Class: Falcon::QuickScanPro

Inherits:

Object

• Object
• Falcon::QuickScanPro

Defined in:

lib/crimson-falcon/api/quick_scan_pro.rb

Instance Attribute Summary

• #api_client ⇒ Object

  Returns the value of attribute api_client.

Instance Method Summary

• #delete_file(ids, opts = {}) ⇒ QuickscanproDeleteFileResponse

  Deletes file by its sha256 identifier.

• #delete_file_with_http_info(ids, opts = {}) ⇒ Array<(QuickscanproDeleteFileResponse, Integer, Hash)>

  Deletes file by its sha256 identifier.

• #delete_scan_result(ids, opts = {}) ⇒ MsaspecQueryResponse

  Deletes the result of an QuickScan Pro scan.

• #delete_scan_result_with_http_info(ids, opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

  Deletes the result of an QuickScan Pro scan.

• #get_scan_result(ids, opts = {}) ⇒ QuickscanproGetScanResultResponse

  Gets the result of an QuickScan Pro scan.

• #get_scan_result_with_http_info(ids, opts = {}) ⇒ Array<(QuickscanproGetScanResultResponse, Integer, Hash)>

  Gets the result of an QuickScan Pro scan.

• #initialize(api_client = ApiClient.default) ⇒ QuickScanPro constructor

  A new instance of QuickScanPro.

• #launch_scan(body, opts = {}) ⇒ QuickscanproLaunchScanResponse

  Starts scanning a file uploaded through ‘/quickscanpro/entities/files/v1’.

• #launch_scan_with_http_info(body, opts = {}) ⇒ Array<(QuickscanproLaunchScanResponse, Integer, Hash)>

  Starts scanning a file uploaded through &#39;/quickscanpro/entities/files/v1&#39;.

• #query_scan_results(filter, opts = {}) ⇒ QuickscanproQueryScanResultsResponse

  FQL query specifying the filter parameters.

• #query_scan_results_with_http_info(filter, opts = {}) ⇒ Array<(QuickscanproQueryScanResultsResponse, Integer, Hash)>

  FQL query specifying the filter parameters.

• #upload_file_quick_scan_pro(file, opts = {}) ⇒ QuickscanproFileUploadResponse

  Uploads a file to be further analyzed with QuickScan Pro.

• #upload_file_quick_scan_pro_with_http_info(file, opts = {}) ⇒ Array<(QuickscanproFileUploadResponse, Integer, Hash)>

  Uploads a file to be further analyzed with QuickScan Pro.

Constructor Details

#initialize(api_client = ApiClient.default) ⇒ QuickScanPro

Returns a new instance of QuickScanPro.

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 36

def initialize(api_client = ApiClient.default)
  @api_client = api_client
end

Instance Attribute Details

#api_client ⇒ Object

Returns the value of attribute api_client.

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 34

def api_client
  @api_client
end

Instance Method Details

#delete_file(ids, opts = {}) ⇒ QuickscanproDeleteFileResponse

Deletes file by its sha256 identifier.

Parameters:

• ids (Array<String>) —

  File&#39;s SHA256

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (QuickscanproDeleteFileResponse)

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 43

def delete_file(ids, opts = {})
  data, _status_code, _headers = delete_file_with_http_info(ids, opts)
  data
end

#delete_file_with_http_info(ids, opts = {}) ⇒ Array<(QuickscanproDeleteFileResponse, Integer, Hash)>

Deletes file by its sha256 identifier.

Parameters:

• ids (Array<String>) —

  File&#39;s SHA256

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(QuickscanproDeleteFileResponse, Integer, Hash)>) —

  QuickscanproDeleteFileResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 52

def delete_file_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: QuickScanPro.delete_file ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling QuickScanPro.delete_file"
  end
  # resource path
  local_var_path = '/quickscanpro/entities/files/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'QuickscanproDeleteFileResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"QuickScanPro.delete_file",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:DELETE, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: QuickScanPro#delete_file\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#delete_scan_result(ids, opts = {}) ⇒ MsaspecQueryResponse

Deletes the result of an QuickScan Pro scan.

Parameters:

• ids (Array<String>) —

  Scan job IDs previously created by LaunchScan

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (MsaspecQueryResponse)

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 105

def delete_scan_result(ids, opts = {})
  data, _status_code, _headers = delete_scan_result_with_http_info(ids, opts)
  data
end

#delete_scan_result_with_http_info(ids, opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

Deletes the result of an QuickScan Pro scan.

