Queries the intrusion events detected by honeypots.
Debugging
Authorization information
There is currently no authorization information disclosed in the API.
Request parameters
Parameter | Type | Required | Description | Example |
---|---|---|---|---|
Dealed | string | No | The status of the event. Valid values:
| y |
AlarmEventId | long | No | The ID of the alert. | 1259925 |
RiskLevelList | array | No | The risk levels. | |
string | No | The risk level. Valid values:
| 4 | |
HoneypotIdList | array | No | The honeypot IDs. | |
string | No | The honeypot ID. | 911df9d6fe20451c059edbcffa1d1c33452f6a71e59d4826da067af224***** | |
AgentIdList | array | No | The probe IDs. | |
string | No | The probe ID. | d3c0dafa-5059-4eb0-8c28-7d40f58***** | |
CurrentPage | integer | No | The page number. | 1 |
PageSize | integer | No | The number of entries per page. Default value: 20. | 10 |
RequestId | string | No | The request ID. | 2F9CE167-58D5-5DA6-AA3B-923EED02**** |
Lang | string | No | The language of the content within the request and response. Default value: zh. Valid values:
| zh |
SrcIp | string | No | The source IP address of the attack. | 185.237.96.*** |
PortraitId | string | No | The ID of the attacker profile. | cd48604a-1694-4f03-ade0-ec6994c3***** |
Response parameters
Examples
Sample success responses
JSON
format
{
"HoneypotEvents": [
{
"SrcIp": "192.168.62.***",
"DstIp": "112.126.205.***",
"AgentId": "27d44bd5815d401992ea672874d9****",
"AgentName": "1193474_test_****",
"Protocol": "tcp",
"FirstTime": 1692670297,
"LastTime": 1676558664,
"Location": "China Beijing",
"RiskLevel": "4",
"HoneypotName": "honeypot-2",
"AlarmEventId": 1900752,
"SecurityEventId": 70427821,
"MergeFieldList": [
{
"FieldType": "level2_item1",
"FieldKey": "type",
"FieldValue": "web_access",
"FieldExtInfo": "data"
}
]
}
],
"PageInfo": {
"CurrentPage": 1,
"PageSize": 20,
"TotalCount": 30,
"Count": 20,
"LastRowKey": "CAESGgoSChAKDGNvbXBsZXRlVGltZRABCgQiAggAGAAiQAoJAGYXFWIAAAAACjMDLgAAADFTNzMyZDMwMzAzMDM1Mzc3Njc4MzA2ODY5NmI2YTY*********",
"NextToken": "B604532DEF982B875E8360A6EFA3B***"
},
"RequestId": "FBD28009-6096-5E90-BFE6-62CCD67*****"
}
Error codes
HTTP status code | Error code | Error message | Description |
---|---|---|---|
400 | IllegalParam | Illegal param | - |
403 | NoPermission | caller has no permission | You are not authorized to do this operation. |
500 | ServerError | ServerError | - |
For a list of error codes, visit the Service error codes.