Security Command Center API provides access to temporal views of assets and findings within an organization.
- REST Resource: v1p1beta1.folders.assets
- REST Resource: v1p1beta1.folders.sources
- REST Resource: v1p1beta1.folders.sources.findings
- REST Resource: v1p1beta1.organizations
- REST Resource: v1p1beta1.organizations.assets
- REST Resource: v1p1beta1.organizations.notificationConfigs
- REST Resource: v1p1beta1.organizations.operations
- REST Resource: v1p1beta1.organizations.sources
- REST Resource: v1p1beta1.organizations.sources.findings
- REST Resource: v1p1beta1.projects.assets
- REST Resource: v1p1beta1.projects.sources
- REST Resource: v1p1beta1.projects.sources.findings
- REST Resource: v1beta1.organizations
- REST Resource: v1beta1.organizations.assets
- REST Resource: v1beta1.organizations.operations
- REST Resource: v1beta1.organizations.sources
- REST Resource: v1beta1.organizations.sources.findings
- REST Resource: v1.folders.assets
- REST Resource: v1.folders.bigQueryExports
- REST Resource: v1.folders.findings
- REST Resource: v1.folders.locations.muteConfigs
- REST Resource: v1.folders.muteConfigs
- REST Resource: v1.folders.notificationConfigs
- REST Resource: v1.folders.securityHealthAnalyticsSettings.customModules
- REST Resource: v1.folders.securityHealthAnalyticsSettings.effectiveCustomModules
- REST Resource: v1.folders.sources
- REST Resource: v1.folders.sources.findings
- REST Resource: v1.folders.sources.findings.externalSystems
- REST Resource: v1.organizations
- REST Resource: v1.organizations.assets
- REST Resource: v1.organizations.bigQueryExports
- REST Resource: v1.organizations.eventThreatDetectionSettings
- REST Resource: v1.organizations.eventThreatDetectionSettings.customModules
- REST Resource: v1.organizations.findings
- REST Resource: v1.organizations.locations.muteConfigs
- REST Resource: v1.organizations.muteConfigs
- REST Resource: v1.organizations.notificationConfigs
- REST Resource: v1.organizations.operations
- REST Resource: v1.organizations.resourceValueConfigs
- REST Resource: v1.organizations.securityHealthAnalyticsSettings.customModules
- REST Resource: v1.organizations.securityHealthAnalyticsSettings.effectiveCustomModules
- REST Resource: v1.organizations.simulations
- REST Resource: v1.organizations.simulations.attackExposureResults.attackPaths
- REST Resource: v1.organizations.simulations.attackExposureResults.valuedResources
- REST Resource: v1.organizations.simulations.attackPaths
- REST Resource: v1.organizations.simulations.valuedResources
- REST Resource: v1.organizations.simulations.valuedResources.attackPaths
- REST Resource: v1.organizations.sources
- REST Resource: v1.organizations.sources.findings
- REST Resource: v1.organizations.sources.findings.externalSystems
- REST Resource: v1.projects.assets
- REST Resource: v1.projects.bigQueryExports
- REST Resource: v1.projects.findings
- REST Resource: v1.projects.locations.muteConfigs
- REST Resource: v1.projects.muteConfigs
- REST Resource: v1.projects.notificationConfigs
- REST Resource: v1.projects.securityHealthAnalyticsSettings.customModules
- REST Resource: v1.projects.securityHealthAnalyticsSettings.effectiveCustomModules
- REST Resource: v1.projects.sources
- REST Resource: v1.projects.sources.findings
- REST Resource: v1.projects.sources.findings.externalSystems
Service: securitycenter.googleapis.com
To call this service, we recommend that you use the Google-provided client libraries. If your application needs to use your own libraries to call this service, use the following information when you make the API requests.
