post
/public_api/v1/quarantine/status
Retrieve the quarantine status for a specified files.
Required license: Cortex XDR Prevent, Cortex XDR Pro per Endpoint, or Cortex XDR Pro per GB
Body parameters
request_dataObjectrequired
filesArray
Array of endpoint IDs, filepaths, and file hash.
endpoint_idString
Endpoint ID
file_pathString
File hash. Must be a valid SHA256.
file_hashString
File path.
REQUEST BODY
{
"request_data": {
"files": [
{
"endpoint_id": "<endpoint ID>",
"file_path": "C:\\<file path>\\test_x64.msi",
"file_hash": "<hash value>"
}
]
}
}
CURL
curl -X 'POST'
-H
'Accept: application/json'
-H
'Content-Type: application/json'
'https://api-yourfqdn/public_api/v1/quarantine/status'
-d
''
Responses