Docs /docs/secure-endpoint/ _blank Community https://community.cisco.com/t5/custom/page/page-id/customFilteredByMultiLabel?board=disc-user-endpoint&labels=AMP,Secure%20Endpoint _blank Technology Security
What can you do with Secure Endpoint APIs?
Ingest Events Store events in 3rd party tools Archive extended event history Correlate against other logs Search Environment Find where a file has been Determine if a file was executed Capture command line arguments Basic Management Create Groups Move Computers Manage File Lists Find sample code and scripts View more sample code https://github.com/search?q=topic%3Aamp-for-endpoints+org%3ACiscoSecurity _blank button btn-primary btn-lg-wide Secure Endpoint API Basics https://github.com/CiscoSecurity/amp-01-basics _blank Basic examples of working with each API endpoint Python Fetch Computer Information https://github.com/CiscoSecurity/amp-02-fetch-computer-information _blank Examples of parsing out specific elements from the /computers API endpoint Python Secure Endpoint API Pagination https://github.com/CiscoSecurity/amp-03-pagination _blank Example of how to handle pagination with the Secure Endpoint API Python Secure Endpoint Event Stream Creator https://github.com/CiscoSecurity/amp-03-event-stream-creator _blank Creates a new event stream to be used with an AMQP client Python Collect and Delete Stale GUIDS https://github.com/CiscoSecurity/amp-04-delete-stale-guids _blank Collect GUIDs that have not been seen for 60 days or more and delete them Python SHA to Command Line Arguments https://github.com/CiscoSecurity/amp-04-sha256-to-command-line-arguments _blank Search an environment for a SHA256 and extract associated command line arguments Python