Bitdefender Cloud Sandbox

25 min

this connector integrates bitdefender cloud sandbox with turbine capabilities this connector provides the following capabilities upload url upload files get result get report download ioc asset setup this connector supports the api key authentication api key is required for the authentication configurations api key authentication authenticates using an api key configuration parameters parameter description type required url a url to the target host string required apikey api key string required verify ssl verify ssl certificate boolean optional http proxy a proxy to route requests through string optional actions download ioc the download ioc api to request ioc data regarding the detonation of a file or url endpoint url /downloads/ioc method get input argument name type required description parameters job id string required the id of the request you wish to get information on parameters format string required specify the format of the response possible values (openioc,stix,raw) input example {"parameters" {"job id" "gcp 1698727498 44976851 43de3a417d75f4818c5a553268b80ce3a5805109a3bbc6b605e9fb0b8f50b485","format" "openioc"}} output parameter type description status code number http status code of the response reason string response reason phrase netstat object output field netstat netstat 72 21 81 240 object output field netstat 72 21 81 240 netstat 72 21 81 240 tcp array output field netstat 72 21 81 240 tcp output example {"status code" 200,"response headers" {"date" "tue, 31 oct 2023 15 12 25 gmt","content type" "application/json","content length" "46","connection" "keep alive","via" "1 1 google","strict transport security" "max age=31536000;","cf cache status" "dynamic","server" "cloudflare","cf ray" "81ecd60cbf416c03 sin"},"reason" "ok","json body" {"netstat" {"72 21 81 240" {}}}} get report get report api to generate an extensive report which contains all the details endpoint url /report method get input argument name type required description parameters job id string required parameters for the get report action parameters logos string optional parameters for the get report action parameters format string optional parameters for the get report action parameters summary boolean optional parameters for the get report action input example {"parameters" {"job id" "gcp 1698727498 44976851 43de3a417d75f4818c5a553268b80ce3a5805109a3bbc6b605e9fb0b8f50b485","logos" "main","format" "html","summary"\ false}} output parameter type description status code number http status code of the response reason string response reason phrase response text string output field response text output example {"status code" 200,"response headers" {"date" "tue, 31 oct 2023 15 16 37 gmt","content type" "text/html; charset=utf 8","transfer encoding" "chunked","connection" "keep alive","via" "1 1 google","strict transport security" "max age=31536000;","cf cache status" "dynamic","server" "cloudflare","cf ray" "81ecdc33feb6882c sin","content encoding" "gzip"},"reason" "ok","response text" "\<!doctype html>\<html>\<head>\<meta content=\\"text/html;charset=utf 8\\" http equiv=\\"c "} get result get result from api to check the status of a job and get the scan results endpoint url /result method get input argument name type required description parameters job id string required the id of the job you wish to get information on input example {"parameters" {"job id" "gcp 1698727498 44976851 43de3a417d75f4818c5a553268b80ce3a5805109a3bbc6b605e9fb0b8f50b485"}} output parameter type description status code number http status code of the response reason string response reason phrase status string status value verdict string output field verdict reason details string response reason phrase processing duration in seconds number output field processing duration in seconds output example {"status code" 200,"response headers" {"date" "tue, 31 oct 2023 09 46 29 gmt","content type" "application/json","transfer encoding" "chunked","connection" "keep alive","via" "1 1 google","strict transport security" "max age=31536000;","cf cache status" "dynamic","server" "cloudflare","cf ray" "81eaf8991d7d4afe hyd","content encoding" "gzip"},"reason" "ok","json body" {"status" "done","verdict" "clean","reason" "not malicious","reason details" "no malicious activity has been observed during execu upload files upload files api to submit files to the bitdefender sandbox service endpoint url /upload method post input argument name type required description parameters archive password string optional parameters for the upload files action parameters file tlp string optional parameters for the upload files action parameters prefilter string optional parameters for the upload files action parameters force detonation boolean optional parameters for the upload files action form data object required response data form data upload file object required file to be uploaded form data upload file file string required response data form data upload file file name string required response data input example {"parameters" {"archive password" "achive password","file tlp" "amber","prefilter" "all","force detonation"\ false}} output parameter type description status code number http status code of the response reason string response reason phrase success boolean whether the operation was successful output example {"status code" 200,"response headers" {"date" "tue, 31 oct 2023 15 12 25 gmt","content type" "application/json","content length" "46","connection" "keep alive","via" "1 1 google","strict transport security" "max age=31536000;","cf cache status" "dynamic","server" "cloudflare","cf ray" "81ecd60cbf416c03 sin"},"reason" "ok","json body" {"success"\ true}} upload url the url api to submit a url for investigation endpoint url /url method post input argument name type required description parameters engine urlstatus string optional parameters for the upload url action url to scan string optional url endpoint for the request input example {"parameters" {"engine urlstatus" "except original"},"json body" {"url to scan" "1"}} output parameter type description status code number http status code of the response reason string response reason phrase status string status value job id string unique identifier output example {"status code" 200,"response headers" {"date" "tue, 31 oct 2023 15 01 31 gmt","content type" "application/json","transfer encoding" "chunked","connection" "keep alive","via" "1 1 google","strict transport security" "max age=31536000;","cf cache status" "dynamic","server" "cloudflare","cf ray" "81ecc613ef7b8519 bom","content encoding" "gzip"},"reason" "ok","json body" {"status" "submitted","job id" "gcp 1698764491 45170024 833290316ff9f3ed1eca768bebd606c10124e191c50c73056f9b7adb "}} response headers header description example cf cache status http response header cf cache status dynamic cf ray http response header cf ray 81eaf8991d7d4afe hyd connection http response header connection keep alive content encoding http response header content encoding gzip content length the length of the response body in bytes 46 content type the media type of the resource text/html; charset=utf 8 date the date and time at which the message was originated tue, 31 oct 2023 09 46 29 gmt server information about the software used by the origin server cloudflare strict transport security http response header strict transport security max age=31536000; transfer encoding http response header transfer encoding chunked via http response header via 1 1 google