What can you do with Secure Endpoint APIs?
Ingest Events
  • Store events in 3rd party tools
  • Archive extended event history
  • Correlate against other logs
Search Environment
  • Find where a file has been
  • Determine if a file was executed
  • Capture command line arguments
Basic Management
  • Create Groups
  • Move Computers
  • Manage File Lists
Find sample code and scripts
Python
Secure Endpoint API Basics
Basic examples of working with each API endpoint
Python
Fetch Computer Information
Examples of parsing out specific elements from the /computers API endpoint
Python
Secure Endpoint API Pagination
Example of how to handle pagination with the Secure Endpoint API
Python
Secure Endpoint Event Stream Creator
Creates a new event stream to be used with an AMQP client
Python
Collect and Delete Stale GUIDS
Collect GUIDs that have not been seen for 60 days or more and delete them
Python
SHA to Command Line Arguments
Search an environment for a SHA256 and extract associated command line arguments
View more sample code