KSC Open API
Kaspersky Security Center API description
|
Report fields type is a 64-bit bitmask (paramLong) value that has one or two bits set to 1 - one mandatory bit for syntax representation (integer, string, IPv4, etc) and the other (optional) for semantic (event type name, product internal name, protection status, event severity, etc.).
The syntax is defined by the following bits:
Bit number (starting with 0) | Meaning |
---|---|
0 | paramString |
1 | 32-bit integer |
2 | paramBool |
3 | paramDate |
4 | paramDateTime |
5 | IPv4 |
6 | Bitmask (32-bit integer) |
7 | IPv4 diapason |
60 | 64-bit integer (or 64-bit bitmask) |
61 | paramBinary |
The semantic is defined by the following bits:
Bit number (starting with 0) | Meaning | Syntax |
---|---|---|
8 | Product name. | String (bit 0) |
9 | Product version. | String (bit 0) |
10 | Administration group name. | String (bit 0) |
11 | Domain. | String (bit 0) |
12 | Host name. | String (bit 0) |
13 | License key. | String (bit 0) |
14 | Threat (virus) type, see Threat types enum. | Integer (bit 1) |
15 | Threat (virus) cure result action. | String (bit 0) |
16 | Network protocol. | String (bit 0) |
17 | Host protection status. Only two values from Host general statuses are possible: 1 for "Critical" and 2 for "Warning". | Bitmask (bit 6) |
18 | Host protection status reason. See Extended status mask, bit set. | Bitmask (bit 6) |
19 | Incident severity, see Incident severity levels. | Integer (bit 1) |
20 | Event severity, see List of event attributes. | Integer (bit 1) |
21 | Event type, see List of event attributes. | String (bit 0) |
22 | Virtual server name. | String (bit 0) |
23 | Vulnerability severity. See Vulnerability severity rating according to the Kaspersky classification | Integer (bit 1) |
26 | Host status defined by product (HSDP). | String (bit 0) |
27 | Software update information source. See Software update information source enum. | integer (bit 1) |
28 | URL. | String (bit 0) |
29 | Web control result. See Web Control result enum. | Integer (bit 1) |
30 | Encryption state. See Settings for host status calculation. | Integer (bit 1) |
31 | Software update installation state. See Software update installation state enum. | Integer (bit 1) |
32 | Encryption type. See Encryption type enum. | Bitmask (bit 6) |
33 | USB file type | String (bit 0) |
34 | Detection engine. See Threat detection engine type enum. | Integer (bit 1) |
35 | Threat detection method. See Threat detection method enum. | paramInt |
36 | File integrity monitor object type. See File integrity monitor object type enum. | Bitmask (bit 6) |
37 | File integrity monitor action. See File integrity monitor action enum. | Bitmask (bit 6) |
38 | Third-party software vendor ID. | 64-bit integer (bit 60) |
39 | Third-party software product ID. | 64-bit integer (bit 60) |
40 | Third-party software product major version ID. | 64-bit integer (bit 60) |
41 | Third-party software patch ID. | 64-bit integer (bit 60) |
42 | Software installation result. See Software installation result enum. | Integer (bit 1) |
43 | Software installation error classes. See Software installation error classes enum. | Integer (bit 1) |
44 | Unique binary ID of product component. | Binary (bit 61) |
45 | Product component status. See Product component status. | Integer (bit 1) |
46 | Product component version, integer value. Every 16 bits of which are interpreted as one part of the four-component version (for example 0x000a000201330000 means 10.2.307.0). | 64-bit integer (bit 60) |
47 | Anti-virus database update status. See Anti-virus DB update status enum. | Integer (bit 1) |
50 | Address IPv6 | Binary (bit 61) |