Discovery document
A Discovery Document is a machine-readable specification for describing and consuming REST APIs. It is used to build client libraries, IDE plugins, and other tools that interact with Google APIs. One service may provide multiple discovery documents. This service provides the following discovery documents:
Service endpoint
A service endpoint is a base URL that specifies the network address of an API service. One service might have multiple service endpoints. This service has the following service endpoint and all URIs below are relative to this service endpoint:
https://securitycenter.googleapis.com
REST Resource: v1p1beta1.folders.assets
Methods | |
---|---|
group |
POST /v1p1beta1/{parent=folders/*}/assets:group Filters an organization's assets and groups them by their specified properties. |
list |
GET /v1p1beta1/{parent=folders/*}/assets Lists an organization's assets. |
updateSecurityMarks |
PATCH /v1p1beta1/{securityMarks.name=folders/*/assets/*/securityMarks} Updates security marks. |
REST Resource: v1p1beta1.folders.sources
Methods | |
---|---|
list |
GET /v1p1beta1/{parent=folders/*}/sources Lists all sources belonging to an organization. |
REST Resource: v1p1beta1.folders.sources.findings
Methods | |
---|---|
group |
POST /v1p1beta1/{parent=folders/*/sources/*}/findings:group Filters an organization or source's findings and groups them by their specified properties. |
list |
GET /v1p1beta1/{parent=folders/*/sources/*}/findings Lists an organization or source's findings. |
patch |
PATCH /v1p1beta1/{finding.name=folders/*/sources/*/findings/*} Creates or updates a finding. |
setState |
POST /v1p1beta1/{name=folders/*/sources/*/findings/*}:setState Updates the state of a finding. |
updateSecurityMarks |
PATCH /v1p1beta1/{securityMarks.name=folders/*/sources/*/findings/*/securityMarks} Updates security marks. |
REST Resource: v1p1beta1.organizations
Methods | |
---|---|
getOrganizationSettings |
GET /v1p1beta1/{name=organizations/*/organizationSettings} Gets the settings for an organization. |
updateOrganizationSettings |
PATCH /v1p1beta1/{organizationSettings.name=organizations/*/organizationSettings} Updates an organization's settings. |
REST Resource: v1p1beta1.organizations.assets
Methods | |
---|---|
group |
POST /v1p1beta1/{parent=organizations/*}/assets:group Filters an organization's assets and groups them by their specified properties. |
list |
GET /v1p1beta1/{parent=organizations/*}/assets Lists an organization's assets. |
runDiscovery |
POST /v1p1beta1/{parent=organizations/*}/assets:runDiscovery Runs asset discovery. |
updateSecurityMarks |
PATCH /v1p1beta1/{securityMarks.name=organizations/*/assets/*/securityMarks} Updates security marks. |
REST Resource: v1p1beta1.organizations.notificationConfigs
Methods | |
---|---|
create |
POST /v1p1beta1/{parent=organizations/*}/notificationConfigs Creates a notification config. |
delete |
DELETE /v1p1beta1/{name=organizations/*/notificationConfigs/*} Deletes a notification config. |
get |
GET /v1p1beta1/{name=organizations/*/notificationConfigs/*} Gets a notification config. |
list |
GET /v1p1beta1/{parent=organizations/*}/notificationConfigs Lists notification configs. |
patch |
PATCH /v1p1beta1/{notificationConfig.name=organizations/*/notificationConfigs/*} Updates a notification config. |
REST Resource: v1p1beta1.organizations.operations
Methods | |
---|---|
cancel |
POST /v1p1beta1/{name=organizations/*/operations/*}:cancel Starts asynchronous cancellation on a long-running operation. |
delete |
DELETE /v1p1beta1/{name=organizations/*/operations/*} Deletes a long-running operation. |
get |
