Interaction between an external system and Kaspersky Anti Targeted Attack Platform

The following scenario is recommended for interaction of an external system with the program:

  1. Authorization of the external system

    The administrator must create a request to integrate the external system with the program. Then the program administrator must process the request in the web interface of Kaspersky Anti Targeted Attack Platform.

  2. Creating a request for scanning objects using the HTTP POST method
  3. Creating a request for scan results using the HTTP GET method

    The API interface is asynchronous, which means that Kaspersky Anti Targeted Attack Platform scans objects in the background instead of immediately upon request of the external system. For this reason, you must periodically send a request from the external system using the HTTP GET method to receive the scan results. The recommended frequency for sending a request is once per minute.

    You can also configure forwarding of notifications about detected objects in the web interface of Kaspersky Anti Targeted Attack Platform.

  4. Creating a request to delete scan results using the HTTP DELETE method

    You can delete the results of scanning a specified object or all objects.

Page top