Arcanna AI

23 min

this is a connector for arcanna ai arcanna ai is an ai assisted cybersecurity by bringing all the required data into a single place where it can be processed and analyzed in order to automate decision and post decision tasks across the growing it infrastructure prerequisites the arcanna ai asset requires a url and an api key to interact with the api capabilities this connector provides the following capabilities get event status get jobs list send bulk events send event send event feedback configurations api key authentication authenticates using an api key configuration parameters parameter description type required url a url to the target host string required x arcanna api key api key string required verify ssl verify ssl certificate boolean optional http proxy a proxy to route requests through string optional actions get event status retrieves arcanna inference result endpoint url api/v1/events/{{job id}}/{{event id}} method get input argument name type required description job id number required unique identifier event id string required unique identifier output parameter type description status code number http status code of the response reason string response reason phrase event id string unique identifier ingest timestamp string output field ingest timestamp status string status value confidence level number unique identifier result string result of the operation is duplicated boolean output field is duplicated error message string response message example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "event id" "string", "ingest timestamp" "string", "status" "string", "confidence level" 0, "result" "string", "is duplicated" true, "error message" "string" } } ] get jobs list get jobs list endpoint url api/v1/jobs method get output parameter type description status code number http status code of the response reason string response reason phrase example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" \[ {} ] } ] send bulk events send to arcanna a bulk of events as a dict encoded json string filled with xsoar fields endpoint url api/v1/bulk/{{job id}} method post input argument name type required description job id number required unique identifier counts number optional parameter for send bulk events events array required parameter for send bulk events job id number optional unique identifier severity number optional parameter for send bulk events name string optional name of the resource destination object optional parameter for send bulk events address string optional parameter for send bulk events port number optional parameter for send bulk events bytes number optional parameter for send bulk events ip string optional parameter for send bulk events packets number optional parameter for send bulk events rule object optional parameter for send bulk events name string optional name of the resource id string optional unique identifier category string optional parameter for send bulk events source object optional parameter for send bulk events address string optional parameter for send bulk events port number optional parameter for send bulk events bytes number optional parameter for send bulk events ip string optional parameter for send bulk events packets number optional parameter for send bulk events event object optional parameter for send bulk events severity number optional parameter for send bulk events ingested string optional parameter for send bulk events output parameter type description status code number http status code of the response reason string response reason phrase status string status value error message string response message example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "status" "string", "error message" "string" } } ] send event sends a raw event to arcanna endpoint url api/v1/events/ method post input argument name type required description job id number required unique identifier raw body object required request body data destination object optional parameter for send event address string optional parameter for send event port number optional parameter for send event bytes number optional parameter for send event ip string optional parameter for send event packets number optional parameter for send event rule object optional parameter for send event name string optional name of the resource id string optional unique identifier category string optional parameter for send event source object optional parameter for send event address string optional parameter for send event port number optional parameter for send event bytes number optional parameter for send event ip string optional parameter for send event packets number optional parameter for send event event object optional parameter for send event severity number optional parameter for send event ingested string optional parameter for send event created string optional parameter for send event kind string optional parameter for send event module string optional parameter for send event start string optional parameter for send event output parameter type description status code number http status code of the response reason string response reason phrase event id string unique identifier job id number unique identifier ingest timestamp string output field ingest timestamp status string status value error message string response message example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "event id" "string", "job id" 0, "ingest timestamp" "string", "status" "string", "error message" "string" } } ] send event feedback send arcanna feedback for a previous inferred event endpoint url api/v1/events/{{job id}}/{{event id}}/feedback method put input argument name type required description job id string optional unique identifier event id string optional unique identifier cortex user string optional parameter for send event feedback feedback string optional parameter for send event feedback closing notes string optional parameter for send event feedback indicators array optional parameter for send event feedback type string optional type of the resource value string optional value for the parameter source string optional parameter for send event feedback output parameter type description status code number http status code of the response reason string response reason phrase status string status value example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "status" "string" } } ]