curl --request POST \
--url https://api.flare.io/firework/v4/events/identifiers/{identifier_id}/_search \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '{
"query": {},
"size": 123,
"from": "<string>",
"order": "<string>",
"filters": {
"severity": [
"<string>"
],
"type": [
"<string>"
],
"estimated_created_at": {
"gt": "<string>",
"gte": "<string>",
"lt": "<string>",
"lte": "<string>"
}
}
}'
{
"items": [
{
"metadata": {
"estimated_created_at": "2019-09-20T16:30:37.589388Z",
"type": "listing",
"uid": "listing/apollon_market/9861",
"severity": "critical"
},
"tenant_metadata": {
"severity": {
"original": "low",
"override": "critical"
},
"tags": [
"important",
],
"notes": "This reason why this is tagged as 'important' is: ..."
},
"identifiers": [
{
"id": 1,
"name": "An identifier"
}
],
"highlights": {
"description": [
"Bank Statement PSD <mark>Template</mark>\r\n\r\nWe promise:\r\n- Your order will be delivered instantly."
],
"title": [
"Bank Statement PSD <mark>Template</mark>"
]
}
}
],
"next": "WzE1Njg5OTcwMzc1ODksICJsaXN0aW5nL2Fwb2xsb25fbWFya2V0Lzk4NjEiXQ%3D%3D"
}
Returns a list of events matching an identifier.
See the guide for using this endpoint: Exporting a Tenant’s Events .
This endpoint supports the Flare standard paging pattern .
One of the supported queries. (optional)
{
"type": "domain",
"fqdn": "<string>"
}
Limit number of events that will be returned. (Max 10)
The next
value from the last response.
The order in which the results will be returned.
Show valid order values
asc
desc
Hide child attributes
If a string value is specified, results will contain events that have a greater than or equal severity. Otherwise, if an array of severities is specified, results will only contain events that exactly match one of them.
Show valid severity values
info
low
medium
high
critical
Show valid type values
illicit_networks
open_web
leak
domain
listing
forum_content
blog_content
blog_post
profile
chat_message
ransomleak
infected_devices
financial_data
bot
stealer_log
paste
social_media
source_code
source_code_files
stack_exchange
google
service
buckets
bucket
bucket_object
Learn more about Event Source Filters .
Show child attributes
Matches values greater than the specified timestamp.
Format: ISO-8601
Matches values greater than or equal to the specified timestamp.
Format: ISO-8601
Matches values lesser than the specified timestamp.
Format: ISO-8601
Matches values lesser than or equal to the specified timestamp.
Format: ISO-8601
The ID of the identifier.
curl --request POST \
--url https://api.flare.io/firework/v4/events/identifiers/{identifier_id}/_search \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '{
"query": {},
"size": 123,
"from": "<string>",
"order": "<string>",
"filters": {
"severity": [
"<string>"
],
"type": [
"<string>"
],
"estimated_created_at": {
"gt": "<string>",
"gte": "<string>",
"lt": "<string>",
"lte": "<string>"
}
}
}'
{
"items": [
{
"metadata": {
"estimated_created_at": "2019-09-20T16:30:37.589388Z",
"type": "listing",
"uid": "listing/apollon_market/9861",
"severity": "critical"
},
"tenant_metadata": {
"severity": {
"original": "low",
"override": "critical"
},
"tags": [
"important",
],
"notes": "This reason why this is tagged as 'important' is: ..."
},
"identifiers": [
{
"id": 1,
"name": "An identifier"
}
],
"highlights": {
"description": [
"Bank Statement PSD <mark>Template</mark>\r\n\r\nWe promise:\r\n- Your order will be delivered instantly."
],
"title": [
"Bank Statement PSD <mark>Template</mark>"
]
}
}
],
"next": "WzE1Njg5OTcwMzc1ODksICJsaXN0aW5nL2Fwb2xsb25fbWFya2V0Lzk4NjEiXQ%3D%3D"
}