API Reference

List active threats

get
https://api.platform.censys.io/v3/threat-hunting/threats

Retrieve a list of active threats observed by Censys by aggregating threat IDs across hosts and web properties. Threats are active if their fingerprint has been identified on hosts or web properties by Censys scans. This information is also available on the Explore Threats page in the Platform web UI.

This endpoint is available to organizations that have access to the Adversary Investigation module.

Query Params
uuid
required

The ID of a Censys organization to associate the request with. See the Getting Started docs for more information.

string

Optional CenQL filter to constrain threats list

Headers
uuid

The ID of a Censys organization to associate the request with. See the Getting Started docs for more information. Note: The header parameter is supported for atypical use cases; we recommend always providing this field via the query parameter.

string
enum
Defaults to application/json

Generated from available response content types

Allowed:
Responses

Updated 10 days ago

Language
Credentials
Bearer
Response 
Click Try It! to start a request and see the response here! Or choose an example:
application/json
application/problem+json
Updated 10 days ago