Qodex.ai

Carbon Black Cloud (CBC)-Endpoint Standard API (NGAV)-Enriched Events Search API

Number of APIs: 9

  1. Start Aggregation Search on Enriched Events (v1) POST {{cb_url}}/api/investigate/v1/orgs/{{cb_org_key}}/enriched_events/aggregation_jobs/{{cb_aggregation_field}}

  2. Retrieve Results for an Enriched Event Aggregation Search (v1) GET {{cb_url}}/api/investigate/v1/orgs/{{cb_org_key}}/enriched_events/aggregation_jobs/{{cb_job_id}}/results

  3. Start an Enriched Events Search (v2) POST {{cb_url}}/api/investigate/v2/orgs/{{cb_org_key}}/enriched_events/search_jobs

  4. Retrieve Results for an Enriched Events Search (v2) GET {{cb_url}}/api/investigate/v2/orgs/{{cb_org_key}}/enriched_events/search_jobs/{{cb_job_id}}/results

  5. Start a Facet Search on Enriched Events (v2) POST {{cb_url}}/api/investigate/v2/orgs/{{cb_org_key}}/enriched_events/facet_jobs

  6. Retrieve Results for an Enriched Events Facet Search (v2) GET {{cb_url}}/api/investigate/v2/orgs/{{cb_org_key}}/enriched_events/facet_jobs/{{cb_job_id}}/results

  7. Request Details for Enriched Events (v2) POST {{cb_url}}/api/investigate/v2/orgs/{{cb_org_key}}/enriched_events/detail_jobs

  8. Retrieve Results for an Enriched Event Detail Search (v2) GET {{cb_url}}/api/investigate/v2/orgs/{{cb_org_key}}/enriched_events/detail_jobs/{{cb_job_id}}/results

  9. Export Enriched Events Search Results with Jobs Service POST {{cb_url}}/jobs/v1/orgs/{{cb_org_key}}/jobs/start/event_export