Cases
- POSTCount cases by status
- POSTGet case statistics by severity
- POSTGet case statistics by category class
- GETGet weekly case counts
- GETGet example case for demonstration
- GETGet all detections for a case
- GETGet all impact events for a case
- DELDelete a case
- PATCHUpdate case details
- POSTCalculate mean time to resolution
- POSTCalculate mean time to resolution
- POSTReingest all detections for a case
- GETGet related cases
- GETGet threat indicators for a case
- POSTSearch and list cases
- POSTSubmit feedback for AI case summary
- GETGet case by ID or SID
- POSTExport cases to CSV
Integration
- POSTSearch integrations
- POSTSearch integration logs
- POSTGet daily integration log counts
- PUTAdd API key integration
- PUTAdd other integration type
- PUTAdd basic authentication integration
- POSTGet OAuth installation URL
- GETGet all integration configurations
- GETGet integration by ID
- DELDelete integration
- PATCHUpdate integration
- GETGet integration configuration by type
- GETHandle OAuth redirect
- POSTVerify JWT token
- GETHandle authenticated OAuth redirect
- POSTInvoke integration action
- GETHandle OAuth authenticated redirect
- GETGet webhook secret
- GETGet AWS remote API key
- PUTRegister AWS integration remotely
- POSTCheck integration entitlements
- GETVerify integration webhook
- POSTHandle integration webhook
- GETGet ConnectWise PSA configuration
- PUTUpdate ConnectWise PSA configuration
- GETGet ConnectWise companies
- GETGet ConnectWise boards
- GETGet board ticket types
- GETGet board ticket statuses
- GETGet ConnectWise priorities
- GETGet Jira configuration
- PUTUpdate Jira configuration
- GETGet Jira Cloud instances
- GETGet Jira projects
- GETGet Jira issue types
Asset
Users
Team
- POSTGet team statistics report
- POSTSwitch to a different team
- GETGet current team information
- PUTCreate a new team
- POSTSearch service provider teams
- DELDelete the current team and all associated data
- PATCHUpdate team information
- GETGet team by any UUID
- GETGet all teams
- POSTSearch team members
- POSTSearch system logs
- PUTAdd operating team
- DELRemove operating team
- PUTInvite user to team
- PUTResend invitation to user
- GETGet platform logos
- PUTUpload platform logo
- DELDelete platform logo
- PATCHReset default chat ops for a field
- DELRemove external user from team
Directory
- GETGet directory user by ID
- PATCHUpdate directory user
- POSTSearch directory users
- PUTAdd users to chat ops onboarding
- DELRemove user from chat ops onboarding
- PUTAdd users to chat ops onboarding
- DELRemove users from chat ops onboarding
- PUTAdd tag to directory user
- DELRemove tag from directory user
- GETGet VIP user count and change
- PUTCreate directory automation
- POSTSearch directory automations
- DELDelete directory automation
- PATCHUpdate directory automation
- POSTRefresh directory user data
Detection
- POSTGet detection statistics by severity
- POSTGet detection statistics by category class
- POSTGet detection chat ops statistics
- POSTGet noise reduction statistics over time
- POSTCalculate mean time to detect
- POSTCalculate mean time to verdict
- POSTSearch and list detections
- GETGet example detection for demonstration
- PUTCreate a custom detection
- POSTList custom detections
- DELDelete a custom detection
- PATCHUpdate a custom detection
- POSTReingest a detection
- GETGet detection by ID or SID
- GETGet AQL questions for detection
- DELDelete a detection
- PATCHUpdate detection details
- POSTExport detections to CSV
Search endpoints
Copy
curl --request POST \
--url https://api.wirespeed.co/endpoint \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '
{
"size": 123,
"page": 123,
"filter": "name",
"search": "<string>",
"orderBy": "<string>",
"orderDir": "asc",
"hvaOnly": true,
"onlyContained": true,
"userId": "<string>",
"showUnmanagedEndpoints": true
}
'Copy
{
"data": [
{
"id": "<string>",
"displayName": "<string>",
"teamId": "<string>",
"hva": true,
"createdAt": "<string>",
"integrationId": {},
"contained": true,
"workstation": true,
"server": true,
"mobile": true,
"integrationPlatform": "<string>",
"edrSourceId": "<string>",
"mdmSourceId": "<string>",
"name": "<string>",
"hvaOverriddenByUser": true,
"privateIpAddress": "<string>",
"live": true,
"operatingSystem": "<string>",
"managed": true,
"publicIpAddress": "<string>",
"updatedAt": "<string>",
"raw": {}
}
],
"totalCount": 123
}Endpoint
Search endpoints
Search and filter endpoints with pagination support. Can filter by HVA status, IP, user, and managed status
POST
/
endpoint
Search endpoints
Copy
curl --request POST \
--url https://api.wirespeed.co/endpoint \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '
{
"size": 123,
"page": 123,
"filter": "name",
"search": "<string>",
"orderBy": "<string>",
"orderDir": "asc",
"hvaOnly": true,
"onlyContained": true,
"userId": "<string>",
"showUnmanagedEndpoints": true
}
'Copy
{
"data": [
{
"id": "<string>",
"displayName": "<string>",
"teamId": "<string>",
"hva": true,
"createdAt": "<string>",
"integrationId": {},
"contained": true,
"workstation": true,
"server": true,
"mobile": true,
"integrationPlatform": "<string>",
"edrSourceId": "<string>",
"mdmSourceId": "<string>",
"name": "<string>",
"hvaOverriddenByUser": true,
"privateIpAddress": "<string>",
"live": true,
"operatingSystem": "<string>",
"managed": true,
"publicIpAddress": "<string>",
"updatedAt": "<string>",
"raw": {}
}
],
"totalCount": 123
}Authorizations
Bearer authentication header of the form Bearer <token>, where <token> is your auth token.
Body
application/json
Field to filter HVA automation by
Available options:
name, ip Available options:
asc, desc Only return High Value Assets
Only return currently contained endpoints
Filter by specific user ID
Include unmanaged endpoints in results
⌘I