WARNING: This API endpoint is only available through licensing - contact us for details.
Allows to obtain all the profiling rules that apply to a specific device. This contains both regular expressions (surrounded by slashes) as well as exact string matches (no surrounding slashes).
Code | Description |
---|---|
401 | This request is unauthorized. Either your key is invalid or wasn't specified. |
403 | This request is forbidden. Your account may have been blocked. |
429 | The amount of requests per minute has been exceeded. All accounts (even the unlimited ones) are rate limited to 250 requests per minute unless agreed otherwise with Inverse. |
502 | No API backend was able to process the request. The system may be overloaded, in maintenance or experiencing an issue. Retrying shortly after should work. |
Param name | Description |
---|---|
key required |
Your API key (you can optionally use the Authorization header for improved security) Validations:
Metadata: Type: query parameter Example: "?key=68989f507420b6187c7e4fa32245db311efed505" |
mode optional |
Allows to specify a formatting mode to obtain the rules split by direct/inherited/derived. Validations:
Metadata: Type: query Example: "/api/v2/devices/1/profiling_rules?mode=split" |
In the default mode, it returns a JSON response with the following fields
Param name | Description |
---|---|
destination_hosts required |
The destination hosts rules for the device Validations:
|
dhcp_fingerprint required |
The DHCP fingerprint rules for the device Validations:
|
dhcp_vendor required |
The DHCP vendor rules for the device Validations:
|
hostname required |
The hostname rules for the device Validations:
|
ja3_data required |
The JA3 data rules for the device Validations:
|
ja3_fingerprints required |
The JA3 fingerprints rules for the device Validations:
|
mdns_services required |
The mDNS services rules for the device Validations:
|
oui required |
The OUI rules for the device Validations:
|
tcp_syn_ack_signatures required |
The TCP SYN-ACK rules for the device Validations:
|
tcp_syn_signatures required |
The TCP SYN rules for the device Validations:
|
upnp_server_strings required |
The UPnP server strings rules for the device Validations:
|
upnp_user_agents required |
The UPnP User-Agent rules for the device Validations:
|
user_agents required |
The HTTP User-Agent rules for the device Validations:
|
In the split mode, it returns a JSON response with the rules organized by direct/inherited/derived
Param name | Description |
---|---|
derived required |
The profiling rules for the device that are obtained via derivations Validations:
|
derived[destination_hosts] required |
The destination hosts rules for the device Validations:
|
derived[dhcp_fingerprint] required |
The DHCP fingerprint rules for the device Validations:
|
derived[dhcp_vendor] required |
The DHCP vendor rules for the device Validations:
|
derived[hostname] required |
The hostname rules for the device Validations:
|
derived[ja3_data] required |
The JA3 data rules for the device Validations:
|
derived[ja3_fingerprints] required |
The JA3 fingerprints rules for the device Validations:
|
derived[mdns_services] required |
The mDNS services rules for the device Validations:
|
derived[oui] required |
The OUI rules for the device Validations:
|
derived[tcp_syn_ack_signatures] required |
The TCP SYN-ACK rules for the device Validations:
|
derived[tcp_syn_signatures] required |
The TCP SYN rules for the device Validations:
|
derived[upnp_server_strings] required |
The UPnP server strings rules for the device Validations:
|
derived[upnp_user_agents] required |
The UPnP User-Agent rules for the device Validations:
|
derived[user_agents] required |
The HTTP User-Agent rules for the device Validations:
|
direct required |
The profiling rules for the device that are directly assigned to the device Validations:
|
direct[destination_hosts] required |
The destination hosts rules for the device Validations:
|
direct[dhcp_fingerprint] required |
The DHCP fingerprint rules for the device Validations:
|
direct[dhcp_vendor] required |
The DHCP vendor rules for the device Validations:
|
direct[hostname] required |
The hostname rules for the device Validations:
|
direct[ja3_data] required |
The JA3 data rules for the device Validations:
|
direct[ja3_fingerprints] required |
The JA3 fingerprints rules for the device Validations:
|
direct[mdns_services] required |
The mDNS services rules for the device Validations:
|
direct[oui] required |
The OUI rules for the device Validations:
|
direct[tcp_syn_ack_signatures] required |
The TCP SYN-ACK rules for the device Validations:
|
direct[tcp_syn_signatures] required |
The TCP SYN rules for the device Validations:
|
direct[upnp_server_strings] required |
The UPnP server strings rules for the device Validations:
|
direct[upnp_user_agents] required |
The UPnP User-Agent rules for the device Validations:
|
direct[user_agents] required |
The HTTP User-Agent rules for the device Validations:
|
parents required |
The profiling rules for the device that are inherited from the parents and virtual parents Validations:
|
parents[destination_hosts] required |
The destination hosts rules for the device Validations:
|
parents[dhcp_fingerprint] required |
The DHCP fingerprint rules for the device Validations:
|
parents[dhcp_vendor] required |
The DHCP vendor rules for the device Validations:
|
parents[hostname] required |
The hostname rules for the device Validations:
|
parents[ja3_data] required |
The JA3 data rules for the device Validations:
|
parents[ja3_fingerprints] required |
The JA3 fingerprints rules for the device Validations:
|
parents[mdns_services] required |
The mDNS services rules for the device Validations:
|
parents[oui] required |
The OUI rules for the device Validations:
|
parents[tcp_syn_ack_signatures] required |
The TCP SYN-ACK rules for the device Validations:
|
parents[tcp_syn_signatures] required |
The TCP SYN rules for the device Validations:
|
parents[upnp_server_strings] required |
The UPnP server strings rules for the device Validations:
|
parents[upnp_user_agents] required |
The UPnP User-Agent rules for the device Validations:
|
parents[user_agents] required |
The HTTP User-Agent rules for the device Validations:
|
Header name | Description |
---|---|
Authorization optional |
Authorization header containing your API key (Bearer standard). Example value for the header: `Bearer 68989f507420b6187c7e4fa32245db311efed505` |