GET /v1p1beta1/{name=organizations/*/operations/*} Gets the latest state of a long-running operation. |
list |
GET /v1p1beta1/{name=organizations/*/operations} Lists operations that match the specified filter in the request. |
REST Resource: v1p1beta1.organizations.sources
Methods | |
---|---|
create |
POST /v1p1beta1/{parent=organizations/*}/sources Creates a source. |
get |
GET /v1p1beta1/{name=organizations/*/sources/*} Gets a source. |
getIamPolicy |
POST /v1p1beta1/{resource=organizations/*/sources/*}:getIamPolicy Gets the access control policy on the specified Source. |
list |
GET /v1p1beta1/{parent=organizations/*}/sources Lists all sources belonging to an organization. |
patch |
PATCH /v1p1beta1/{source.name=organizations/*/sources/*} Updates a source. |
setIamPolicy |
POST /v1p1beta1/{resource=organizations/*/sources/*}:setIamPolicy Sets the access control policy on the specified Source. |
testIamPermissions |
POST /v1p1beta1/{resource=organizations/*/sources/*}:testIamPermissions Returns the permissions that a caller has on the specified source. |
REST Resource: v1p1beta1.organizations.sources.findings
Methods | |
---|---|
create |
POST /v1p1beta1/{parent=organizations/*/sources/*}/findings Creates a finding. |
group |
POST /v1p1beta1/{parent=organizations/*/sources/*}/findings:group Filters an organization or source's findings and groups them by their specified properties. |
list |
GET /v1p1beta1/{parent=organizations/*/sources/*}/findings Lists an organization or source's findings. |
patch |
PATCH /v1p1beta1/{finding.name=organizations/*/sources/*/findings/*} Creates or updates a finding. |
setState |
POST /v1p1beta1/{name=organizations/*/sources/*/findings/*}:setState Updates the state of a finding. |
updateSecurityMarks |
PATCH /v1p1beta1/{securityMarks.name=organizations/*/sources/*/findings/*/securityMarks} Updates security marks. |
REST Resource: v1p1beta1.projects.assets
Methods | |
---|---|
group |
POST /v1p1beta1/{parent=projects/*}/assets:group Filters an organization's assets and groups them by their specified properties. |
list |
GET /v1p1beta1/{parent=projects/*}/assets Lists an organization's assets. |
updateSecurityMarks |
PATCH /v1p1beta1/{securityMarks.name=projects/*/assets/*/securityMarks} Updates security marks. |
REST Resource: v1p1beta1.projects.sources
Methods | |
---|---|
list |
GET /v1p1beta1/{parent=projects/*}/sources Lists all sources belonging to an organization. |
REST Resource: v1p1beta1.projects.sources.findings
Methods | |
---|---|
group |
POST /v1p1beta1/{parent=projects/*/sources/*}/findings:group Filters an organization or source's findings and groups them by their specified properties. |
list |
GET /v1p1beta1/{parent=projects/*/sources/*}/findings Lists an organization or source's findings. |
patch |
PATCH /v1p1beta1/{finding.name=projects/*/sources/*/findings/*} Creates or updates a finding. |
setState |
POST /v1p1beta1/{name=projects/*/sources/*/findings/*}:setState Updates the state of a finding. |
updateSecurityMarks |
PATCH /v1p1beta1/{securityMarks.name=projects/*/sources/*/findings/*/securityMarks} Updates security marks. |
REST Resource: v1beta1.organizations
Methods | |
---|---|
getOrganizationSettings |
GET /v1beta1/{name=organizations/*/organizationSettings} Gets the settings for an organization. |
updateOrganizationSettings |
PATCH /v1beta1/{organizationSettings.name=organizations/*/organizationSettings} Updates an organization's settings. |
REST Resource: v1beta1.organizations.assets
Methods | |
---|---|
group |
POST /v1beta1/{parent=organizations/*}/assets:group Filters an organization's assets and groups them by their specified properties. |
list |
GET /v1beta1/{parent=organizations/*}/assets Lists an organization's assets. |
