- November 2, 2020: ‘Alerts Only’ renamed to ‘Risk Monitoring.’
- June 22, 2020: ‘Sovereign Security Ratings’ renamed to ‘National Cybersecurity.’
⇤ Portfolio
⇤ Portfolio for National Cybersecurity
https://api.bitsighttech.com/ratings/v1/portfolio/filters
This returns infections, open ports, and vulnerabilities in your portfolio, and also statistics on infections and vulnerabilities that are present.
This path does not currently have the capability to return companies that are affected by a specific botnet or vulnerability.
Parameters
| Parameter | Description | Values |
|---|---|---|
exclude_alerts_onlyQuery |
Filter Risk Monitoring subscriptions. | [boolean, query] true = Exclude Risk Monitoring subscriptions. |
fieldsQuery |
Include specific organization fields. | [Array] Comma-delimited:
|
folderQuery |
Show only companies in the specified folder. | [String] Folder unique identifier [folder_guid]. See GET: Folder Details. |
formatQuery |
Format of response data. | [String] |
quarters_backQuery |
Get ratings from the last day of the quarter, set back by a selected number of quarters from today. | [Integer] The number of quarters. |
rating_dateQuery |
[String] The most recent rating date [YYYY-MM-DD]. |
|
show_event_evidenceQuery |
Filter companies with enhanced event evidence. | [Boolean] true = SHow only organizations that have enhanced event evidence enabled. |
show_ipsQuery |
Filter organizations with visible IP addresses. | [Boolean] true Show only organizations with visible IP addresses. |
tierQuery |
Show only companies that are tiered to the specified tiers. | [Array] Comma-separated tier unique identifiers [tier_guid] or untiered for companies that are not present in any tier. See GET: Tiers. |
Example Requests
To get all data, including vulnerabilities, botnets, and open ports affecting your portfolio:
curl https://api.bitsighttech.com/ratings/v1/portfolio/filters -u api_token:
Botnet infections of a single folder:
curl https://api.bitsighttech.com/ratings/v1/portfolio/filters?fields=infections&folder=folder_guid -u api_token:
Open ports and vulnerabilities (but not infections) of all companies in your portfolio:
curl https://api.bitsighttech.com/ratings/v1/portfolio/filters?fields=vulnerabilities,open_ports -u api_token:
Example Response
{
"data": {
"vulnerabilities": {
"3c87e467-7474-42da-8369-c4c2573851d8": ["Logjam", "POODLE"]
},
"botlist": {
"12345678-c3b0-a2d2-bb80-d5df44c3a2e5": ["Conficker", "Genieo", "RevMob", "SniperSpy"],
},
"open_ports": {
"12345678-c3b0-a2d2-bb80-d5df44c3a2e5": ["HTTP", "HTTPS"],
}
},
"initial_counts": {
"vulnerabilities": {
"POODLE": 2
},
"botlist": {
"SniperSpy": 1
},
"open_ports": {
"XMPP": 1
}
}
}
Response Attributes
| Field | Description | ||
|---|---|---|---|
dataObject |
Information about organizations in your portfolio. | ||
vulnerabilitiesObject |
Organizations with vulnerabilities. | ||
GUID [entity_guid]Array |
Vulnerabilities in this organization.
Example: |
||
botlistObject |
Organizations with botnet infections. | ||
GUID [entity_guid]Array |
Botnet infections in this organization. | ||
open_portsObject |
Organizations with open ports. | ||
GUID [entity_guid]Array |
Open ports in this organization. | ||
initial_countsObject |
Statistical information about vulnerabilities, botnet infections, and open ports across your portfolio. | ||
vulnerabilitiesObject |
The type and number of vulnerabilities across your portfolio. | ||
| Vulnerability Name Integer |
The name of the vulnerability and the number of organizations in your portfolio that are affected by it.
Example:
|
||
botlistObject |
The type and number of botnet infections across your portfolio. | ||
| Botnet Name Integer |
The name of the botnet and the number of organizations in your portfolio that are affected by it.
Example:
|
||
open_portsObject |
The type and number of open ports across your portfolio. | ||
| Port Name Integer |
The name of the port and the number of organizations in your portfolio that have the port open.
Example:
|
||