Parameters:

• ids (Array<String>) —

  Scan job IDs previously created by LaunchScan

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(MsaspecQueryResponse, Integer, Hash)>) —

  MsaspecQueryResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 114

def delete_scan_result_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: QuickScanPro.delete_scan_result ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling QuickScanPro.delete_scan_result"
  end
  # resource path
  local_var_path = '/quickscanpro/entities/scans/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'MsaspecQueryResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"QuickScanPro.delete_scan_result",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:DELETE, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: QuickScanPro#delete_scan_result\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_scan_result(ids, opts = {}) ⇒ QuickscanproGetScanResultResponse

Gets the result of an QuickScan Pro scan.

Parameters:

• ids (Array<String>) —

  Scan job IDs previously created by LaunchScan

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (QuickscanproGetScanResultResponse)

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 167

def get_scan_result(ids, opts = {})
  data, _status_code, _headers = get_scan_result_with_http_info(ids, opts)
  data
end

#get_scan_result_with_http_info(ids, opts = {}) ⇒ Array<(QuickscanproGetScanResultResponse, Integer, Hash)>

Gets the result of an QuickScan Pro scan.

Parameters:

• ids (Array<String>) —

  Scan job IDs previously created by LaunchScan

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(QuickscanproGetScanResultResponse, Integer, Hash)>) —

  QuickscanproGetScanResultResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 176

def get_scan_result_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: QuickScanPro.get_scan_result ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling QuickScanPro.get_scan_result"
  end
  # resource path
  local_var_path = '/quickscanpro/entities/scans/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'QuickscanproGetScanResultResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"QuickScanPro.get_scan_result",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: QuickScanPro#get_scan_result\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#launch_scan(body, opts = {}) ⇒ QuickscanproLaunchScanResponse

Starts scanning a file uploaded through ‘/quickscanpro/entities/files/v1’.

Parameters:

• body (QuickscanproLaunchScanRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (QuickscanproLaunchScanResponse)

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 229

def launch_scan(body, opts = {})
  data, _status_code, _headers = launch_scan_with_http_info(body, opts)
  data
end

#launch_scan_with_http_info(body, opts = {}) ⇒ Array<(QuickscanproLaunchScanResponse, Integer, Hash)>

Starts scanning a file uploaded through &#39;/quickscanpro/entities/files/v1&#39;.

Parameters:

• body (QuickscanproLaunchScanRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(QuickscanproLaunchScanResponse, Integer, Hash)>) —

  QuickscanproLaunchScanResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 238

def launch_scan_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: QuickScanPro.launch_scan ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling QuickScanPro.launch_scan"
  end
  # resource path
  local_var_path = '/quickscanpro/entities/scans/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'QuickscanproLaunchScanResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"QuickScanPro.launch_scan",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: QuickScanPro#launch_scan\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#query_scan_results(filter, opts = {}) ⇒ QuickscanproQueryScanResultsResponse

FQL query specifying the filter parameters

Parameters:

• filter (String) —

  Empty value means to not filter on anything Available filter fields that supports match (~): _all, mitre_attacks.description Available filter fields that supports exact match: cid,sha256,id,status,type,entity,executor,verdict,verdict_reason,verdict_source,artifacts.file_artifacts.sha256,artifacts.file_artifacts.filename,artifacts.file_artifacts.verdict,artifacts.file_artifacts.verdict_reasons,artifacts.url_artifacts.url,artifacts.url_artifacts.verdict,artifacts.url_artifacts.verdict_reasons,mitre_attacks.attack_id,mitre_attacks.attack_id_wiki,mitre_attacks.tactic,mitre_attacks.technique,mitre_attacks.capec_id,mitre_attacks.parent.attack_id,mitre_attacks.parent.attack_id_wiki,mitre_attacks.parent.technique Available filter fields that supports wildcard (*): mitre_attacks.description Available filter fields that supports range comparisons (&gt;, &lt;, &gt;&#x3D;, &lt;&#x3D;): created_timestamp, updated_timestamp All filter fields and operations supports negation (!). _all field is used to search between all fields.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  The offset to start retrieving ids from.

