Get device threat
Request a page with a list of threats found on a specific device. The page number and page size parameters are optional. When the values are not specified, these default to 1 and 10 respectively. The maximum page size that can be specified is 200 entries per page.
|
Service endpoint |
/devices/v2/{unique_device_id}/threats?page=m&page_size=n |
|
Optional query string parameters |
|
|
Example |
https://protectapi.cylance.com/devices/v2/e378dacb-9324-453a-b8c6-5a8406952195/threats?page=1&page_size=100 |
|
Method |
HTTP/1.1 GET |
|
Request headers |
|
Request
None
Response
Please see the Response status codes for more information.
Response JSON schema
| Field Name | Description |
|---|---|
|
classification |
This is the threat classification assigned by Endpoint Defense. |
|
cylance_score |
This is the Endpoint Defense score assigned to the threat. The User API returns a raw score of -1 to 1. Threats have a negative raw score, while safe files have a positive raw score. The management console only displays threats and uses a score of 1 to 100. A raw score of -1 equals a console score of 100. |
|
date_found |
This is the date and time (in UTC) when the threat was found on the device. |
|
file_path |
This is the file path to the threat, which includes the file name. |
|
file_status |
This is the current status of the file on the device, which can be one of the following:
|
|
name |
This is the name of the threat. |
|
page_number |
This is the page number requested. |
|
page_size |
This is the page size requested. |
|
sha256 |
This is the SHA256 hash for the threat. |
|
sub_classification |
This is the threat sub-classification assigned by Endpoint Defense. |
|
total_pages |
This is the total number of pages that can be retrieved, based on the page size specified. |
|
total_number_of_items |
This is the total number of resource. |