JUMP TOEclecticIQ Platform APIAggregationsGet an aggregation that counts entities per field values usagesgetGet an aggregation that counts uploaded-blobs per field values usagesgetCSVMappingsDelete a set of CSV Mappings referenced by IDs.deleteReturns the list of CSV Mappings on the platform.getCreate a CSV Mapping.postCreate (or modify if the name already exists) one or more csv-mappings.putGet Entity supported fields in a CSV Mapping.getDelete a CSV Mapping by ID.deleteGet a CSV Mapping by ID.getUpdate a CSV Mapping.patchContent BlocksGet a list of content blocks.getGet a content block by ID.getDatasetsDelete a set of datasets referenced by IDs.deleteGet a list of datasets.getCreate a dataset.postCreate (or update if the name already exists) one or more datasets.putBulk delete entities from a dataset.putAdd entities to a dataset by query.postDelete a dataset.deleteGet a dataset by ID.getUpdate a dataset.patchDelete a dataset in a background task.deleteDiscovery RulesDelete a set of discovery_rules referenced by IDs.deleteGet a list of discovery rules.getCreate a new discovery rule.postCreate (or update if the name already exists) one or more discovery rules.putDelete an discovery rule by ID.deleteGet an discovery rule by ID.getEdit an discovery rule by ID.patchEnrichersGet a list of enrichers.getCreate a new enricher.postCreate (or modify if the name already exists) one or more enrichers.putEnriches all given extracts and/or entities with a list of enrichers.postGet an enricher by ID.getModify an enricher.patchEnrichment RulesDelete a set of enrichment rules referenced by IDs.deleteGet a list of enrichment rules.getCreate a new enrichment rule.postCreate (or update if the name already exists) one or more enrichment rules.putDelete an enrichment rule by ID.deleteGet an enrichment rule by ID.getEdit an enrichment rule by ID.patchEntitiesDelete a set of entities referenced by internal or STIX IDs.deleteGet a list of entities.getCreate an entity.postCreate (or update/create a new version if the STIX ID already exists) one or more entities.putDelete the entities that match the specified search query.postEnrich entities by search querypostExport the entities that match the specified search query.postInvoke a relational search query.postApplies a change to the entities that match the specified search query.postDelete an entity by ID.deleteGet an entity by ID.getUpdate an entity by ID.patchEntity AttachmentsGet content of an entity attachment by ID.getEntity RulesDelete a set of entity rules referenced by IDs.deleteGet a list of entity rules.getCreate a new entity rule.postCreate (or update if the name already exists) one or more entity rules.putDelete an entity rule by ID.deleteGet an entity rule by ID.getEdit an entity rule by ID.patchExport BlocksGet content of an export block by ID.getFilesDelete a set of entity attachments referenced by IDs.deleteDelete a set of files referenced by IDs.deleteGet a list of entity attachments.getGet a list of workspace files.getCreate a new entity attachment.postCreate a new file in a workspace.postDelete an entity attachment by ID.deleteDelete a workspace file by ID.deleteGet an entity attachment by ID.getGet a workspace file by ID.getGet content of a file by ID.getDownload an entity attachment by ID.getDownload a file by ID.getGroupsDelete a set of groups referenced by IDs.deleteReturns a list of the groups on the platform.getCreate a group.postCreate (or modify if the name already exists) one or more groups.putDelete a group by ID.deleteGet a group by ID.getUpdate a group.patchIncoming feedsDelete a set of incoming feeds referenced by IDs.deleteGet a list of incoming feeds.getConfigure a new incoming feed.postCreate (or update if the name already exists) an incoming feed.putDelete an incoming feed configuration by ID.deleteGet an incoming feed by ID.getEdit an incoming feed configuration by ID.patchKnowledge PacksReturns a list of knowledge packs.getCreate a new knowledge pack.postCreate (or modify if already exists) one or more knowledge packs.putDelete a knowledge pack as publisher.deleteGet a Knowledge Pack by ID.getUpdate a knowledge pack.patchMITRE AttacksDelete a set of Attack Analysis referenced by IDs.deleteGet a list of Attack Analyses.getCreate an Attack Analysis.postDelete a dataset from the scope of an Attack Analysis.deleteAdd a dataset to the scope of an Attack Analysis.putBulk delete entities from the scope of an Attack Analysis.deleteBulk add entities to the scope of an Attack Analysis.putDelete an Attack Analysis by ID.deleteGet an Attack Analysis by ID.getUpdate an Attack Analysis by ID.patchGet a list of Attack Analysis Annotations.getCreate an Attack Analysis Annotation.postCreate (or update) one or more Attack Analysis Annotations.putDelete an Attack Analysis Annotation by ID.deleteGet an Attack Analysis Annotation by ID.getUpdate an Attack Analysis Annotation by ID.patchGet a list of MITRE Attack Defense Relationships.getGet a list of MITRE Attack Defenses.getGet a list of MITRE Attacks.getGet MITRE Attack by ID.getObservable RulesDelete a set of observable rules referenced by IDs.deleteGet a list of observable rules.getCreate a new observable rule.postCreate (or update if the name already exists) one or more observable rules.putDelete an observable rule by ID.deleteGet an observable rule by ID.getEdit an observable rule by ID.patchObservablesDelete a set of observables referenced by IDs.deleteGet a list of observables.getCreate a new observable.postCreate (or update if the (`type`, `value`) pair already exists) one or more observables.putDelete the extracts that match the specified search query. Only extracts matching the query are deleted.postEnrich the extracts that match the specified search query.postExport the extracts that match the specified search query.postUpdate risk score of extracts that match the specified search query and create score update records.postUpdate the extracts that match the specified search query.postDelete an observable by ID.deleteGet an observable by ID.getEdit an observable by ID.patchGet a history of risk