Bitdefender Cloud Sandbox

this connector integrates bitdefender cloud sandbox with turbine capabilities this connector provides the following capabilities upload url upload files get result get report download ioc asset setup this connector supports the api key authentication api key is required for the authentication configurations api key authentication authenticates using an api key configuration parameters parameter description type required url a url to the target host string required apikey api key string required verify ssl verify ssl certificate boolean optional http proxy a proxy to route requests through string optional actions download ioc the download ioc api to request ioc data regarding the detonation of a file or url endpoint url /downloads/ioc method get input argument name type required description job id string required the id of the request you wish to get information on format string required specify the format of the response possible values (openioc,stix,raw) output parameter type description status code number http status code of the response reason string response reason phrase netstat object output field netstat 72 21 81 240 object output field 72 21 81 240 tcp array output field tcp example \[ { "status code" 200, "response headers" { "date" "tue, 31 oct 2023 15 12 25 gmt", "content type" "application/json", "content length" "46", "connection" "keep alive", "via" "1 1 google", "strict transport security" "max age=31536000;", "cf cache status" "dynamic", "server" "cloudflare", "cf ray" "81ecd60cbf416c03 sin" }, "reason" "ok", "json body" { "netstat" {} } } ] get report get report api to generate an extensive report which contains all the details endpoint url /report method get input argument name type required description job id string required unique identifier logos string optional parameter for get report format string optional parameter for get report summary boolean optional parameter for get report output parameter type description status code number http status code of the response reason string response reason phrase response text string output field response text example \[ { "status code" 200, "response headers" { "date" "tue, 31 oct 2023 15 16 37 gmt", "content type" "text/html; charset=utf 8", "transfer encoding" "chunked", "connection" "keep alive", "via" "1 1 google", "strict transport security" "max age=31536000;", "cf cache status" "dynamic", "server" "cloudflare", "cf ray" "81ecdc33feb6882c sin", "content encoding" "gzip" }, "reason" "ok", "response text" "\<!doctype html>\<html>\<head>\<meta content=\\"text/html;charset=utf 8\\" http equiv=\\"c " } ] get result get result from api to check the status of a job and get the scan results endpoint url /result method get input argument name type required description job id string required the id of the job you wish to get information on output parameter type description status code number http status code of the response reason string response reason phrase status string status value verdict string output field verdict reason details string response reason phrase processing duration in seconds number output field processing duration in seconds example \[ { "status code" 200, "response headers" { "date" "tue, 31 oct 2023 09 46 29 gmt", "content type" "application/json", "transfer encoding" "chunked", "connection" "keep alive", "via" "1 1 google", "strict transport security" "max age=31536000;", "cf cache status" "dynamic", "server" "cloudflare", "cf ray" "81eaf8991d7d4afe hyd", "content encoding" "gzip" }, "reason" "ok", "json body" { "status" "done", "verdict" "clean", "reason" "not malicious", "reason details" "no malicious activity has been observed during execution and analysis ", "processing duration in seconds" 392 } } ] upload files upload files api to submit files to the bitdefender sandbox service endpoint url /upload method post input argument name type required description archive password string optional parameter for upload files file tlp string optional parameter for upload files prefilter string optional parameter for upload files force detonation boolean optional parameter for upload files form data object required response data upload file object required file to be uploaded file string required parameter for upload files file name string required name of the resource output parameter type description status code number http status code of the response reason string response reason phrase success boolean whether the operation was successful example \[ { "status code" 200, "response headers" { "date" "tue, 31 oct 2023 15 12 25 gmt", "content type" "application/json", "content length" "46", "connection" "keep alive", "via" "1 1 google", "strict transport security" "max age=31536000;", "cf cache status" "dynamic", "server" "cloudflare", "cf ray" "81ecd60cbf416c03 sin" }, "reason" "ok", "json body" { "success" true } } ] upload url the url api to submit a url for investigation endpoint url /url method post input argument name type required description engine urlstatus string optional url endpoint for the request url to scan string optional url endpoint for the request output parameter type description status code number http status code of the response reason string response reason phrase status string status value job id string unique identifier example \[ { "status code" 200, "response headers" { "date" "tue, 31 oct 2023 15 01 31 gmt", "content type" "application/json", "transfer encoding" "chunked", "connection" "keep alive", "via" "1 1 google", "strict transport security" "max age=31536000;", "cf cache status" "dynamic", "server" "cloudflare", "cf ray" "81ecc613ef7b8519 bom", "content encoding" "gzip" }, "reason" "ok", "json body" { "status" "submitted", "job id" "gcp 1698764491 45170024 833290316ff9f3ed1eca768bebd606c10124e191c50c73056f9b7adb " } } ] response headers header description example cf cache status http response header cf cache status dynamic cf ray http response header cf ray 81eaf8991d7d4afe hyd connection http response header connection keep alive content encoding http response header content encoding gzip content length the length of the response body in bytes 46 content type the media type of the resource text/html; charset=utf 8 date the date and time at which the message was originated tue, 31 oct 2023 15 12 25 gmt server information about the software used by the origin server cloudflare strict transport security http response header strict transport security max age=31536000; transfer encoding http response header transfer encoding chunked via http response header via 1 1 google