,
"action": "<string>",
"actor": "<string>"
}
],
"evidenceCollected": [
"<string>"
],
"assignedTo": "<string>",
"containmentStrategy": "<string>"
},
"recommendationItems": [
{
"id": "<string>",
"type": "immediate",
"description": "<string>",
"priority": 123,
"status": "pending",
"implementationComplexity": "low",
"estimatedEffort": 123,
"dependencies": [
"<string>"
]
}
],
"processingStatus": "pending"
}
}
]Avviso
Ottieni Avvisi
Returns a detailed list of all alerts, with an optional status as an input. The return object contains the alert details, including severity, status, and custom fields. The alerts are sorted by creation date.
GET
/
alerts
Get all alerts
Copia
curl --request GET \
--url https://local.casebender.com:3000/api/alerts \
--header 'X-Api-Key: <api-key>'Copia
[
{
"id": "<string>",
"tinyId": 123,
"title": "<string>",
"description": "<string>",
"statusValue": "<string>",
"status": {
"id": "<string>",
"stage": "New",
"label": "<string>",
"color": "<string>",
"value": "<string>",
"canDelete": true
},
"count": 123,
"severity": 123,
"type": "<string>",
"source": "<string>",
"sourceRef": "<string>",
"externalLink": "<string>",
"tlp": 123,
"pap": 123,
"customFields": {},
"createdAt": "<string>",
"updatedAt": "<string>",
"createdAtLabel": "<string>",
"updatedAtLabel": "<string>",
"severityColor": "<string>",
"severityLabel": "<string>",
"teams": [],
"tags": [],
"organizations": [],
"assigneeId": "<string>",
"createdById": "<string>",
"deletedAt": "<string>",
"observables": [],
"visibleToAllOrganizations": true,
"primaryAlertId": "<string>",
"case": "<unknown>",
"assignee": "<unknown>",
"aiInsights": {
"resolutionQuality": 123,
"complianceScore": 123,
"recommendations": [
"<string>"
],
"timeToResolution": 123,
"riskScore": 123,
"category": "<string>",
"trendAnalysis": {
"trend": "increasing",
"confidence": 123
},
"similarCases": [
{
"id": "<string>",
"similarity": 123,
"resolution": "<string>"
}
],
"complianceImpact": {
"frameworks": [
"<string>"
],
"severity": "low",
"details": "<string>"
},
"threatIntel": {
"knownThreatActors": [
"<string>"
],
"relatedMalware": [
"<string>"
],
"iocPatterns": [
"<string>"
],
"riskLevel": "low",
"confidence": 123,
"ttps": [
"<string>"
],
"targetedSystems": [
"<string>"
],
"exploitationRisk": 123,
"malwareFamily": "<string>"
},
"patternAnalysis": {
"behavioralPatterns": [
"<string>"
],
"anomalyScore": 123,
"relatedTechniques": [
"<string>"
],
"mitreAttackPaths": [
"<string>"
],
"automationPotential": 123,
"falsePositiveRisk": 123,
"lateralMovementRisk": 123
},
"businessImpact": {
"financialRisk": 123,
"reputationalRisk": 123,
"operationalRisk": 123,
"dataRisk": 123,
"overallImpact": "low",
"affectedServices": [
"<string>"
],
"estimatedLoss": 123,
"recoveryTime": 123
},
"timeToDetect": 123,
"priorityScore": 123,
"mitreReference": "<string>",
"affectedAssets": [
"<string>"
],
"attackVector": "<string>",
"remediationSteps": [
"<string>"
],
"falsePositiveProbability": 123,
"relatedAlerts": [
{
"id": "<string>",
"type": "<string>",
"severity": 123
}
],
"securityPosture": {
"vulnerabilities": [
{
"id": "<string>",
"severity": "low",
"description": "<string>",
"remediation": "<string>",
"cve": "<string>"
}
],
"exposedServices": [
"<string>"
],
"patchStatus": "up-to-date",
"configurationIssues": [
"<string>"
]
},
"incidentResponse": {
"status": "new",
"timeline": [
{
"timestamp": 123,
"action": "<string>",
"actor": "<string>"
}
],
"evidenceCollected": [
"<string>"
],
"assignedTo": "<string>",
"containmentStrategy": "<string>"
},
"recommendationItems": [
{
"id": "<string>",
"type": "immediate",
"description": "<string>",
"priority": 123,
"status": "pending",
"implementationComplexity": "low",
"estimatedEffort": 123,
"dependencies": [
"<string>"
]
}
],
"processingStatus": "pending"
}
}
]Autorizzazioni
accessKeysecretKey
Risposta
Successful response
Mostra attributi figli
Mostra attributi figli
Mostra attributi figli
Mostra attributi figli
Required string length:
1Mostra attributi figli
Mostra attributi figli
Mostra attributi figli
Mostra attributi figli
Mostra attributi figli
Mostra attributi figli
⌘I