Skip to main content

List threats by source

Retrieve an aggregated count of critical threats by source across tenants, such as: remote networks, mobile users, or proxy nodes.

Query Parameters
  • agg_by string

    Must be tenant. Using the query parameter returns all the aggregated responses for the current parent tenant and its child tenants. If not used, the results for just the current tenant are returned.

    Example: tenant
Header Parameters
  • X-PANW-Region string

    Must be one of the following: de, americas, europe, uk, sg, ca, jp, au, in. Returns details from the Cortex Data Lake (CDL) region specified. If no region is specified, the default response is americas CDL region.

    Example: americas
Request Body
  • filter object

    Threats by source filter. Consists of a required operator and an array of rules objects.

  • operator string required

    Must be AND.

  • rules object[]
  • anyOf

  • Array [
  • operator string

    Filter operator that is one of the example values and is run on the property field

  • property string

    Filter property field that is one of the example values

  • values string[]

    Filter property values

  • ]
  • Array [
  • object
  • ]
  • properties object[] required

    List of property json objects

  • Array [
  • alias string
  • property string

    Threats by source property. See ThreatSrcProperty.

  • ]
  • Responses