Cisco AMP for Endpoints API

GET /v1/computers/{:connector_guid}/vulnerabilities

Description

Provides a list of vulnerabilities observed on a specific computer.

The list can be filtered to show only the vulnerable applications observed for a specific time range. For example, the query string: start_time=2019-05-15&end_time=2019-05-20, will return any vulnerable applications observed during the period from 2019-05-15 to 2019-05-20.

The start_time and end_time parameters accept date and time expressed according to ISO 8601.

Query Parameters

Name Type Example Values Description
start_time String (Time ISO8601) 2019-05-09T08:15:22+00:00, 2019-05-09 Inclusive (The list will include vulnerable programs detected at start_time)
end_time String (Time ISO8601) 2019-05-16T08:15:22+00:00, 2019-05-16 Exclusive - if end_time is a time (The list will only include vulnerable programs detected before end_time); Inclusive - if end_time is a date (The list will include vulnerable programs detected on the date)
offset Integer 10
limit Integer 10

Show Response Fields

Name Type Description
version String
metadata.links.self String
metadata.links.prev String
metadata.results.total Integer
metadata.results.current_item_count Integer
metadata.results.index Integer
metadata.results.items_per_page Integer
data.connector_guid GUID
data.hostname String
data.vulnerabilities Array
data.links.computer String
data.links.trajectory String
Write
Preview

Examples

Fetch a specific computer's vulnerabilities with given connector_guid
Fetch a specific computer's vulnerabilities with given connector_guid and filter by time range
Fetch a specific computer's vulnerabilities with given connector_guid and filter by date range

Fetch a specific computer's vulnerabilities with given connector_guid

Request

Requires Authorization
GET /v1/computers/17d71471-805b-4183-9121-3924b8982fac/vulnerabilities?offset=0&limit=5
Headers
accept: application/json
content-type: application/json
authorization: Basic FILTERED

cURL Edit, then copy and paste on your terminal

curl -X GET \
-H 'accept: application/json' \
-H 'content-type: application/json' \
--compressed -H 'Accept-Encoding: gzip, deflate' \
-u YOUR_API_CLIENT_ID \
'https://api.eu.amp.cisco.com/v1/computers/17d71471-805b-4183-9121-3924b8982fac/vulnerabilities?offset=0&limit=5'

Response

Shortened for readability

strict-transport-security: max-age=31536000
content-type: application/json; charset=utf-8
status: 404 Not Found
x-ratelimit-limit: 3000
x-ratelimit-reset: 3586
x-ratelimit-remaining: 2951
x-frame-options: SAMEORIGIN
x-ratelimit-resetdate: 2019-09-30T15:59:05Z
transfer-encoding: chunked
{
  "version": "v1.2.0",
  "metadata": {
    "links": {
      "self": "https://api.eu.amp.cisco.com/v1/computers/17d71471-805b-4183-9121-3924b8982fac/vulnerabilities?offset=0&limit=5"
    }
  },
  "data": {
  },
  "errors": [
    {
      "error_code": 404,
      "description": "Not Found",
      "details": [
        "Computer not found for given connector guid: 17d71471-805b-4183-9121-3924b8982fac"
      ]
    }
  ]
}

Fetch a specific computer's vulnerabilities with given connector_guid and filter by time range

Request

Requires Authorization
GET /v1/computers/17d71471-805b-4183-9121-3924b8982fac/vulnerabilities?start_time=2019-09-25T12%3A05%3A49%2B00%3A00&end_time=2019-09-27T12%3A05%3A49%2B00%3A00&offset=0&limit=5
Headers
accept: application/json
content-type: application/json
authorization: Basic FILTERED

cURL Edit, then copy and paste on your terminal

curl -X GET \
-H 'accept: application/json' \
-H 'content-type: application/json' \
--compressed -H 'Accept-Encoding: gzip, deflate' \
-u YOUR_API_CLIENT_ID \
'https://api.eu.amp.cisco.com/v1/computers/17d71471-805b-4183-9121-3924b8982fac/vulnerabilities?start_time=2019-09-25T12%3A05%3A49%2B00%3A00&end_time=2019-09-27T12%3A05%3A49%2B00%3A00&offset=0&limit=5'

Response

Shortened for readability

strict-transport-security: max-age=31536000
content-type: application/json; charset=utf-8
status: 404 Not Found
x-ratelimit-limit: 3000
x-ratelimit-reset: 3586
x-ratelimit-remaining: 2949
x-frame-options: SAMEORIGIN
x-ratelimit-resetdate: 2019-09-30T15:59:05Z
transfer-encoding: chunked
{
  "version": "v1.2.0",
  "metadata": {
    "links": {
      "self": "https://api.eu.amp.cisco.com/v1/computers/17d71471-805b-4183-9121-3924b8982fac/vulnerabilities?start_time=2019-09-25T12%3A05%3A49%2B00%3A00&end_time=2019-09-27T12%3A05%3A49%2B00%3A00&offset=0&limit=5"
    }
  },
  "data": {
  },
  "errors": [
    {
      "error_code": 404,
      "description": "Not Found",
      "details": [
        "Computer not found for given connector guid: 17d71471-805b-4183-9121-3924b8982fac"
      ]
    }
  ]
}

Fetch a specific computer's vulnerabilities with given connector_guid and filter by date range

Request

Requires Authorization
GET /v1/computers/17d71471-805b-4183-9121-3924b8982fac/vulnerabilities?start_time=2019-09-25&end_time=2019-09-27&offset=0&limit=5
Headers
accept: application/json
content-type: application/json
authorization: Basic FILTERED

cURL Edit, then copy and paste on your terminal

curl -X GET \
-H 'accept: application/json' \
-H 'content-type: application/json' \
--compressed -H 'Accept-Encoding: gzip, deflate' \
-u YOUR_API_CLIENT_ID \
'https://api.eu.amp.cisco.com/v1/computers/17d71471-805b-4183-9121-3924b8982fac/vulnerabilities?start_time=2019-09-25&end_time=2019-09-27&offset=0&limit=5'

Response

Shortened for readability

strict-transport-security: max-age=31536000
content-type: application/json; charset=utf-8
status: 404 Not Found
x-ratelimit-limit: 3000
x-ratelimit-reset: 3585
x-ratelimit-remaining: 2947
x-frame-options: SAMEORIGIN
x-ratelimit-resetdate: 2019-09-30T15:59:05Z
transfer-encoding: chunked
{
  "version": "v1.2.0",
  "metadata": {
    "links": {
      "self": "https://api.eu.amp.cisco.com/v1/computers/17d71471-805b-4183-9121-3924b8982fac/vulnerabilities?start_time=2019-09-25&end_time=2019-09-27&offset=0&limit=5"
    }
  },
  "data": {
  },
  "errors": [
    {
      "error_code": 404,
      "description": "Not Found",
      "details": [
        "Computer not found for given connector guid: 17d71471-805b-4183-9121-3924b8982fac"
      ]
    }
  ]
}