runDiscovery |
POST /v1beta1/{parent=organizations/*}/assets:runDiscovery Runs asset discovery. |
updateSecurityMarks |
PATCH /v1beta1/{securityMarks.name=organizations/*/assets/*/securityMarks} Updates security marks. |
REST Resource: v1beta1.organizations.operations
Methods | |
---|---|
cancel |
POST /v1beta1/{name=organizations/*/operations/*}:cancel Starts asynchronous cancellation on a long-running operation. |
delete |
DELETE /v1beta1/{name=organizations/*/operations/*} Deletes a long-running operation. |
get |
GET /v1beta1/{name=organizations/*/operations/*} Gets the latest state of a long-running operation. |
list |
GET /v1beta1/{name=organizations/*/operations} Lists operations that match the specified filter in the request. |
REST Resource: v1beta1.organizations.sources
Methods | |
---|---|
create |
POST /v1beta1/{parent=organizations/*}/sources Creates a source. |
get |
GET /v1beta1/{name=organizations/*/sources/*} Gets a source. |
getIamPolicy |
POST /v1beta1/{resource=organizations/*/sources/*}:getIamPolicy Gets the access control policy on the specified Source. |
list |
GET /v1beta1/{parent=organizations/*}/sources Lists all sources belonging to an organization. |
patch |
PATCH /v1beta1/{source.name=organizations/*/sources/*} Updates a source. |
setIamPolicy |
POST /v1beta1/{resource=organizations/*/sources/*}:setIamPolicy Sets the access control policy on the specified Source. |
testIamPermissions |
POST /v1beta1/{resource=organizations/*/sources/*}:testIamPermissions Returns the permissions that a caller has on the specified source. |
REST Resource: v1beta1.organizations.sources.findings
Methods | |
---|---|
create |
POST /v1beta1/{parent=organizations/*/sources/*}/findings Creates a finding. |
group |
POST /v1beta1/{parent=organizations/*/sources/*}/findings:group Filters an organization or source's findings and groups them by their specified properties. |
list |
GET /v1beta1/{parent=organizations/*/sources/*}/findings Lists an organization or source's findings. |
patch |
PATCH /v1beta1/{finding.name=organizations/*/sources/*/findings/*} Creates or updates a finding. |
setState |
POST /v1beta1/{name=organizations/*/sources/*/findings/*}:setState Updates the state of a finding. |
updateSecurityMarks |
PATCH /v1beta1/{securityMarks.name=organizations/*/sources/*/findings/*/securityMarks} Updates security marks. |
REST Resource: v1.folders.assets
Methods | |
---|---|
group |
POST /v1/{parent=folders/*}/assets:group Filters an organization's assets and groups them by their specified properties. |
list |
GET /v1/{parent=folders/*}/assets Lists an organization's assets. |
updateSecurityMarks |
PATCH /v1/{securityMarks.name=folders/*/assets/*/securityMarks} Updates security marks. |
REST Resource: v1.folders.bigQueryExports
Methods | |
---|---|
create |
POST /v1/{parent=folders/*}/bigQueryExports Creates a BigQuery export. |
delete |
DELETE /v1/{name=folders/*/bigQueryExports/*} Deletes an existing BigQuery export. |
get |
GET /v1/{name=folders/*/bigQueryExports/*} Gets a BigQuery export. |
list |
GET /v1/{parent=folders/*}/bigQueryExports Lists BigQuery exports. |
patch |
PATCH /v1/{bigQueryExport.name=folders/*/bigQueryExports/*} Updates a BigQuery export. |
REST Resource: v1.folders.findings
Methods | |
---|---|
bulkMute |
POST /v1/{parent=folders/*}/findings:bulkMute Kicks off an LRO to bulk mute findings for a parent based on a filter. |
REST Resource: v1.folders.locations.muteConfigs
Methods | |
---|---|
delete |
DELETE /v1/{name=folders/*/locations/*/muteConfigs/*} Deletes an existing mute config. |
get |
GET /v1/{name=folders/*/locations/*/muteConfigs/*} Gets a mute config. |
