Reputation API Endpoint

This API endpoint allows checking reputation data (currently, limited to whitelist information) for one or multiple hashes (MD5, SHA-1, SHA-256, SHA-512). Based on the underlying configuration, this will either be the internal whitelist or output from other services, such as NSRL.

Syntax

POST https://<ip>:<port>/reputation

Parameters

Name

Type

Required?

Description

serect

String

Y

Authentication secret

sha256

String

Y

SHA256 digest as found in the response of /submit or extracted resource in the reporting

hashes[]

String

Y

This may be an array of one or multiple hashes, provided with the “hashes[]” key as part of a form-data body part.

Example Response

{ "processTime": 148, "reputationResults": { "INTERNAL": { "processTime": 0, "whitelistedHashes": [ "fffe43b0ba0137f2592e26bb98bbeca9" ], "invalidHashes": [ "123" ] }, "NSRL": { "processTime": 132, "whitelistedHashes": [ "13210020db7a3e34ced1fa7b114155bc" ], "invalidHashes": [ "123" ] } } }