Download PDF
Download page Cisco Secure Application APIs.
Cisco Secure Application APIs
This page describes the Cisco Secure Application API methods you can use to query parameters, dashboards, and security reports of your choice.
API Rate Limits
The Cisco Secure Application API supports a maximum of 300 requests per minute.
Get Application List
Get a list of applications based on the provided query parameters.
GET controller/argento/public-api/v1/applicationsParameters
| Name | Type | Description |
|---|---|---|
date | string | This is the date for nodes daily statistics count of the applications. This is in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
|
| This allows you to sort the applications by a specific field. Example: sort=applicationName. |
|
| The ascending or descending order of the applications. |
|
| This allows you to filter the applications by a specific field. Example: filter=applicationName eq "application1". |
|
| The maximum number of applications to return. Default: 10. |
|
| The offset for pagination. Default: 0. |
|
| This is the global application filter, which restricts outputs to one application. Use the field appdApplicationId value from the response. |
Responses
A successful retrieval of the application list:
{
"items": [
{
"appdApplicationId": 0,
"applicationCreatedAt": "string",
"applicationId": "string",
"applicationName": "string",
"applicationSecurityEnabled": true,
"applicationSecurityEnabledComputed": true,
"countApmActive": 0,
"countReady": 0,
"countSecured": 0,
"countSecurityEnabled": 0,
"countSupportedAgent": 0
}
],
"total": 0
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Get Application Tiers
Get a list of tiers based a specific application and provided query parameters.
GET controller/argento/public-api/v1/applications/{applicationId}/tiersParameters
| Name | Type | Description |
|---|---|---|
| string | The required application ID used for specific application tier details. |
date | string | This is the date in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
|
| This allows you to sort the applications by a specific field. Example: sort=applicationName. |
|
| The ascending or descending order of the applications. |
|
| This allows you to filter the applications by a specific field. Example: filter=applicationName eq "application1". |
|
| The maximum number of applications to return. Default: 10. |
|
| The offset for pagination. Default: 0. |
|
| This is the global application filter, which restricts outputs to one application. |
|
| The global tier filter, which restricts outputs to one tier only. Use the appdTierId value from the response. |
Responses
A successful retrieval of the tier list of a specific application:
{
"items": [
{
"appdApplicationId": 0,
"appdTierId": 0,
"applicationName": "string",
"countApmActive": 0,
"countReady": 0,
"countSecured": 0,
"countSecurityEnabled": 0,
"countSupportedAgent": 0,
"id": "string",
"tierCreatedAt": "string",
"tierEnableSecurity": true,
"tierEnableSecurityStatus": true,
"tierName": "string"
}
],
"total": 0
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Update the Security Status for an Application
Updates the securityEnabled status for a specific application based on the provided resource ID.
PATCH controller/argento/public-api/v1/applications/{resourceId}Parameters
| Name | Type | Description |
|---|---|---|
| string | Resource ID of the application (UUID format). Required. |
body | object | JSON body containing the Example:
CODE
|
Responses
Invalid request (such as missing or invalid parameters)
{
"error": "string"
}Resource not found
{
"error": "string"
}Internal server error
{
"error": "string"
}Get Application Nodes
Get a list of nodes based on a specific tier and provided query parameters.
GET controller/argento/public-api/v1/applications/{applicationId}/tiers/{tierId}/nodesParameters
| Name | Type | Description |
|---|---|---|
|
| Tier ID required for specific node details. |
|
| Date in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
|
| Sort the nodes by a specific field. Example: sort=nodeName. |
|
| Order of the sort field (asc or desc). |
|
| Filter the nodes by a specific field. Example: filter=nodeName eq 'node1' |
|
| Maximum number of nodes to return. Default: 10. |
|
| Offset for pagination. Default: 0. |
Responses
Bad request:
{
"error": "string"
}Internal server error:
{
"error": "string"
}Get Attack List
This API call retrieves details of a specific attack if the attackSummaryId is provided, Otherwise, this API retrieves a list of attacks.
