AttackForge Enterprise

DownloadVulnerabilityEvidence

This method can be used for the following: Download a vulnerability evidence file for a project user has access to.

Parameters

The following URL, Headers and Parameters are required for requests to this API endpoint. Where a parameter is optional, it will be indicated. Otherwise treat all parameters as mandatory.

Headers

GET /api/ss/vulnerability/:id/evidence/:file HTTP/1.1
Host: demo.attackforge.com
X-SSAPI-KEY: APIKey
Content-Type: application/json
Connection: close

Query

id (string)

Identifier for the vulnerability.

Example:

GET /api/ss/vulnerability/5f5ebf3b31ff1d08c1e5fa91/evidence/:file HTTP/1.1

file (string)

Storage name for the evidence file.

Example:

GET /api/ss/vulnerability/:id/evidence/o23kuixb8c34fm4gbehndpwzuemegvufjzc7jfkh5xlrmlswl4smfyslj65vuupcv5cc21hizhiiysa1bh5ibiwio17vzpzr63n6xtfh9yvzso4ete6qyh55ez5o6in1 HTTP/1.1

Example

The following example is a cURL request to get an evidence file for a vulnerability on a project.

Request

Include API Token instead of stars in 'X-SSAPI-KEY: ***************************************' parameter.

curl -X GET 'https://demo.attackforge.com/api/ss/vulnerability/5f5ebf3b31ff1d08c1e5fa91/evidence/o23kuixb8c34fm4gbehndpwzuemegvufjzc7jfkh5xlrmlswl4smfyslj65vuupcv5cc21hizhiiysa1bh5ibiwio17vzpzr63n6xtfh9yvzso4ete6qyh55ez5o6in1' -H 'Host: demo.attackforge.com' -H 'X-SSAPI-KEY: ***************************************' -H 'Content-Type: application/json' -H 'Connection: close'

Response

Response contains binary data. If using curl, use option --output to save the binary response as a file e.g.

curl <as above> --output image.png