Skip to content

[Security Center] Hash search #17598

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Oct 17, 2024
Merged

[Security Center] Hash search #17598

Changes from 1 commit
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
0b765ac
[Security Center] Hash search
Maddy-Cloudflare Oct 17, 2024
e2fd928
Apply suggestions from code review
Maddy-Cloudflare Oct 17, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
14 changes: 9 additions & 5 deletions src/content/docs/radar/investigate/url-scanner.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ Once you have the token, and you know your `account_id`, you are ready to make y

### Submit URL to scan

In order to submit a URL to scan, the only required information is the URL to be scanned in the `POST` request body:
To submit a URL to scan, the only required information is the URL to be scanned in the `POST` request body:

```bash
curl "https://api.cloudflare.com/client/v4/accounts/{account_id}/urlscanner/scan" \
Expand Down Expand Up @@ -112,11 +112,11 @@ Some examples of more specific properties include:

The [Get URL Scan](/api/operations/urlscanner-get-scan) API endpoint documentation contains the full response schema.

In order to fetch the scan's [screenshots](/api/operations/urlscanner-get-scan-screenshot) or full [network log](/api/operations/urlscanner-get-scan-har), please visit the corresponding endpoints' documentation.
To fetch the scan's [screenshots](/api/operations/urlscanner-get-scan-screenshot) or full [network log](/api/operations/urlscanner-get-scan-har), please visit the corresponding endpoints' documentation.

### Search scans

`Public` scans can also be searched for. In order to search for scans to the hostname `google.com`, use the query parameter `page_hostname=google.com`:
`Public` scans can also be searched for. To search for scans to the hostname `google.com`, use the query parameter `page_hostname=google.com`:

```bash
curl "https://api.cloudflare.com/client/v4/accounts/{account_id}/urlscanner/scan?page_hostname=google.com" \
Expand All @@ -125,11 +125,15 @@ curl "https://api.cloudflare.com/client/v4/accounts/{account_id}/urlscanner/scan

Search results will also include your *own* `Unlisted` scans.

If, instead, you wanted to search for scans which made at least one request to the hostname `cdnjs.cloudflare.com` - e.g. sites that use a JavaScript library hosted at `cdnjs.cloudflare.com` - use the query parameter `hostname=cdnjs.cloudflare.com`:
If, instead, you wanted to search for scans which made at least one request to the hostname `cdnjs.cloudflare.com`, for example sites that use a JavaScript library hosted at `cdnjs.cloudflare.com`, use the query parameter `hostname=cdnjs.cloudflare.com`:

```bash
curl "https://api.cloudflare.com/client/v4/accounts/{account_id}/urlscanner/scan?hostname=cdnjs.cloudflare.com" \
--header "Authorization: Bearer <API_TOKEN>"
```

Check `https://developers.cloudflare.com/api/operations/urlscanner-search-scans` for the full list of available options.
You can also search for the hash in the URL Scanner API.

Go to `https://developers.cloudflare.com/api/operations/urlscanner-search-scans` for the full list of available options.

Alternatively, you can search for the hash on the [Cloudflare dashboard](https://dash.cloudflare.com/) by selecting your account > **Security Center** > **Investigate** > Enter the hash > Select **Search**.
Loading