sandbox_submission

package

v2.4.2 Latest Latest Go to latest Published: Mar 11, 2024 License: MIT Imports: 8 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/SecurityGeekIO/zscaler-sdk-go

Links

Open Source Insights

Documentation ¶

Index ¶

type ScanResult
type Service
- func New(c *zia.Client) *Service
- func (service *Service) Discan(filename string, file io.Reader) (*ScanResult, error)
- func (service *Service) SubmitFile(filename string, file io.Reader, force string) (*ScanResult, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type ScanResult ¶

type ScanResult struct {
	Code              int    `json:"code,omitempty"`
	Message           string `json:"message,omitempty"`
	FileType          string `json:"fileType,omitempty"`
	Md5               string `json:"md5,omitempty"`
	SandboxSubmission string `json:"sandboxSubmission,omitempty"`
	VirusName         string `json:"virusName,omitempty"`
	VirusType         string `json:"virusType,omitempty"`
}

Information about the file inspection results

type Service ¶

type Service struct {
	Client *zia.Client
}

func New ¶

func New(c *zia.Client) *Service

func (*Service) Discan ¶

func (service *Service) Discan(filename string, file io.Reader) (*ScanResult, error)

Discan Submits raw or archive files (e.g., ZIP) to the Zscaler service for out-of-band file inspection to generate real-time verdicts for known and unknown files. It leverages capabilities such as Malware Prevention, Advanced Threat Prevention, Sandbox cloud effect, AI/ML-driven file analysis, and integrated third-party threat intelligence feeds to inspect files and classify them as benign or malicious instantaneously. All file types that are currently supported by the Malware Protection policy and Advanced Threat Protection policy are supported for inspection, and each file is limited to a size of 400 MB. Note: Dynamic file analysis is not included in out-of-band file inspection.

func (*Service) SubmitFile ¶

func (service *Service) SubmitFile(filename string, file io.Reader, force string) (*ScanResult, error)

Submit: Submits raw or archive files (e.g., ZIP) to Sandbox for analysis. You can submit up to 100 files per day and it supports all file types that are currently supported by Sandbox. To learn more, see About Sandbox. By default, files are scanned by Zscaler antivirus (AV) and submitted directly to the sandbox in order to obtain a verdict. However, if a verdict already exists for the file, you can use the 'force' parameter to make the sandbox to reanalyze it. You must have a Sandbox policy rule configured within the ZIA Admin Portal in order to analyze files that aren't present in the default policy rule. Ensure that you have explicitly added Sandbox policy rules that include the appropriate file types within your request. If not, an 'Unknown' message is shown in the response. To learn more, see Configuring the Sandbox Policy and Configuring the Default Sandbox Rule. After files are sent for analysis, you must use GET /sandbox/report/{md5Hash} in order to retrieve the verdict. You can get the Sandbox report 10 minutes after a file is sent for analysis. SubmitFile submits a file for scanning and returns the result of the scan.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL