接口功能介紹

反彈shell產生告警事件后，用戶可以對已經產生的告警事件詳情進行查詢。

接口約束

此功能為收費功能。確認已經購買服務器配額，并且開啟服務器防護。如果沒有購買配額，可按照頁面提示進行購買。如果沒有開啟防護，請在服務器列表頁開啟機器防護。

URI

POST /v1/reverseShell/event/queryDetail

路徑參數
無

Query參數
無

請求參數

請求頭header參數

請求體body參數

表 queryParam

響應參數

表 ReverseShellEventDto

枚舉參數

無

請求示例

請求url

無

請求頭header

{"regionid": "100054c0416811e9a6690242ac110002","Content-Type":"application/json","urlType": "CTAPI"}

請求體body

{"queryParam": {"id": "RES2023101011110"}}

響應示例

{"statusCode": "200","error": "CTCSSCN_000000","message": "查詢成功!","returnObj": {"id": "idxxx","status": 0,"connectProcess": "cmd.exe","connectProcessCmd": "cmd.exe asas","destIpPort": "10.1.1.1:80","destIp": "10.1.1.1","destPort": "80","publicIp": "10.2.2.2","privateIp": "10.3.3.3","protocol": "ICMP","connectPid": "1111","parentProcess": "BASH.SH","parentProcessCmd": "BASH -I","parentPid": "222","custName": "ET-15","agentGuid": "agentGuid","timestamp": "2023-08-06 12:00:00","handleTime": "2023-08-06 14:00:00","riskLevel": 0}}

狀態碼

請參考

錯誤碼

請參考