IDS API cant get it to work :(

Altmana · June 03, 2020, 11:37:42 AM

Hi,
I am using CURL in Linux, trying to grab the eve.json log via the API.
Following the documentation, I am executing the following command:

curl -k -u "********":"*******" http://192.168.13.37/api/ids/service/getAlertLogs/$filedid=
or
curl -k -u "********":"*******" http://192.168.13.37/api/ids/service/getAlertLogs/$alertId

But I am getting nothing in return other than:
[{"size":2095025,"modified":"2020\/06\/03 11:36","filename":"eve.json","sequence":null},{"size":19470158,"modified":"2020\/05\/24 22:54","filename":"eve.json.0","sequence":0}]

What am I doing wrong?

Please help me.

Best regards,
Albert

Altmana · June 03, 2020, 01:37:35 PM

curl -k -u "**********":"*************" http://192.168.13.37/api/ids/service/getAlertinfo/[$alertid]

Actually gives me one alert, also
curl -k -u "**********":"*************" http://192.168.13.37/api/ids/service/getAlertinfo/[$eve.json] gives me the last alert in the log

IDS API cant get it to work :(

Altmana

June 03, 2020, 11:37:42 AM

Altmana

June 03, 2020, 01:37:35 PM #1