GET controller/argento/public-api/v1/attacksParameters
| Name | Type | Description |
|---|---|---|
startedAt | string | The start time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
| string | The end time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
|
| This allows you to sort the attacks by a specific field. Example: sort=attackName. |
|
| The ascending or descending order of the sort field. |
|
| This allows you to filter the attacks by a specific field. Example: filter=attackName eq "dangerousOne". |
|
| The maximum number of attacks to return. Default: 10. |
|
| The offset for pagination. Default: 0. |
|
| This is the global application filter, which restricts outputs to one application. Use appdApplicationId value from the response |
|
| The global tier filter, which restricts outputs to one tier only. Use the appdTierId value from the response. |
Responses
A successful retrieval of the attack list or attack details:
{
"items": [
{
"appdApplicationId": 0,
"appdBtId": 0,
"appdTierId": 0,
"applicationId": "string",
"applicationName": "string",
"attackName": "string",
"attackNote": "string",
"attackOutcome": "string",
"attackSource": "string",
"attackStatus": "string",
"attackSummaryId": "string",
"attackTypes": "string",
"btName": "string",
"btUuid": "string",
"firstSeenAt": "string",
"keyInfo": "string",
"lastSeenAt": "string",
"tierId": "string",
"tierName": "string"
}
],
"total": 0
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Get Attack Details
This API call retrieves details of a specific attack if the attackSummaryId is provided, Otherwise, this API retrieves a list of attacks.
GET controller/argento/public-api/v1/attacks/{attackSummaryId}Parameters
| Name | Type | Description |
|---|---|---|
attackSummaryId | string | The required attack summary ID for specific attack details. |
startedAt | string | The start time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
| string | The end time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
|
| This allows you to sort the attacks by a specific field. Example: sort=attackName. |
|
| The ascending or descending order of the sort field. |
|
| This allows you to filter the attacks by a specific field. Example: filter=attackName eq "dangerousOne". |
|
| The maximum number of attacks to return. Default: 10. |
|
| The offset for pagination. Default: 0. |
|
| This is the global application filter, which restricts outputs to one application. Use appdApplicationId value from the response |
|
| The global tier filter, which restricts outputs to one tier only. Use the appdTierId value from the response. |
Responses
Successful retrieval of the attack list or attack details:
{
"items": [
{
"appdApplicationId": 0,
"appdBtId": 0,
"appdTierId": 0,
"applicationId": "string",
"applicationName": "string",
"attackName": "string",
"attackNote": "string",
"attackOutcome": "string",
"attackSource": "string",
"attackStatus": "string",
"attackSummaryId": "string",
"attackTypes": "string",
"btName": "string",
"btUuid": "string",
"firstSeenAt": "string",
"keyInfo": "string",
"lastSeenAt": "string",
"tierId": "string",
"tierName": "string"
}
],
"total": 0
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Get Business Transaction List
This API call retrieves a list of business transactions based on the provided query parameters.
GET controller/argento/public-api/v1/businessTransactionsParameters
| Name | Type | Description |
|---|---|---|
startedAt | string | The start time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
| string | The end time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
|
| This allows you to sort the transactions by a specific field. Example: sort=businessTransactionName. |
|
| The ascending or descending order of the sort field. |
|
| This allows you to filter the transactions by a specific field. Example: filter=businessTransactionName eq "businessOne". |
|
| The maximum number of transactions to return. Default: 10. |
|
| The offset for pagination. Default: 0. |
|
| This is the global application filter, which restricts outputs to one application. Use appdApplicationId value from the response |
|
| The global tier filter, which restricts outputs to one tier only. Use the appdTierId value from the response. |
Responses
A successful retrieval of the business transaction list:
{
"items": [
{
"appdApplicationId": 0,
"appdBusinessTransactionId": 0,
"applicationId": "string",
"applicationName": "string",
"attackOutcomeCountAttempted": 0,
"attackOutcomeCountBlocked": 0,
"attackOutcomeCountExploited": 0,
"brmTitle": "string",
"businessRiskScore": 0,
"businessTransactionId": "string",
"businessTransactionName": "string",
"entryTierAppdId": 0,
"entryTierId": "string",
"entryTierName": "string",
"riskScore": 0,
"severityCountCritical": 0,
"severityCountHigh": 0,
"severityCountLow": 0,
"severityCountMedium": 0,
"tierCount": 0,
"totalAttackCount": 0,
"totalVulnCount": 0
}
],
"total": 0
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Get Business Transaction Details
This API call retrieves details of a business transaction based on the provided query parameters.
