Python Api client for the Cyberwatch software
Table of Contents
To install the Cyberwatch API module, use Python 3 with:
pip3 install cyberwatch_apiTo be able to authenticate to the Cyberwatch API, you need to configure the api.conf file. This client authenticates using basic auth.
All the information can be retrieved in your profile on the Cyberwatch interface while creating an API user as following:
"Profile > API keys > See my API keys > +Add"
You can download directly the api.conf file after clicking on "Create > Export" or copy/paste the information to an api.conf file in this directory.
The library will search for the api.conf file in the current working directory and, if there is none, in its parent directory.
If the api.conf file is located elsewhere, you can specify the path as shown below:
Cyberwatch_Pyhelper(path_to_conf="your/path/to/api.conf/file/")Create a ping.py script with the following content inside:
from cyberwatch_api import Cyberwatch_Pyhelper
output = Cyberwatch_Pyhelper().request(
method="get",
endpoint="/api/v3/ping"
)
print(next(output).json())Then to test it, type the following command:
$ python3 ping.pyThe output should look like this:
{"uuid": "1ab2c3de-546f-789g-9f87-6ed5c4b3a210"}Otherwise, check that there are no typing errors in your API_KEY, SECRET_KEY or API_URL in the api.conf file and that your Cyberwatch instance is up.
Run an example script
Choose a script from the examples directory and copy it to your computer
Run it with the following command:
$ python3 your_example_script_file.pySwagger documentation
Cyberwatch API provides a Swagger documentation.
Using it, you can :
Note that the request method provided by this module always outputs a generator. This is intended to allow building of high performance scripts. If the request you perform returns a single result and not a list, you will find the result in the first row of this generator.
Location of the Swagger's documentation
You can find it while clicking on the </> logo on the top right of the Cyberwatch interface.
Request parameters
When using this API, you can use the body_params variable to send parameters to your endpoint.
output = Cyberwatch_Pyhelper().request(
method="get",
endpoint="/api/v3/vulnerabilities/servers/{id}",
body_params={'id' : 7}
)output = Cyberwatch_Pyhelper().request(
method="put",
endpoint="/api/v3/vulnerabilities/servers/{id}",
body_params={'id' : 7,'description' : "this is a description", "groups":[3,4]}
)Paginate the response
You can select how many elements are returned per-page using the per_page parameter. If you need only a single page to be returned, you may specify it using the page parameter.
output = Cyberwatch_Pyhelper().request(
method="get",
endpoint="/api/v3/agents",
body_params={'per_page' : 50, 'page' : 3}
)See the command line interface documentation here
What if I don't want to verify the SSL certificate?
Error example:
ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self-signed certificate (_ssl.c:997)Certificate verification can be bypassed with the verify_ssl option.
For example, this option was added to the previous ping.py script as follows:
from cyberwatch_api import Cyberwatch_Pyhelper
output = Cyberwatch_Pyhelper().request(
method="get",
endpoint="/api/v3/ping",
verify_ssl=False
)
print(next(output).json())