logs-resource
utm-visualization-resource
utm-server-resource
utm-server-module-resource
utm-schedule-resource
utm-report-resource
utm-report-section-resource
utm-ports-resource
utm-network-scan-resource
- GETGet apiutm network scans
- PUTPut apiutm network scans
- PUTPut apiutm network scansupdatetype
- PUTPut apiutm network scansupdategroup
- POSTPost apiutm network scanssaveorupdatecustomasset
- GETGet apiutm network scans 1
- GETGet apiutm network scanssearchpropertyvalues
- GETGet apiutm network scanssearch by filters
- GETGet apiutm network scansgetnetworkscanreport
- GETGet apiutm network scanscount
- GETGet apiutm network scanscountnewassets
- GETGet apiutm network scanscan run command
- GETGet apiutm network scansagent os platform
- DELDelete apiutm network scansdeletecustomasset
utm-module-resource
utm-menu-authority-resource
utm-logstash-filter-group-resource
utm-integration-resource
utm-integration-conf-resource
utm-index-pattern-resource
utm-incident-resource
utm-incident-variable-resource
utm-incident-alert-resource
utm-incident-action-resource
utm-data-source-config-resource
utm-data-input-status-resource
utm-dashboard-resource
utm-dashboard-visualization-resource
utm-dashboard-authority-resource
utm-configuration-parameter-resource
utm-module-group-resource
utm-asset-metrics-resource
utm-asset-group-resource
utm-alert-tag-resource
utm-alert-response-rule-resource
utm-alert-log-resource
user-resource
utm-collector-resource
utm-module-group-configuration-resource
utm-menu-resource
utm-logstash-pipeline-resource
utm-logstash-input-resource
utm-logstash-filter-resource
log-analyzer-resource
index-policy-resource
utm-incident-action-command-resource
utm-images-resource
utm-compliance-standard-resource
utm-compliance-standard-section-resource
utm-compliance-report-config-resource
utm-compliance-report-schedule-resource
utm-alert-tag-rule-resource
agent-manager-group-resource
utm-incident-note-resource
utm-incident-job-resource
utm-getting-started-resource
utm-alert-resource
utm-soc-ai-resource
utm-stack-resource
elasticsearch-resource
- POSTPost apielasticsearchsearch
- POSTPost apielasticsearchsearchcsv
- POSTPost apielasticsearchpropertyvalues with count
- POSTPost apielasticsearchindexdelete index
- POSTPost apielasticsearchgeneric search
- GETGet apielasticsearchpropertyvalues
- GETGet apielasticsearchindexproperties
- GETGet apielasticsearchindexall
- GETGet apielasticsearchclusterstatus
account-resource
user-jwt-controller
audit-resource
utm-auditor-users-resource
utm-incident-history-resource
utm-configuration-section-resource
utm-client-resource
utm-asset-types-resource
utm-alert-response-rule-history-resource
utm-alert-response-rule-execution-resource
overview-resource
- GETGet apioverviewtop windows events
- GETGet apioverviewtop alerts
- GETGet apioverviewtop alerts by category
- GETGet apioverviewevents in time
- GETGet apioverviewcount events by type
- GETGet apioverviewcount alerts today and last week
- GETGet apioverviewcount alerts by status
- GETGet apioverviewcount alerts by severity
pdf-generator-resource
utm-federation-service-client-resource
custom-reports-resource
log-analyzer-resource
Post apilog analyzertop x values
POST
/
api
/
log-analyzer
/
top-x-values
/
{indexPattern}
/
{field}
/
{top}
{
"total": 123,
"top": [
{
"value": "<string>",
"count": 123,
"percent": 123
}
]
}Authorizations
Bearer authentication header of the form Bearer <token>, where <token> is your auth token.
Query Parameters
Body
application/json · object[]
Available options:
IS, IS_NOT, CONTAIN, CONTAIN_ONE_OF, DOES_NOT_CONTAIN_ONE_OF, DOES_NOT_CONTAIN, IS_ONE_OF, IS_NOT_ONE_OF, IS_ONE_OF_TERMS, EXIST, DOES_NOT_EXIST, IS_BETWEEN, IS_NOT_BETWEEN, IS_IN_FIELDS, IS_NOT_IN_FIELDS, ENDS_WITH, NOT_ENDS_WITH, START_WITH, NOT_START_WITH, IS_GREATER_THAN, IS_LESS_THAN_OR_EQUALS {
"total": 123,
"top": [
{
"value": "<string>",
"count": 123,
"percent": 123
}
]
}