Threat Analysis API

This section explains how to execute an object or browse a web address, and view task results by using the Kaspersky Threat Intelligence Portal API.

You can execute files separately in the Kaspersky Sandbox or in the Cloud Threat Attribution Engine, or in both services simultaneously. For web addresses, only execution in Kaspersky Sandbox is available.

Before working with the Kaspersky Threat Intelligence Portal API, you must accept the Terms and Conditions online in your browser at https://tip.kaspersky.com.

To work with Threat Analysis by using the Kaspersky Threat Intelligence Portal API:

Make sure that the application you use for working with Kaspersky Threat Intelligence Portal API uses the certificate you received from Kaspersky.
In the Authorization field of the HEADER section, specify the user name and password that you received from Kaspersky.
Specify the Basic authentication scheme.
Specify the required HTTP method.
Run your query by using one of the methods described in this section.

In this section

Get channel list

Obtaining a list of execution environments

Create a file upload and execution task (Sandbox)

Create a file upload and execution task (TAE)

Create a file upload and execution task (Sandbox and TAE)

Get list of uploaded and executed file tasks (Sandbox)

Get uploaded file task parameters (Sandbox)

Rescan an uploaded file task (Sandbox)

Rescan an uploaded file task (TAE)

Delete uploaded file task (Sandbox)

Get uploaded file task report (Sandbox)