• :limit (Integer) —

  Maximum number of IDs to return. Max: 5000. (default to 50)

• :sort (String) —

  Sort order: &#x60;asc&#x60; or &#x60;desc&#x60;. Sort supported fields &#x60;created_timestamp&#x60;

Returns:

• (QuickscanproQueryScanResultsResponse)

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 298

def query_scan_results(filter, opts = {})
  data, _status_code, _headers = query_scan_results_with_http_info(filter, opts)
  data
end

#query_scan_results_with_http_info(filter, opts = {}) ⇒ Array<(QuickscanproQueryScanResultsResponse, Integer, Hash)>

FQL query specifying the filter parameters

Parameters:

• filter (String) —

  Empty value means to not filter on anything Available filter fields that supports match (~): _all, mitre_attacks.description Available filter fields that supports exact match: cid,sha256,id,status,type,entity,executor,verdict,verdict_reason,verdict_source,artifacts.file_artifacts.sha256,artifacts.file_artifacts.filename,artifacts.file_artifacts.verdict,artifacts.file_artifacts.verdict_reasons,artifacts.url_artifacts.url,artifacts.url_artifacts.verdict,artifacts.url_artifacts.verdict_reasons,mitre_attacks.attack_id,mitre_attacks.attack_id_wiki,mitre_attacks.tactic,mitre_attacks.technique,mitre_attacks.capec_id,mitre_attacks.parent.attack_id,mitre_attacks.parent.attack_id_wiki,mitre_attacks.parent.technique Available filter fields that supports wildcard (*): mitre_attacks.description Available filter fields that supports range comparisons (&gt;, &lt;, &gt;&#x3D;, &lt;&#x3D;): created_timestamp, updated_timestamp All filter fields and operations supports negation (!). _all field is used to search between all fields.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  The offset to start retrieving ids from.

• :limit (Integer) —

  Maximum number of IDs to return. Max: 5000. (default to 50)

• :sort (String) —

  Sort order: &#x60;asc&#x60; or &#x60;desc&#x60;. Sort supported fields &#x60;created_timestamp&#x60;

Returns:

• (Array<(QuickscanproQueryScanResultsResponse, Integer, Hash)>) —

  QuickscanproQueryScanResultsResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 310

def query_scan_results_with_http_info(filter, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: QuickScanPro.query_scan_results ...'
  end
  # verify the required parameter 'filter' is set
  if @api_client.config.client_side_validation && filter.nil?
    fail ArgumentError, "Missing the required parameter 'filter' when calling QuickScanPro.query_scan_results"
  end
  # resource path
  local_var_path = '/quickscanpro/queries/scans/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'filter'] = filter
  query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
  query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
  query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'QuickscanproQueryScanResultsResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"QuickScanPro.query_scan_results",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: QuickScanPro#query_scan_results\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#upload_file_quick_scan_pro(file, opts = {}) ⇒ QuickscanproFileUploadResponse

Uploads a file to be further analyzed with QuickScan Pro. The samples expire according to the Retention Policies set.

Parameters:

• file (File) —

  Binary file to be uploaded. Max file size: 256 MB.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :scan (Boolean) —

  If true, after upload, it starts scanning immediately. Default scan mode is &#39;false&#39; (default to false)

Returns:

• (QuickscanproFileUploadResponse)

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 367

def upload_file_quick_scan_pro(file, opts = {})
  data, _status_code, _headers = upload_file_quick_scan_pro_with_http_info(file, opts)
  data
end

#upload_file_quick_scan_pro_with_http_info(file, opts = {}) ⇒ Array<(QuickscanproFileUploadResponse, Integer, Hash)>

Uploads a file to be further analyzed with QuickScan Pro. The samples expire according to the Retention Policies set.

Parameters:

• file (File) —

  Binary file to be uploaded. Max file size: 256 MB.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :scan (Boolean) —

  If true, after upload, it starts scanning immediately. Default scan mode is &#39;false&#39; (default to false)

Returns:

• (Array<(QuickscanproFileUploadResponse, Integer, Hash)>) —

  QuickscanproFileUploadResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/quick_scan_pro.rb', line 377

def upload_file_quick_scan_pro_with_http_info(file, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: QuickScanPro.upload_file_quick_scan_pro ...'
  end
  # verify the required parameter 'file' is set
  if @api_client.config.client_side_validation && file.nil?
    fail ArgumentError, "Missing the required parameter 'file' when calling QuickScanPro.upload_file_quick_scan_pro"
  end
  # resource path
  local_var_path = '/quickscanpro/entities/files/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['multipart/form-data'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}
  form_params['file'] = file
  form_params['scan'] = opts[:'scan'] if !opts[:'scan'].nil?

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'QuickscanproFileUploadResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"QuickScanPro.upload_file_quick_scan_pro",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: QuickScanPro#upload_file_quick_scan_pro\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end