score changes for an observable.getCreate an observable risk score update.postOutgoing feedsDelete a set of outgoing feeds referenced by IDs.deleteGet a list of outgoing feeds.getConfigure a new outgoing feed.postCreate (or update if the name already exists) one or more outgoing feeds.putDelete an outgoing feed configuration by ID.deleteGet an outgoing feed by ID.getEdit an outgoing feed configuration by ID.patchPermissionsReturns a list of permissions on the platform.getGet a user permission by ID.getRelationGeneric endpoint for bulk deleting relations based on "main object" type and id and related objects type and ids (provided in request body).deleteGeneric endpoint for bulk adding relations based on "main object" type and id and related objects type and ids (provided in request body).putGeneric endpoint for deleting a relation based on "main object" type and id and related object type and id.deleteGeneric endpoint for adding a relation based on "main object" type and id and related object type and id.putRelationshipsDelete relationships based on source and/or target.deleteGet a list of relationships.getCreate a relationship.postCreate (or update) one or more relationships.putDelete a relationship by ID.deleteGet a relationship by ID.getUpdate a relationship by ID.patchRolesDelete a set of roles referenced by IDs.deleteReturns a list of roles on the platform.getCreate a role.postCreate (or modify if the name already exists) one or more roles.putDelete a role by ID.deleteGet a role by ID.getUpdate a role.patchSourcesGet a list of all sources.getGet an source by ID.getTasksGet a list of tasks.getGet a list of task runs.getRun a task.postGet a task run group by ID.getStop a task execution by task run ID.deleteGet a task run by ID.getGet a task by ID.getEdit a task by ID.patchTaxonomiesDelete a set of taxonomies nodes referenced by IDs.deleteGet a list of taxonomies.getCreate taxonomy nodes by specifying a single node or a node path.postCreate taxonomy nodes by specifying a single node or a node path.putDelete a taxonomy node or a sub-tree.deleteGet a taxonomy node by ID.getUpdate a taxonomy node.patchTicket CommentsGet a ticket comment by ID.getCreate a comment on a ticket.postTicketsDelete a set of tickets referenced by IDs.deleteGet a list of all tickets.getCreate a ticket.postDelete a ticket by ID.deleteGet a ticket by ID.getUpdate a ticket by ID.patchUploaded BlobsGet a list of uploaded blobs.getUpload a new blob.postDelete blobs referenced by IDs.postGet an uploaded blob by ID.getUsersReturns a list of users on the platform.getCreate a user.postCreate (or update if the name already exists) one or more users.putGet a user by ID.getUpdate a user.patchWorkspace CommentsDelete a set of workspace comments referenced by IDs.deleteDelete a workspace comment by ID.deleteGet a workspace comment by ID.getModify a workspace comment by ID.patchGet the content of the comments of a workspace.getCreate a new workspace comment.postWorkspacesDelete a set of workspaces referenced by IDs.deleteGet a list of workspaces.getCreate a new workspace.postCreate (or update if the name already exists) one or more workspaces.putDelete a workspace by ID.deleteGet a workspace by ID.getEdit a workspace by ID.patchDashboardsDelete a set of dashboards referenced by IDs.deleteGet a list of Dashboards.getCreate a dashboard.postDelete a dashboard.deleteGet a dashboard by ID.getUpdate a dashboard.patchGet a list of Overview Dashboards.getCreate overview dashboard.postDelete an overview dashboard.deleteUpdate Overview dashboard.patchDelete a set of widgets referenced by IDs.deleteGet a list of widgets.getCreate a widget.postDelete a widget.deleteGet a widget by ID.getUpdate a widget.patchGet the widget dark thumbnail as binary.getGet the widget light thumbnail as binary.getMalware SandboxGet a list of Detonation TaskgetGet a Detonator Task by an IDgetUpdate the detonation Task by an IDpatchDelete a set of Sandbox Detonations referenced by IDsdeleteGet a list of Sandbox DetonationsgetCreate Sandbox DetonationpostDelete a Sandbox DetonationsdeleteGet a Sandbox Detonation details by an IDgetGet the Detonation Result by sandbox detonation IDgetIntelligence Requirement MatchesDelete a set of matches between an entity and an intelligence requirement referenced by IDs.deleteGet a list of intelligence requirement matches to an entity.getCreate a new match object between an enity and an intelligence requirement.postCreate (or update if the (entity_id, intel_requirement_id) combination already exists) one or more Intelligence Requirement Match objects.putDelete a match between an entity and an intelligence requirement by ID.deleteGet an intelligence requirement match by ID.getObservable Risk ScoreGet a list of risk score decay settings.getCreate or update (if a setting for such observable type already exists) one or more risk score decay settings.putGet a list of risk score policies.getCreate a risk score policy.postCreate (or update if the name already exists) one or more policies.putDelete a risk score policy by ID.deleteGet a risk score policy by IDgetEdit a risk score policy by ID.patchGet a list of parameters for a policy.getGet a policy parameter by ID.getEdit a policy parameter by ID.patchDelete a set of parameter values by ID.deleteGet a parameter values list.getCreate a new parameter value.postCreate or update one or more parameter values.putDelete a parameter value by ID.deleteGet a parameter value by ID.getEdit a parameter value by ID.patchPreview a result of a risk score policy by ID run for a batch of up to 100 of extracts matching provided query.postIntelligence RequirementsDelete a set of intelligence requirements referenced by IDs.deleteGet a list of intelligence requirements.getCreate a new intelligence requirement.postCreate (or update if the name already exists) one or more intelligence requirements.putDelete an intelligence requirement by ID.deleteGet an intelligence requirement by ID.getEdit an Intelligence requirement by ID.patchPowered by Create a widget.post https://ic-playground.eclecticiq.com/api/v2/widgets
