Orca Security

orca security is a cloud posture management product that alerts customers on vulnerabilities, configuration issues, and lateral movement challenges prerequisites this connector requires either an email and password or just an api token capabilities this connector provides the following capabilities get alerts get alert by id get assets get asset by id configurations api key authentication authenticates using an api key configuration parameters parameter description type required url a url to the target host string required api token the api token string required verify ssl verify ssl certificate boolean optional http proxy a proxy to route requests through string optional http basic authentication authenticates using username and password configuration parameters parameter description type required url a url to the target host string required username provide system account email here string required password password string required verify ssl verify ssl certificate boolean optional http proxy a proxy to route requests through string optional actions get alert id retrieve information about an alert endpoint url api/alerts/{{alert id}} method get input argument name type required description path parameters alert id string required parameters for the get alert id action input example {"path parameters" {"alert id" 1808008}} output parameter type description status code number http status code of the response reason string response reason phrase version string output field version status string status value data grouped boolean response data total supported items string output field total supported items total ungrouped items number output field total ungrouped items total items number output field total items data array response data data file name string response data data file string response data output example {"status code" 200,"response headers" {"date" "mon, 03 jul 2023 07 14 22 gmt","content type" "application/json","content length" "141","connection" "keep alive","server" " ","vary" "accept, cookie, origin","allow" "get, head, options","access control expose headers" "x orca request id","x orca request id" "5ad6b9ec 11e2 4554 a019 52d5fe404098","x amzn trace id" "root=1 64a27546 5879da2e06884d6f6bb7bcb9","x frame options" "deny","x content type options" "nosniff","referrer policy" "same origin"}, get alerts retrieve information about alerts endpoint url api/alerts method get input argument name type required description parameters asset unique id string optional parameters for the get alerts action parameters cloud provider id string optional parameters for the get alerts action parameters asset type string optional parameters for the get alerts action parameters asset state string optional parameters for the get alerts action parameters asset labels string optional parameters for the get alerts action parameters type string optional parameters for the get alerts action parameters category string optional parameters for the get alerts action parameters alert labels string optional parameters for the get alerts action parameters asset role names string optional parameters for the get alerts action parameters asset ingress ports string optional parameters for the get alerts action parameters asset availability zones string optional parameters for the get alerts action parameters asset regions string optional parameters for the get alerts action parameters asset vpcs string optional parameters for the get alerts action parameters asset tags info list string optional parameters for the get alerts action parameters asset orca tags info list string optional parameters for the get alerts action parameters asset custom tags info list string optional parameters for the get alerts action parameters state status string optional parameters for the get alerts action parameters state orca score number optional parameters for the get alerts action parameters state risk level string optional parameters for the get alerts action parameters state score number optional parameters for the get alerts action parameters state severity string optional parameters for the get alerts action parameters limit string optional parameters for the get alerts action input example {"parameters" {"asset unique id" "asset unique id","cloud provider id" "cloud provider id","asset type" "asset type","asset state" "asset state","asset labels" "asset labels","type" "type","category" "category","alert labels" "alert labels","asset role names" "asset role names","asset ingress ports" "asset ingress ports","asset availability zones" "asset availability zones","asset regions" "asset regions","asset vpcs" "asset vpcs","asset tags info list" "asset tags info list","asset orca tags info list" "asset orca tags info list","asset custom tags info list" "asset custom tags info list","state status" "state status","state orca score" 10,"state risk level" "critical","state score" 20,"state severity" "state severity","limit" "900"}} output parameter type description status code number http status code of the response reason string response reason phrase version string output field version status string status value total items number output field total items total ungrouped items number output field total ungrouped items data grouped boolean response data total supported items string output field total supported items data array response data data group val string response data data asset type string string response data data data object response data data data recommendation string response data data data details string response data data data title string response data data alert labels array response data data configuration object response data data is compliance boolean response data data group type string string response data data description string response data data recommendation string response data data source string response data data group type string response data data cluster type string response data data type string response data output example {"status code" 200,"response headers" {"date" "mon, 03 jul 2023 07 14 22 gmt","content type" "application/json","content length" "141","connection" "keep