Get Threats for Time Period

Returns threats submitted within the specified time period. Valid time periods are recent (30 minutes), hourly (90 minutes), daily (25 hours), weekly (7 days), and monthly (30 days).

Request

Request Endpoint

GET /data/threats/{type}

Request Body

N/A

Path Parameters
Parameter	Value	Data Type	Description
type	host, ip, or url	string	Type of threats to return
age	recent, hourly, daily, weekly, monthly	string	The age of threats to return. recent = 30 minutes, hourly = 90 minutes, daily = 25 hours, weekly = 7 days, monthly = 30 days

Query Parameters

Response

If the submission is successful, the HTTP code 200 (OK) will be returned with the list of Threat objects.

Example

Request using curl to return host records for the past day:

curl ‘https://csp.infoblox.com/tide/api/data/threats/host/daily?data_format=ndjson' -H 'Authorization:Token token=<MYTOKEN>'

Response

{
     "threat": [
        {
           "id": "c2fe7b4b-1434-11e4-88e7-47366fc6a030", 
           "type": "HOST",
           "host": "example.com",
           "domain": "example.com",
           "tld": "com",
           "profile": "IID",
           "origin": "IID",
           "property": "MalwareC2_Torpig", 
           "class": "MalwareC2", 
           "threat_level": 100,
           "detected": "2016-07-25T19:49:17.023Z", 
           "imported": "2016-07-25T19:49:17.023Z",
           "dga": "false",
           "batch_id": "c2f9e76a-1334-11e4-88e7-47366fc6a010"
        }
],

Path Parameters