Body
Required
-
agent_type
string List of agent types to retrieve. Defaults to
endpoint.Values are
endpoint,sentinel_one, orcrowdstrike. -
alert_ids
array[string(nonempty)] A list of alerts
ids.At least
1element. Minimum length of each is1. -
case_ids
array[string] Case IDs to be updated (cannot contain empty strings)
At least
1element. Minimum length of each is1. -
comment
string Optional comment
-
endpoint_ids
array[string] Required List of endpoint IDs (cannot contain empty strings)
At least
1element. Minimum length of each is1. -
parameters
object Required Optional parameters object
-
file
string(binary) Required The binary content of the file.
POST
/api/endpoint/action/upload
curl \
--request POST http://localhost:5622/api/endpoint/action/upload \
--header "Authorization: $API_KEY" \
--header "Content-Type: multipart/form-data; Elastic-Api-Version=2023-10-31"
Request example
{"file"=>"RWxhc3RpYw==", "parameters"=>{}, "endpoint_ids"=>["ed518850-681a-4d60-bb98-e22640cae2a8"]}
Response examples (200)
{
"data": {
"id": "9ff6aebc-2cb6-481e-8869-9b30036c9731",
"hosts": {
"ed518850-681a-4d60-bb98-e22640cae2a8": {
"name": "Host-5i6cuc8kdv"
}
},
"agents": [
"ed518850-681a-4d60-bb98-e22640cae2a8"
],
"status": "pending",
"command": "upload",
"outputs": {},
"agentType": "endpoint",
"createdBy": "elastic",
"isExpired": false,
"startedAt": "2023-07-03T15:07:22.837Z",
"agentState": {
"ed518850-681a-4d60-bb98-e22640cae2a8": {
"isCompleted": false,
"wasSuccessful": false
}
},
"parameters": {
"file_id": "10e4ce3d-4abb-4f93-a0cd-eaf63a489280",
"file_name": "fix-malware.sh",
"file_size": 69,
"file_sha256": "a0bed94220193ba4895c0aa5b4e7e293381d15765cb164ddf7be5cdd010ae42a"
},
"isCompleted": false,
"wasSuccessful": false
}
}