Skip to main content

List Host Findings For Alert

GET 
/resource/external_finding

Get a list of all host findings for a specific alert.

Request

Query Parameters

    alertId stringrequired
    type string[]
    source string[]

Responses

successful operation

Schema
  • Array [
    • accountId string
    apiId int32
    count string
    createdOn int64
    customerId int32
    cveId string
    description string
    externalFindingId int64
    findingId string
    normalizedName string
    normalizedNames string[]
    nvdUrl string
    rawData string
    regionId string
    resourceCloudId string
    resourceId int64
    resourceUrl string
    riskFactors string[]

    Possible values: [CRITICAL_SEVERITY, HIGH_SEVERITY, MEDIUM_SEVERITY, HAS_FIX, REMOTE_EXECUTION, DOS, RECENT_VULNERABILITY, EXPLOIT_EXISTS, ATTACK_COMPLEXITY_LOW, ATTACK_VECTOR_NETWORK, REACHABLE_FROM_THE_INTERNET, LISTENING_PORTS, CONTAINER_IS_RUNNING_AS_ROOT, NO_MANDATORY_SECURITY_PROFILE_APPLIED, RUNNING_AS_PRIVILEGED_CONTAINER, PACKAGE_IN_USE]

    rlUpdatedOn int64
    scanId string
    score object
    severity string

    Possible values: [INFORMATIONAL, LOW, MEDIUM, HIGH, CRITICAL]

    source string

    Possible values: [AWS_INSPECTOR, AWS_GUARD_DUTY, TENABLE, QUALYS, PRISMA_CLOUD, AZURE_SECURITY_CENTER]

    sourceData object
    property name* object
    status string

    Possible values: [PENDING, NO_ERROR, ERROR, ENABLED, DISABLED, OPEN, DISMISSED, RESOLVED, DESCOPED, RISK_SCORING_ERROR, ACTIVE, CLOSED, SUPPRESSED]

    title string
    type string

    Possible values: [HOST_VULNERABILITY_CVE, COMPLIANCE_ISSUE_CIS, AWS_INSPECTOR_SECURITY_BEST_PRACTICES, AWS_INSPECTOR_RUNTIME_BEHAVIOR_ANALYSIS, AWS_GUARD_DUTY_HOST_FINDING, AWS_GUARD_DUTY_IAM_FINDING, SERVERLESS_VULNERABILITY, AZURE_SECURITY_CENTER_ALERTS, PACKAGE_VULNERABILITY, NETWORK_REACHABILITY, AWS_GUARD_DUTY_EKS_FINDING, AWS_GUARD_DUTY_ECS_FINDING, AWS_GUARD_DUTY_CONTAINER_FINDING]

    updatedOn int64
  • ]
Loading...