GRR Rapid Response API (3.4.2.3)

Download OpenAPI specification:Download

GRR Rapid Response is an incident response framework focused on remote live forensics.

Clients

AddClientsLabels

Labels given clients with given labels.

Request Body schema: application/json
clientIds
Array of strings (protobuf2.TYPE_STRING)
labels
Array of strings (protobuf2.TYPE_STRING)

Responses

Request samples

Content type
application/json
{
  • "clientIds":
    [
    ],
  • "labels":
    [
    ]
}

GetClient

Get client with a given client id.

path Parameters
clientId
required
string (protobuf2.TYPE_STRING)
query Parameters
timestamp
string <uint64>

RDF type is RDFDatetime and it represents the number of microseconds since epoch to a timestamp.

Responses

Response samples

Content type
application/json
{
  • "clientId": "string",
  • "urn": "string",
  • "fleetspeakEnabled": true,
  • "agentInfo":
    {
    },
  • "hardwareInfo":
    {
    },
  • "osInfo":
    {
    },
  • "knowledgeBase":
    {
    },
  • "memorySize": "string",
  • "firstSeenAt": "string",
  • "lastSeenAt": "string",
  • "lastBootedAt": "string",
  • "lastClock": "string",
  • "lastCrashAt": "string",
  • "labels":
    [
    ],
  • "interfaces":
    [
    ],
  • "users":
    [