GET controller/argento/public-api/v1/businessTransactions/{businessTransactionId}Parameters
| Name | Type | Description |
|---|---|---|
businessTransactionId | string | This is the required business transaction ID. |
Responses
A successful and detailed retrieval of a specific business transaction:
{
"appdApplicationId": 0,
"appdBusinessTransactionId": 0,
"applicationName": "string",
"brmTitle": "string",
"businessRiskScore": 0,
"businessTransactionName": "string",
"entryTierAppdId": 0,
"entryTierName": "string",
"riskScore": 0,
"riskScoreCard": "string"
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Get Library List
Get a list of libraries based on the provided query parameters.
GET controller/argento/public-api/v1/libraries Parameters
| Name | Type | Description |
|---|---|---|
startedAt | string | The start time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
| string | The end time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
|
| This allows you to sort the libraries by a specific field. Example: sort=applicationName. |
|
| The ascending or descending order of the sort field. |
|
| This allows you to filter the libraries by a specific field. Example: filter=applicationName eq "application1". |
|
| The maximum number of libraries to return. Default: 10. |
|
| The offset for pagination. Default: 0. |
|
| This is the global application filter, which restricts outputs to one application. Use appdApplicationId value from the response |
|
| The global tier filter, which restricts outputs to one tier only. Use the appdTierId value from the response. |
| string | The location of the file system, which identifies that the node has a file to that path. This also identifies that the library is from your application. |
Responses
A successful retrieval of the library list:
{
"items": [
{
"active_internet_breach": true,
"affectedNodeCount": 0,
"appdApplicationId": 0,
"appdTierId": 0,
"applicationName": "string",
"easily_exploitable": true,
"kennaRiskScore": 0,
"libraryId": "string",
"malware_exploitable": true,
"packageCanonicalName": "string",
"packageId": "string",
"packageLanguage": "string",
"packageName": "string",
"packageVersion": "string",
"popular_target": true,
"predicted_exploitable": true,
"recommendedVersion": "string",
"remote_code_execution": true,
"riskScore": 0,
"severity": "string",
"severityCountCritical": 0,
"severityCountHigh": 0,
"severityCountLow": 0,
"severityCountMedium": 0,
"status": "string",
"tierName": "string",
"totalVulnCount": 0
}
],
"total": 0
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Get Library Details
Get details of a library based on the provided query parameters.
GET controller/argento/public-api/v1/libraries/{libraryId}Parameters
| Name | Type | Description |
|---|---|---|
libraryId | string | The required library ID. |
|
| This is the global application filter, which restricts outputs to one application. Use appdApplicationId value from the response |
|
| The global tier filter, which restricts outputs to one tier only. Use the appdTierId value from the response. |
| string | The location of the file system, which identifies that the node has a file to that path. This also identifies that the library is from your application. |
Responses
A successful and detailed retrieval of a specific library:
{
"active_internet_breach": true,
"affectedNodeCount": 0,
"appdApplicationId": 0,
"appdTierId": 0,
"applicationName": "string",
"easily_exploitable": true,
"kennaRiskScore": 0,
"libraryId": "string",
"malware_exploitable": true,
"packageCanonicalName": "string",
"packageId": "string",
"packageLanguage": "string",
"packageName": "string",
"packageVersion": "string",
"popular_target": true,
"predicted_exploitable": true,
"recommendedVersion": "string",
"remote_code_execution": true,
"riskScore": 0,
"severity": "string",
"severityCountCritical": 0,
"severityCountHigh": 0,
"severityCountLow": 0,
"severityCountMedium": 0,
"status": "string",
"tierName": "string",
"totalVulnCount": 0
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Get Business Risk Score
Get a business risk score by application and business transaction based on the provided query parameters.
GET controller/argento/public-api/v1/stats/businessRiskParameters
| Name | Type | Description |
|---|---|---|
btId |
| This is the business transaction ID. |
|
| This is the global application filter, which restricts outputs to one application. Use appdApplicationId value from the response |
|
| The global tier filter, which restricts outputs to one tier only. Use the appdTierId value from the response. |
Responses
Successful retrieval of the business risk score:
{
"brmTitle": "string",
"businessRiskScore": 0
}Bad request:
{
"error": "string"
}Resource not found:
{
"error": "string"
}Internal server error:
{
"error": "string"
}Get Vulnerability List
Get a list of vulnerabilities based on the provided query parameters.
