class HybridAnalysis::Clients::Report

Public Instance Methods

certificate(id) click to toggle source

downloading certificate file from report (is available)

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId'

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 13
def certificate(id)
  _get("/report/#{id}/certificate") { |json| json }
end
dropped_file_raw(id:, hash: ) click to toggle source

retrieve single extracted/dropped binaries files for a report

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId' @param [String] hash SHA256 of dropped file

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 115
def dropped_file_raw(id:, hash: )
  _get("/report/#{id}/dropped-file-raw/#{hash}") { |json| json }
end
dropped_files(id) click to toggle source

retrieve all extracted/dropped binaries files for a report, as zip

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId'

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 126
def dropped_files(id)
  _get("/report/#{id}/dropped-files") { |json| json }
end
get(id:, type: ) click to toggle source

downloading report data (e.g. JSON, XML, PCAP)

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId' @param [String] type Type of requested report,

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 92
def get(id:, type: )
  _get("/report/#{id}/report/#{type}") { |json| json }
end
memory_dumps(id) click to toggle source

downloading process memory dump files as zip file (is available)

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId'

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 24
def memory_dumps(id)
  _get("/report/#{id}/memory-dumps") { |json| json }
end
pcap(id) click to toggle source

downloading network PCAP file from report (is available)

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId'

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 35
def pcap(id)
  _get("/report/#{id}/pcap") { |json| json }
end
sample(id) click to toggle source

downloading sample file

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId'

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 46
def sample(id)
  _get("/report/#{id}/sample") { |json| json }
end
screenshots(id) click to toggle source

retrieve an array of screenshots from a report in the Base64 format

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId'

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 103
def screenshots(id)
  _get("/report/#{id}/screenshots") { |json| json }
end
state(id) click to toggle source

return state of a submission

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId'

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 57
def state(id)
  _get("/report/#{id}/state") { |json| json }
end
summaries(*hashes) click to toggle source

return summary of multiple submissions (bulk query)

@param [Array<String>] hashes[] List of ids. Allowed format: jobId, md5:environmentId, sha1:environmentId or sha256:environmentId

@return [Array]

# File lib/hybridanalysis/clients/report.rb, line 79
def summaries(*hashes)
  params = { "hashes[]": hashes }.compact
  _post("/report/summary", params) { |json| json }
end
summary(id) click to toggle source

return summary of a submission

@param [String] id Id in one of format: 'jobId' or 'sha256:environmentId'

@return [Hash]

# File lib/hybridanalysis/clients/report.rb, line 68
def summary(id)
  _get("/report/#{id}/summary") { |json| json }
end