List rules

GET {{baseUrl}}/api/v2/security_monitoring/rules?page[size]=10&page[number]=0

List rules.

Request Params

HEADERS

RESPONSES

status: OK

{"data":[{"cases":[{"condition":"mollit id Excepteur","name":"tempor proident ut","notifications":["quis ullamco amet sed","voluptate"],"status":"critical"},{"condition":"quis aliquip nulla officia","name":"ut","notifications":["irure magna elit","exercitation irure ullamco"],"status":"critical"}],"complianceSignalOptions":{"defaultActivationStatus":false,"defaultGroupByFields":["proident dolor culpa anim","dolor ea culpa"],"userActivationStatus":false,"userGroupByFields":["cillum in","est aliqua velit"]},"createdAt":49347810,"creationAuthorId":89424882,"defaultTags":["security:attacks"],"deprecationDate":21258975,"filters":[{"action":"require","query":"do quis minim cillum"},{"action":"require","query":"sunt quis qui in reprehenderit"}],"hasExtendedTitle":false,"id":"nisi mo","isDefault":false,"isDeleted":false,"isEnabled":false,"message":"commodo eiusmod in","name":"labore qui laboris","options":{"complianceRuleOptions":{"complexRule":false,"regoRule":{"policy":"package datadog\n\nimport data.datadog.output as dd_output\nimport future.keywords.contains\nimport future.keywords.if\nimport future.keywords.in\n\neval(resource) = \"skip\" if {\n  # Logic that evaluates to true if the resource should be skipped\n  true\n} else = \"pass\" {\n  # Logic that evaluates to true if the resource is compliant\n  true\n} else = \"fail\" {\n  # Logic that evaluates to true if the resource is not compliant\n  true\n}\n\n# This part remains unchanged for all rules\nresults contains result if {\n  some resource in input.resources[input.main_resource_type]\n  result := dd_output.format(resource, eval(resource))\n}\n","resourceTypes":["gcp_iam_service_account","gcp_iam_policy"]},"resourceType":"aws_acm","inc67":{}},"decreaseCriticalityBasedOnEnv":false,"detectionMethod":"impossible_travel","evaluationWindow":60,"hardcodedEvaluatorType":"log4shell","impossibleTravelOptions":{"baselineUserLocations":true},"keepAlive":300,"maxSignalDuration":900,"newValueOptions":{"forgetAfter":21,"learningDuration":0,"learningMethod":"duration","learningThreshold":0},"thirdPartyRuleOptions":{"defaultNotifications":["sint quis ex","dolor labori"],"defaultStatus":"critical","rootQueries":[{"groupByFields":["ad ut Excepteur consectetur","sed"],"query":"source:cloudtrail"},{"groupByFields":["in magna nisi exercitation","elit pariatur"],"query":"source:cloudtrail"}],"signalTitleTemplate":"nostrud id ut aliqua"}},"queries":[{"aggregation":"none","distinctFields":["Ut occaecat ullamco","deserunt ullamco voluptate"],"groupByFields":["ut","occaecat aute anim labore"],"hasOptionalGroupByFields":false,"metrics":["sit","ut qui"],"name":"adipisicing officia do","query":"a \u003e 3"},{"aggregation":"count","distinctFields":["do commodo mollit","irure cillum laboris sed do"],"groupByFields":["Ut nostrud in","in irure"],"hasOptionalGroupByFields":false,"metrics":["i","magna"],"name":"ex labore","query":"a \u003e 3"}],"tags":["sed sit","voluptate qui"],"type":"cloud_configuration","updateAuthorId":-71717657,"version":-2696501},{"cases":[{"condition":"in cillum enim","name":"Duis consequat Excepteur","notifications":["voluptate magna","pariatur tempor"],"status":"critical"},{"condition":"irure ut commodo","name":"aliquip ullamco consequat","notifications":["proident officia","mollit id"],"status":"critical"}],"complianceSignalOptions":{"defaultActivationStatus":false,"defaultGroupByFields":["do incididunt magna","sit ea"],"userActivationStatus":false,"userGroupByFields":["nisi ad dolore","velit Duis dolor"]},"createdAt":23134223,"creationAuthorId":20265762,"defaultTags":["security:attacks"],"deprecationDate":-3162012,"filters":[{"action":"suppress","query":"Excepteur laborum"},{"action":"require","query":"eu"}],"hasExtendedTitle":true,"id":"non esse","isDefault":false,"isDeleted":true,"isEnabled":false,"message":"Excepteur esse veniam","name":"nulla","options":{"complianceRuleOptions":{"complexRule":false,"regoRule":{"policy":"package datadog\n\nimport data.datadog.output as dd_output\nimport future.keywords.contains\nimport future.keywords.if\nimport future.keywords.in\n\neval(resource) = \"skip\" if {\n  # Logic that evaluates to true if the resource should be skipped\n  true\n} else = \"pass\" {\n  # Logic that evaluates to true if the resource is compliant\n  true\n} else = \"fail\" {\n  # Logic that evaluates to true if the resource is not compliant\n  true\n}\n\n# This part remains unchanged for all rules\nresults contains result if {\n  some resource in input.resources[input.main_resource_type]\n  result := dd_output.format(resource, eval(resource))\n}\n","resourceTypes":["gcp_iam_service_account","gcp_iam_policy"]},"resourceType":"aws_acm"},"decreaseCriticalityBasedOnEnv":false,"detectionMethod":"anomaly_threshold","evaluationWindow":60,"hardcodedEvaluatorType":"log4shell","impossibleTravelOptions":{"baselineUserLocations":true},"keepAlive":7200,"maxSignalDuration":300,"newValueOptions":{"forgetAfter":28,"learningDuration":0,"learningMethod":"duration","learningThreshold":0},"thirdPartyRuleOptions":{"defaultNotifications":["aliquip eiusmod dolor ex","fugi"],"defaultStatus":"critical","rootQueries":[{"groupByFields":["mollit aliquip fugiat","cupidatat consequat"],"query":"source:cloudtrail"},{"groupByFields":["do Ut ad tempor","incididunt ex dolor Duis"],"query":"source:cloudtrail"}],"signalTitleTemplate":"id"}},"queries":[{"aggregation":"sum","distinctFields":["minim sint exercitation proident magna","commodo"],"groupByFields":["esse sunt laborum","in in"],"hasOptionalGroupByFields":false,"metrics":["occaecat nulla","id qui Lorem sit ut"],"name":"dolore Lorem id","query":"a \u003e 3"},{"aggregation":"cardinality","distinctFields":["Lorem minim consequat officia","Duis ullamco aliq"],"groupByFields":["exercitation","sint sunt fugiat"],"hasOptionalGroupByFields":false,"metrics":["enim sed","enim d"],"name":"nostrud Lorem magna Duis","query":"a \u003e 3"}],"tags":["do","sed pariatur esse ea"],"type":"log_detection","updateAuthorId":6261248,"version":-82230696}],"meta":{"page":{"total_count":-47482061,"total_filtered_count":7662209}}}