patch |
PATCH /v1/{muteConfig.name=folders/*/locations/*/muteConfigs/*} Updates a mute config. |
REST Resource: v1.folders.muteConfigs
Methods | |
---|---|
create |
POST /v1/{parent=folders/*}/muteConfigs Creates a mute config. |
delete |
DELETE /v1/{name=folders/*/muteConfigs/*} Deletes an existing mute config. |
get |
GET /v1/{name=folders/*/muteConfigs/*} Gets a mute config. |
list |
GET /v1/{parent=folders/*}/muteConfigs Lists mute configs. |
patch |
PATCH /v1/{muteConfig.name=folders/*/muteConfigs/*} Updates a mute config. |
REST Resource: v1.folders.notificationConfigs
Methods | |
---|---|
create |
POST /v1/{parent=folders/*}/notificationConfigs Creates a notification config. |
delete |
DELETE /v1/{name=folders/*/notificationConfigs/*} Deletes a notification config. |
get |
GET /v1/{name=folders/*/notificationConfigs/*} Gets a notification config. |
list |
GET /v1/{parent=folders/*}/notificationConfigs Lists notification configs. |
patch |
PATCH /v1/{notificationConfig.name=folders/*/notificationConfigs/*} Updates a notification config. |
REST Resource: v1.folders.securityHealthAnalyticsSettings.customModules
Methods | |
---|---|
create |
POST /v1/{parent=folders/*/securityHealthAnalyticsSettings}/customModules Creates a resident SecurityHealthAnalyticsCustomModule at the scope of the given CRM parent, and also creates inherited SecurityHealthAnalyticsCustomModules for all CRM descendants of the given parent. |
delete |
DELETE /v1/{name=folders/*/securityHealthAnalyticsSettings/customModules/*} Deletes the specified SecurityHealthAnalyticsCustomModule and all of its descendants in the CRM hierarchy. |
get |
GET /v1/{name=folders/*/securityHealthAnalyticsSettings/customModules/*} Retrieves a SecurityHealthAnalyticsCustomModule. |
list |
GET /v1/{parent=folders/*/securityHealthAnalyticsSettings}/customModules Returns a list of all SecurityHealthAnalyticsCustomModules for the given parent. |
listDescendant |
GET /v1/{parent=folders/*/securityHealthAnalyticsSettings}/customModules:listDescendant Returns a list of all resident SecurityHealthAnalyticsCustomModules under the given CRM parent and all of the parent’s CRM descendants. |
patch |
PATCH /v1/{securityHealthAnalyticsCustomModule.name=folders/*/securityHealthAnalyticsSettings/customModules/*} Updates the SecurityHealthAnalyticsCustomModule under the given name based on the given update mask. |
simulate |
POST /v1/{parent=folders/*/securityHealthAnalyticsSettings}/customModules:simulate Simulates a given SecurityHealthAnalyticsCustomModule and Resource. |
REST Resource: v1.folders.securityHealthAnalyticsSettings.effectiveCustomModules
Methods | |
---|---|
get |
GET /v1/{name=folders/*/securityHealthAnalyticsSettings/effectiveCustomModules/*} Retrieves an EffectiveSecurityHealthAnalyticsCustomModule. |
list |
GET /v1/{parent=folders/*/securityHealthAnalyticsSettings}/effectiveCustomModules Returns a list of all EffectiveSecurityHealthAnalyticsCustomModules for the given parent. |
REST Resource: v1.folders.sources
Methods | |
---|---|
list |
GET /v1/{parent=folders/*}/sources Lists all sources belonging to an organization. |
REST Resource: v1.folders.sources.findings
Methods | |
---|---|
group |
POST /v1/{parent=folders/*/sources/*}/findings:group Filters an organization or source's findings and groups them by their specified properties. |
list |
GET /v1/{parent=folders/*/sources/*}/findings Lists an organization or source's findings. |
patch |
PATCH /v1/{finding.name=folders/*/sources/*/findings/*} Creates or updates a finding. |
setMute |
POST /v1/{name=folders/*/sources/*/findings/*}:setMute Updates the mute state of a finding. |
