Search Changed Files

Search for recently changed files.

External Documentation

To learn more, visit the Lacework documentation.

Parameters

Parameter	Description
End Time	Query for changed files until given timestamp.
Start Time	Query for changed files since given timestamp.

Example Output

{
    "paging": {
        "rows": 5000,
        "totalRows": 654455,
        "urls": {
            "nextPage": "https://YourLacework.lacework.net/api/v2/Activities/ChangedFiles/AbcdEfgh123..."
        }
    },
    "data": [
        {
            "startTime": "2021-09-10T23:00:00Z",
            "endTime": "2021-09-11T00:00:00Z",
            "mid": 12345,
            "filePath": "/usr/bin/curl",
            "filedataHash": "d055afd3h16f11460b3549885a9u8a40f1905df1f9d83cf16gbfa8a3157c29ac",
            "mtime": "1631306708492",
            "size": 210944,
            "threatInfo": "null"
        },
        {
            "startTime": "2021-09-10T23:00:00Z",
            "endTime": "2021-09-11T00:00:00Z",
            "mid": 12345,
            "filePath": "/bin/sleep",
            "filedataHash": "ada88f7fd24bcdfdde10294c76968a335c2414ea7d43c5e3829b65cb037e90a4",
            "mtime": "1631317667570",
            "size": 0,
            "threatInfo": "null"
        }
    ]
}

Workflow Library Example

Search Changed Files with Lacework and Send Results Via Email

Preview this Workflow on desktop

Search Changed Files

Parameters​

Example Output​

Workflow Library Example​

Parameters

Example Output

Workflow Library Example