Returns a list of events matching an identifier.
Guides
See the guide for using this endpoint:
Exporting a Tenant’s Events .
{
"items" : [
{
"metadata" : {
"estimated_created_at" : "2019-09-20T16:30:37.589388Z" ,
"type" : "listing" ,
"uid" : "listing/apollon_market/9861" ,
"severity" : "critical"
},
"tenant_metadata" : {
"severity" : {
"original" : "low" ,
"override" : "critical"
},
"tags" : [
"important" ,
],
"notes" : "This reason why this is tagged as 'important' is: ..."
},
"identifiers" : [
{
"id" : 1 ,
"name" : "An identifier"
}
],
"highlights" : {
"description" : [
"Bank Statement PSD <mark>Template</mark> \r\n\r\n We promise: \r\n - Your order will be delivered instantly."
],
"title" : [
"Bank Statement PSD <mark>Template</mark>"
]
}
}
],
"next" : "WzE1Njg5OTcwMzc1ODksICJsaXN0aW5nL2Fwb2xsb25fbWFya2V0Lzk4NjEiXQ%3D%3D"
}
Paging
This endpoint supports the
Flare standard paging pattern .
Body Parameters
One of the supported queries. Domain
Email
Keyword
Query String
Username
GitHub Repository
Brand
Name
CC Bin
IP
Credentials
Secret
Azure Tenant
{
"type" : "domain" ,
"fqdn" : "<string>"
}
Limit number of events that will be returned. (Max 10)
The next
value from the last response.
The order in which the results will be returned. asc
desc
If a string value is specified, results will contain events that have a greater than or equal severity. Otherwise, if an array of severities is specified, results will only contain events that exactly match one of them. Show valid severity values
info
low
medium
high
critical
illicit_networks
open_web
leak
domain
listing
forum_content
blog_content
blog_post
profile
chat_message
ransomleak
infected_devices
financial_data
bot
stealer_log
paste
social_media
source_code
source_code_files
stack_exchange
google
service
buckets
bucket
bucket_object
Learn more about Event Source Filters . Matches values greater than the specified timestamp. Format: ISO-8601
Matches values greater than or equal to the specified timestamp. Format: ISO-8601
Matches values lesser than the specified timestamp. Format: ISO-8601
Matches values lesser than or equal to the specified timestamp. Format: ISO-8601
Path Parameters
The ID of the identifier.