API Resource Types Explanation Updates

[fhightower]

(Original issue 33)

To Fix

• Capitalize all of the resource types in the list above
• Remove victims from the list of Groups
• Add tasks to the lists of groups
• Remove the line stating that group-to-group associations are only permitted for two, distinct group types

Text

"Resource Types

Below is a list of all Resource Types and all HTTP paths for obtaining each Resource Type. The following tables lists when pagination is required or if the specific path supports specifying an Owner. Note that if a path does not support the Owner argument, but one is supplied, the argument will simply be ignored. Detailed information on each of the Resource Types, as well as example responses, are available later in this document. Table 3 also references multiple Indicator and Group types. Currently, these are the supported types for each entity:

Indicators

addresses emailAddresses hosts urls files Groups*

emails incidents documents signatures threats adversaries victims Tasks may also be queried and modified via the /tasks endpoint

*Currently, Group-to-Group relationships are only permitted for two distinct Group types. For example, Incidents can be associated with Threats but not directly with other Incidents. This should be taken into consideration when constructing API queries to perform pivots."

[fhightower]

Also, add tags to the list along with victims

[fhightower]

This issue is found here: http://docs.threatconnect.com/#resource-types