alive","server" " ","vary" "accept, cookie, origin","allow" "get, head, options","access control expose headers" "x orca request id","x orca request id" "5ad6b9ec 11e2 4554 a019 52d5fe404098","x amzn trace id" "root=1 64a27546 5879da2e06884d6f6bb7bcb9","x frame options" "deny","x content type options" "nosniff","referrer policy" "same origin"}, get asset unique id retrieve information about an asset endpoint url api/assets/{{asset unique id}} method get input argument name type required description path parameters asset unique id string required parameters for the get asset unique id action input example {"path parameters" {"asset unique id" 1808008}} output parameter type description status code number http status code of the response reason string response reason phrase version string output field version status string status value data grouped boolean response data total supported items string output field total supported items total ungrouped items number output field total ungrouped items total items number output field total items data array response data data file name string response data data file string response data output example {"status code" 200,"response headers" {"date" "mon, 03 jul 2023 07 14 22 gmt","content type" "application/json","content length" "141","connection" "keep alive","server" " ","vary" "accept, cookie, origin","allow" "get, head, options","access control expose headers" "x orca request id","x orca request id" "5ad6b9ec 11e2 4554 a019 52d5fe404098","x amzn trace id" "root=1 64a27546 5879da2e06884d6f6bb7bcb9","x frame options" "deny","x content type options" "nosniff","referrer policy" "same origin"}, get assets retrieve information about assets endpoint url api/assets method get input argument name type required description parameters asset unique id string optional parameters for the get assets action parameters cloud provider id string optional parameters for the get assets action parameters asset type string optional parameters for the get assets action parameters asset state string optional parameters for the get assets action parameters asset labels string optional parameters for the get assets action parameters type string optional parameters for the get assets action parameters internet facing string optional parameters for the get assets action parameters tags info list string optional parameters for the get assets action parameters orca tags info list string optional parameters for the get assets action parameters custom tags info list string optional parameters for the get assets action parameters compute regions string optional parameters for the get assets action parameters compute vpcs string optional parameters for the get assets action parameters state orca score number optional parameters for the get assets action parameters state risk level string optional parameters for the get assets action parameters state score number optional parameters for the get assets action parameters state severity string optional parameters for the get assets action input example {"parameters" {"asset unique id" "asset unique id","cloud provider id" "cloud provider id","asset type" "asset type","asset state" "asset state","asset labels" "asset labels","type" "type","internet facing" "internet facing","tags info list" "tags info list","orca tags info list" "orca tags info list","custom tags info list" "custom tags info list","compute regions" "compute regions","compute vpcs" "compute vpcs","state orca score" 0,"state risk level" "critical","state score" 1,"state severity" "state severity"}} output parameter type description status code number http status code of the response reason string response reason phrase version string output field version status string status value total items number output field total items total ungrouped items number output field total ungrouped items data grouped boolean response data total supported items string output field total supported items data array response data data vm object response data data vm imagename string response data data vm imageownerid string response data data vm imageispublic string response data data vm imageid string response data data vm imagedescription string response data data vm instancetype string response data data vm name string response data data compute object response data data compute securitygroups array response data data compute distributioninfosite string response data data compute vpclist object response data data compute vpclist models array response data data compute vpclist models model object response data data compute vpclist remaining number response data data compute privatednss array response data output example {"status code" 200,"response headers" {"date" "mon, 03 jul 2023 07 14 22 gmt","content type" "application/json","content length" "141","connection" "keep alive","server" " ","vary" "accept, cookie, origin","allow" "get, head, options","access control expose headers" "x orca request id","x orca request id" "5ad6b9ec 11e2 4554 a019 52d5fe404098","x amzn trace id" "root=1 64a27546 5879da2e06884d6f6bb7bcb9","x frame options" "deny","x content type options" "nosniff","referrer policy" "same origin"}, response headers header description example access control expose headers http response header access control expose headers x orca request id allow http response header allow get, head, options connection http response header connection keep alive content length the length of the response body in bytes 141 content type the media type of the resource application/json date the date and time at which the message was originated mon, 03 jul 2023 07 14 22 gmt referrer policy http response header referrer policy same origin server information about the software used by the origin server vary http response header vary accept, cookie, origin x amzn trace id http response header x amzn trace id root=1 64a27546 5879da2e06884d6f6bb7bcb9 x content type options http response header x content type options nosniff x frame options http response header x frame options deny x orca request id http response header x orca request id 5ad6b9ec 11e2 4554 a019 52d5fe404098