GET controller/argento/public-api/v1/vulnerabilitiesParameters
| Name | Type | Description |
|---|---|---|
startedAt | string | The start time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
| string | The end time of the transactions in RFC3339 format. Example: 2023-05-25T00:10:01-02:00. |
|
| This allows you to sort the vulnerabilities by a specific field. Example: sort=cweName. |
|
| The ascending or descending order of the sort field. |
|
| This allows you to filter the vulnerabilities by a specific field. Example: filter=cweName eq "CW-94". |
|
| The maximum number of libraries to return. Default: 10. |
|
| The offset for pagination. Default: 0. |
|
| This is the global application filter, which restricts outputs to one application. Use appdApplicationId value from the response |
|
| The global tier filter, which restricts outputs to one tier only. Use the appdTierId value from the response. |
Responses
A successful retrieval of the vulnerability list:
{
"items": [
{
"active_internet_breach": true,
"affectedNodeCount": 0,
"appdApplicationId": 0,
"appdTierId": 0,
"applicationName": "string",
"attackSummaryId": "string",
"cveId": "string",
"cveName": "string",
"cvePublishDate": "string",
"cveTitle": "string",
"cweName": "string",
"easily_exploitable": true,
"firstSeenAt": "string",
"hasAttacks": true,
"hasEvent": true,
"hasObservations": true,
"incidentId": "string",
"kennaScore": 0,
"lastSeenAt": "string",
"libraryId": "string",
"malware_exploitable": true,
"packageCanonicalName": "string",
"packageId": "string",
"packageLanguage": "string",
"popular_target": true,
"predicted_exploitable": true,
"remediation": "string",
"remote_code_execution": true,
"riskScore": 0,
"severity": "string",
"status": "Unknown",
"tierId": "string",
"tierName": "string"
}
],
"total": 0
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Get Vulnerability Details
Get details of a vulnerability based on the provided query parameters.
GET controller/argento/public-api/v1/vulnerabilities/{cveId}Parameters
| Name | Type | Description |
|---|---|---|
cveId |
| The required CVE ID. |
Responses
A successful and detailed retrieval of a specific vulnerability.
{
"createdAt": "string",
"cveId": "string",
"cveTitle": "string",
"cvss3BaseScore": 0,
"cvss3VectorString": "string",
"cweName": "string",
"description": "string",
"kenna": {
"active_internet_breach": true,
"easily_exploitable": true,
"malware_exploitable": true,
"popular_target": true,
"predicted_exploitable": true,
"remote_code_execution": true,
"risk_score_meter": 0
},
"name": "string",
"nvdUrl": "string",
"publishDate": "string",
"remediation": "string",
"severity": "string",
"updatedAt": "string"
}A bad request:
{
"error": "string"
}An internal server error:
{
"error": "string"
}Get Tier Nodes
Get a list of nodes based a specific tier ID.
GET controller/argento/public-api/v1/tiers/{tierId}/nodesParameters
| Name | Type | Description |
|---|---|---|
|
| Tier ID that you want to get node details for. |
date | string | Date in RFC3339 format. Example: |
|
| Sort the applications by a specific field. Example: |
|
| Order of the sort field ( |
|
| Filter the nodes by a specific field. Example: |
|
| Maximum number of nodes to return. Default: 10. |
|
| Offset for pagination. Default: 0. |
Responses
Successful retrieval of node list.
Bad request:
{
"error": "string"
}Internal server error:
{
"error": "string"
}Update the Security Status for a Tier
Updates the securityEnabled status for a specific tier based on the provided resource ID.
PATCH controller/argento/public-api/v1/tiers/{resourceId}Parameters
| Name | Type | Description |
|---|---|---|
| string | Resource ID of the tier (UUID format). Required. |
body | object | JSON body containing the Example:
CODE
|
Responses
Invalid request (such as missing or invalid parameters)
{
"error": "string"
}Resource not found
{
"error": "string"
}Internal server error
{
"error": "string"
}Update the Security Status for a Node
Updates the securityEnabled status for a specific node based on the provided resource ID.
PATCH controller/argento/public-api/v1/nodes/{resourceId}Parameters
| Name | Type | Description |
|---|---|---|
| string | Resource ID of the node (UUID format). Required. |
body | object | JSON body containing the Example:
CODE
|
Responses
Invalid request (such as missing or invalid parameters)
{
"error": "string"
}Resource not found
{
"error": "string"
}Internal server error
{
"error": "string"
}Download Swagger YAML Specification
To download the Swagger YAML specification, see Cisco Secure Application Public APIs 25_3.yaml.