Download From Cloud

description download a specific threat file from sentinelone cloud using the provided unique threat id endpoint url /web/api/v2 1/threats/{{threat id}}/download from cloud method get inputs path parameters (object) – required threat id (string) – required threat id output example \[ { "status code" 200, "response headers" { "server" "nginx", "date" "sun, 21 apr 2024 17 19 47 gmt", "content type" "application/json", "transfer encoding" "chunked", "connection" "keep alive", "x rqid" "6774d02e 05e6 4a51 8c4c 168411f6fd66", "access control allow origin" "https //cns na1 sentinelone net", "access control allow credentials" "true", "vary" "origin", "strict transport security" "max age=31536000; includesubdomains", "x frame options" "sameorigin", "x content type options" "nosniff", "content security policy" "default src 'self' ; connect src 'self' sentinelone net cdn pendo io app pendo io pendo io data pendo io scalyr com storage googleapis com sentry io sentry io google analytics com gstatic com unpkg com cdn auth0 com wss\ // sentinelone net https //www googletagmanager com https //cdnjs cloudflare com https //dm64t97qsxvuz cloudfront net data ; script src 'self' 'unsafe inline' 'unsafe eval' sentinelone net cdn pendo io app pendo io pendo io static storage googleapis com storage googleapis com data pendo io https //www google analytics com https //www googletagmanager com https //unpkg com https //cdnjs cloudflare com https //dm64t97qsxvuz cloudfront net ; img src 'self' sentinelone net sentinelone com dm64t97qsxvuz cloudfront net data https //www google analytics com cdn pendo io app pendo io storage googleapis com data pendo io ; style src 'self' 'unsafe inline' sentinelone net app pendo io cdn pendo io storage googleapis com https //cdnjs cloudflare com https //dm64t97qsxvuz cloudfront net ; font src 'self' data sentinelone net https //cdn auth0 com https //dm64t97qsxvuz cloudfront net ; manifest src 'self' https //dm64t97qsxvuz cloudfront net ; frame src 'self' blob https //receptive io https // pendo io https //pendo io extensions storage googleapis com/ https // youtube com sentinelone net scalyr com; frame ancestors 'self' app pendo io sentinelone net; object src 'none'", "cache control" "no store", "pragma" "no cache", "expires" " 1", "content encoding" "gzip" }, "reason" "ok", "json body" { "data" { "downloadurl" "https //mgmt file upload us east 1 prod sentinelone net/proxy/mgmt file upload us east 1 prod pub s3 amazonaws com/pe/malicious/ee24d1d448fffea3983da1a51ff4b2a37426a5651b9d93aee5959389de743f07?x amz algorithm=aws4 hmac sha256\&x amz credential=akiaslith25o4ve2xetw%2f20240421%2fus east 1%2fs3%2faws4 request\&x amz date=20240421t171947z\&x amz expires=3600\&x amz signedheaders=host\&response content disposition=filename%3dee24d1d448fffea3983da1a51ff4b2a37426a5651b9d93aee5959389de743f07 zip\&x amz signature=0fb5573e7c8fde16f7dcf011f84c3a222e1bcdf276c55389287d81f1d87d984e", "filename" "ee24d1d448fffea3983da1a51ff4b2a37426a5651b9d93aee5959389de743f07" } } } ] output parameters status code (number) reason (string) json body (object) data (object) downloadurl (string) filename (string) response headers header type server string date string content type string transfer encoding string connection string x rqid string access control allow origin string access control allow credentials string vary string strict transport security string x frame options string x content type options string content security policy string cache control string pragma string expires string content encoding string