setState |
POST /v1/{name=folders/*/sources/*/findings/*}:setState Updates the state of a finding. |
updateSecurityMarks |
PATCH /v1/{securityMarks.name=folders/*/sources/*/findings/*/securityMarks} Updates security marks. |
REST Resource: v1.folders.sources.findings.externalSystems
Methods | |
---|---|
patch |
PATCH /v1/{externalSystem.name=folders/*/sources/*/findings/*/externalSystems/*} Updates external system. |
REST Resource: v1.organizations
Methods | |
---|---|
getOrganizationSettings |
GET /v1/{name=organizations/*/organizationSettings} Gets the settings for an organization. |
updateOrganizationSettings |
PATCH /v1/{organizationSettings.name=organizations/*/organizationSettings} Updates an organization's settings. |
REST Resource: v1.organizations.assets
Methods | |
---|---|
group |
POST /v1/{parent=organizations/*}/assets:group Filters an organization's assets and groups them by their specified properties. |
list |
GET /v1/{parent=organizations/*}/assets Lists an organization's assets. |
runDiscovery |
POST /v1/{parent=organizations/*}/assets:runDiscovery Runs asset discovery. |
updateSecurityMarks |
PATCH /v1/{securityMarks.name=organizations/*/assets/*/securityMarks} Updates security marks. |
REST Resource: v1.organizations.bigQueryExports
Methods | |
---|---|
create |
POST /v1/{parent=organizations/*}/bigQueryExports Creates a BigQuery export. |
delete |
DELETE /v1/{name=organizations/*/bigQueryExports/*} Deletes an existing BigQuery export. |
get |
GET /v1/{name=organizations/*/bigQueryExports/*} Gets a BigQuery export. |
list |
GET /v1/{parent=organizations/*}/bigQueryExports Lists BigQuery exports. |
patch |
PATCH /v1/{bigQueryExport.name=organizations/*/bigQueryExports/*} Updates a BigQuery export. |
REST Resource: v1.organizations.eventThreatDetectionSettings
Methods | |
---|---|
validateCustomModule |
POST /v1/{parent=organizations/*/eventThreatDetectionSettings}:validateCustomModule Validates the given Event Threat Detection custom module. |
REST Resource: v1.organizations.eventThreatDetectionSettings.customModules
Methods | |
---|---|
create |
POST /v1/{parent=organizations/*/eventThreatDetectionSettings}/customModules Creates an Event Threat Detection custom module. |
delete |
DELETE /v1/{name=organizations/*/eventThreatDetectionSettings/customModules/*} Deletes an Event Threat Detection custom module. |
get |
GET /v1/{name=organizations/*/eventThreatDetectionSettings/customModules/*} Gets an Event Threat Detection custom module. |
list |
GET /v1/{parent=organizations/*/eventThreatDetectionSettings}/customModules Lists Event Threat Detection custom modules. |
patch |
PATCH /v1/{eventThreatDetectionCustomModule.name=organizations/*/eventThreatDetectionSettings/customModules/*} Updates an Event Threat Detection custom module. |
REST Resource: v1.organizations.findings
Methods | |
---|---|
bulkMute |
POST /v1/{parent=organizations/*}/findings:bulkMute Kicks off an LRO to bulk mute findings for a parent based on a filter. |
REST Resource: v1.organizations.locations.muteConfigs
Methods | |
---|---|
delete |
DELETE /v1/{name=organizations/*/locations/*/muteConfigs/*} Deletes an existing mute config. |
get |
GET /v1/{name=organizations/*/locations/*/muteConfigs/*} Gets a mute config. |
patch |
PATCH /v1/{muteConfig.name=organizations/*/locations/*/muteConfigs/*} Updates a mute config. |
REST Resource: v1.organizations.muteConfigs
Methods | |
---|---|
create |
POST /v1/{parent=organizations/*}/muteConfigs Creates a mute config. |
delete |
DELETE /v1/{name=organizations/*/muteConfigs/*} Deletes an existing mute config. |
get |
GET /v1/{name=organizations/*/muteConfigs/*} Gets a mute config. |
list |