GET
/
endpoint
/
{id}
Get endpoint by ID
curl --request GET \
  --url https://api.wirespeed.co/endpoint/{id} \
  --header 'Authorization: Bearer <token>'
{
  "id": "<string>",
  "displayName": "<string>",
  "teamId": "<string>",
  "edrSourceId": "<string>",
  "mdmSourceId": "<string>",
  "name": "<string>",
  "hva": true,
  "hvaOverriddenByUser": true,
  "createdAt": "<string>",
  "privateIpAddress": "<string>",
  "live": true,
  "operatingSystem": "<string>",
  "integrationId": {},
  "contained": true,
  "managed": true,
  "publicIPs": [
    {
      "ipv4": "<string>",
      "ipv6": "<string>",
      "metadata": {
        "ip": "<string>",
        "hostname": "<string>",
        "city": "<string>",
        "region": "<string>",
        "country": "<string>",
        "loc": "<string>",
        "postal": "<string>",
        "timezone": "<string>",
        "org": "<string>",
        "asn": {
          "asn": "<string>",
          "name": "<string>",
          "domain": "<string>",
          "route": "<string>",
          "type": "<string>"
        },
        "company": {
          "name": "<string>",
          "domain": "<string>",
          "type": "<string>"
        },
        "privacy": {
          "vpn": true,
          "proxy": true,
          "tor": true,
          "relay": true,
          "hosting": true,
          "service": "<string>"
        },
        "abuse": {
          "address": "<string>",
          "country": "<string>",
          "email": "<string>",
          "name": "<string>",
          "network": "<string>",
          "phone": "<string>",
          "ofac": true,
          "adversarial": true
        },
        "domains": {
          "ip": "<string>",
          "total": 123,
          "domains": [
            "<string>"
          ]
        },
        "ofac": true,
        "adversarial": true
      },
      "displayName": "<string>",
      "id": "<string>",
      "teamId": "<string>",
      "createdAt": "<string>",
      "updatedAt": "<string>",
      "locationId": "<string>",
      "metadataLastFetchedAt": "<string>",
      "known": true,
      "safe": true,
      "detectionSid": "<string>"
    }
  ],
  "workstation": true,
  "server": true,
  "mobile": true,
  "updatedAt": "<string>",
  "raw": {}
}

Authorizations

Authorization
string
header
required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Path Parameters

id
string
required

Unique identifier of the endpoint (UUID)

Response

id
string
required

Unique identifier for the endpoint

displayName
string
required

Human-readable display name for the endpoint

teamId
string
required

ID of the team that owns this endpoint

hva
boolean
required

Indicates if this is a High Value Asset

createdAt
string
required

Timestamp when the endpoint was created

integrationId
object
required

ID of the integration that discovered this endpoint

contained
boolean
required

Indicates if the endpoint has been contained/isolated

workstation
boolean
required

Indicates if this is a workstation device

server
boolean
required

Indicates if this is a server device

mobile
boolean
required

Indicates if this is a mobile device

edrSourceId
string

ID from the EDR (Endpoint Detection & Response) system

mdmSourceId
string

ID from the MDM (Mobile Device Management) system

name
string

Name of the endpoint

hvaOverriddenByUser
boolean

Indicates if the HVA status was manually overridden by a user

privateIpAddress
string

Private IP address of the endpoint

live
boolean

Indicates if the endpoint is currently active/online

operatingSystem
string

Operating system of the endpoint

managed
boolean

Indicates if the endpoint is managed by MDM/EDR

publicIPs
object[]

List of public IP addresses associated with this endpoint

updatedAt
string

Timestamp when the endpoint was last updated

raw
object

Raw data from the integration source