Login
      Contents x
      getAVList
        • Print
        • PDF
        Contents

        getAVList

          • Print
          • PDF
          Article Summary

          Overview

          • The getAVList API is a feature provided by the "Anti-Virus" of "Security Monitoring" that allows you to check the list of security events detected by the Anti-Virus.
          • The API request must be IAM-authenticated via API Gateway.

          Request

          PlatformMethodRequest URI
          ClassicPOSThttps://securitymonitoring.apigw.ntruss.com/securitymonitoring/v1/getAVList
          VPCPOSThttps://securitymonitoring.apigw.ntruss.com/vsecuritymonitoring/v1/getAVList

          Request Header

          HeaderDescription
          x-ncp-apigw-timestampIt is the number of milliseconds that have elapsed since January 1, 1970 00:00:00 UTC.
          If the time difference with the API Gateway server is more than 5 minutes, the request is considered invalid.
          x-ncp-iam-access-keyAPI key issued by NAVER Cloud Platform or access key issued by IAM
          x-ncp-apigw-signature-v2Signature used to encrypt the body with the “secret key” that maps with the “access key.”
          The HMAC encryption algorithm is HMAC SHA256.

          Reference Call APIs that require IAM authentication

          Request parameters

          ParameterRequiredTypeDescription
          startDateTimeYeslongEvent search start time
          endDateTimeYeslongEvent search end time
          pageYesintPage Number
          countPerPageYesintNumber of displayed items per page
          orderNostringSort by Event detection time(asc, desc)
          default value : desc
          regionCodeNostringRegion code
          (Korea:KR, Germany:DEN, Japan:JPN, Singapore:SGN, USW:USWN)
          zoneNameNostringZone(KR-1, KR-2)
          infectedServerIpNostringDetection IP
          detectionPathNostringDetection Path
          malwareTypeNostringDetection Name

          Response

          Response body

          FieldTypeDescription
          returnCodestringResponse code
          returnMessagestringResponse message
          totalRowsintThis is the total number of getAVList.
          pageintThis is the requested page number.
          antiVirusDataList[]arrayEvent List
          antiVirusDataList[].ticketIdstringEvent Number
          antiVirusDataList[].datestringEvent detection time
          antiVirusDataList[].productstringProduct sortation
          classic : ANTIVIRUS, vpc : ANTIVIRUS_V2
          antiVirusDataList[].attackTypestringDetection Name
          antiVirusDataList[].targetIpstringDetection IP
          antiVirusDataList[].detectionPathstringDetection Path
          antiVirusDataList[].actionStatusstringStatus
          antiVirusDataList[].regionstringRegion
          antiVirusDataList[].zoneNamestringZone
          KR-1, JPN-1)
          antiVirusDataList[].platFormstringPlatform(CLASSIC, VPC)
          antiVirusDataList[].vpcNamestringVPC name
          Use only in VPC

          Examples

          Request example(Classic)

          curl -X POST "https://securitymonitoring.apigw.ntruss.com/securitymonitoring/v1/getAVList"
   -H "accept: application/json"
   -H "x-ncp-apigw-api-key: {x-ncp-apigw-api-key}"
   -H "x-ncp-iam-access-key: {x-ncp-iam-access-key}"
   -H "x-ncp-apigw-timestamp: {x-ncp-apigw-timestamp}"
   -H "x-ncp-apigw-signature-v2: {x-ncp-apigw-signature-v2}"
   -d {"startDateTime": {startDateTime},
         "endDateTime": {endDateTime},
         "page": {page},
         "countPerPage": {countPerPage}
         }

          Request example(VPC)

          curl -X POST "https://securitymonitoring.apigw.ntruss.com/vsecuritymonitoring/v1/getAVList"
   -H "accept: application/json"
   -H "x-ncp-apigw-api-key: {x-ncp-apigw-api-key}"
   -H "x-ncp-iam-access-key: {x-ncp-iam-access-key}"
   -H "x-ncp-apigw-timestamp: {x-ncp-apigw-timestamp}"
   -H "x-ncp-apigw-signature-v2: {x-ncp-apigw-signature-v2}"
   -d {"startDateTime": {startDateTime},
         "endDateTime": {endDateTime},
         "page": {page},
         "countPerPage": {countPerPage}
         }

          Response example

          {
  "returnCode": "0",
  "returnMessage": "SUCCESS",
  "totalRows": 1,
  "page": 1,
  "antiVirusDataList": [
    {
        "ticketId": "1",
        "date": "1600327664000",
        "product": "ANTIVIRUS_V2",
        "attackType": "Eicar_test_file",
        "targetIp": "10.0.1.7",
        "detectionPath": "/root/avtest1.sh",
        "actionStatus": "Quarantine",
        "region": "Korea",
        "zoneName": "KR-1",
        "platForm": "VPC",
        "vpcName": "vpc-test"
    }
  ]
}
          Was this article helpful?
          What's Next
          Change password!
          Changing your password will log you out immediately. Use the new password to log back in.
          Change profile
          Success!
          First name must have atleast 2 characters. Numbers and special characters are not allowed.
          Last name must have atleast 1 characters. Numbers and special characters are not allowed.
          Enter a valid email
          Enter a valid password
          Your profile has been successfully updated.
          Logout