Get Event

Get event by given ID.

Parameters

Parameter	Description
Event ID	The ID of the event.

Example Output

{
    "uuid": "39a6918f-33f2-ec9b-0fcc-42bb90f10a1f",
    "account_name": "generic-account",
    "plugin_device_type": "Cloud Infrastructure",
    "destination_canonical": "s3.amazonaws.com",
    "destination_name": "s3.amazonaws.com",
    "has_alarm": false,
    "request_user_agent": "s3.amazonaws.com",
    "packet_type": "log",
    "source_canonical": "s3.amazonaws.com",
    "event_name": "PutObject",
    "timestamp_occured": "1528817037000",
    "source_service_name": "s3.amazonaws.com",
    "event_type": "AwsApiCall",
    "app_name": "amazon-aws",
    "timestamp_received": "1528817107938",
    "destination_hostname": "s3.amazonaws.com",
    "source_infrastructure_name": "Amazon Global",
    "plugin": "Amazon AWS CloudTrail",
    "app_type": "amazon-aws",
    "authentication_type": "AWSService",
    "access_control_outcome": "Allow",
    "suppressed": "false",
    "plugin_device": "CloudTrail",
    "destination_infrastructure_type": "Cloud Service",
    "source_infrastructure_type": "Cloud Service",
    "destination_zone": "us-east-1",
    "needs_enrichment": true,
    "source_hostname": "s3.amazonaws.com",
    "app_id": "amazon-aws",
    "plugin_family": "Amazon",
    "plugin_version": "0.24",
    "destination_userid": "101720206348",
    "event_action": "Create",
    "destination_infrastructure_name": "Amazon Global",
    "source_name": "s3.amazonaws.com",
    "received_from": "s3.amazonaws.com",
    "event_description": "Action for uploading an object (PUT or POST).",
    "_links": {
        "self": {
            "href": "https://mysubdomain.aveng.us/api/2.0/events/39a6918f-33f2-ec9b-0fcc-42bb90f10a1f",
            "templated": false
        }
    }
}

Workflow Library Example

Get Event with Alienvault Usm and Send Results Via Email

Preview this Workflow on desktop