Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Sample Use Cases for the Data Retrieval API

  1. Last updated
  2. Save as PDF

While not a comprehensive list of available uses for the API, the following use cases are examples of how the reporting API can be used in the context of your own cloud analysis.

Get a list of users using high-risk cloud services

  1. Search for high-risk services to the endpoint  https://www.myshn.net/shnapi/rest/reporting/csv/queryCloudServiceProviderByRisk  with input parameters as:
[7,8,9]

This returns a list of all detected cloud services with a risk score of seven, eight or nine alongside the cspID for each service.

  1. Search for users who access or attempt to access these high-risk services using the endpoint https://www.myshn.net/shnapi/rest/reporting/csv/queryUniqueUsers with input parameters as the cspId from the high-risk services detected in step one.

This returns a list of all users using the high-risk cloud services, along with information about each service accessed.

Get a snapshot view of specific cloud services usage

  1. Search for the service identifiers (cspId) of the cloud services you want to take a snapshot of, using a POST request to the endpoint  https://www.myshn.net/rest/reporting/csv/queryCloudServiceProvider with input parameters as the cloud service names (Facebook, 4shared, etc.)

Service Identifiers for the cloud services are returned.

  1. After collecting the service identifiers for the cloud services, use a POST request to the endpoint https://myshn.net/rest/reporting/csv/queryPerServiceCount with the necessary serviceIdentifiers in the eventFilter to get a snapshot of corresponding cloud services.

This returns a snapshot of the cloud service usage including specific information about each service queried. To get a snapshot of all detected cloud services, pass the POST request without an  eventFilter.

Get a list of Allow/Deny statistics for a cloud service per user

  1. Search for the service identifiers (cspId) of the cloud services you want to see statistics for, pass a POST request to the endpoint https://www.myshn.net/rest/reporting/csv/queryCloudServiceProvider with input parameters as the cloud service names (Facebook, 4shared, etc.):

The service Identifiers for the cloud services are returned.

  1. After collecting the service identifiers for the cloud services, pass a POST request to the endpoint https://www.myshn.net/rest/reporting/csv/queryAllowedDeniedStatistics as input to get statistics of corresponding cloud services.

This returns a list of all users using the cloud service and their allowed and denied statistics (Allowed 0 and Denied 1).

 

Get the Audit Trail since a given timestamp

curl -v -u "USERNAME:PASSWORD" \
--request POST 'https://www.myshn.net/shnapi/rest/reporting/csv/queryAuditTrails' \
--header 'Content-Type: application/json' \
--data-raw '{"auditFilter": {"dataSetId": -1,"match": null,"eventTypes": 1,"fromTime": 1630487137000,"toTime": null}}'
  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    This page has no tags.