CWP (Cloud Workload Protection) is based on massive threat data accumulated by Tencent Security. It uses machine learning to provide users with security protection services such as Hacker Intrusion Detection and vulnerability risk warning. It mainly includes password cracking interception, abnormal login alerts, Trojan File Detection, high-risk vulnerability detection, and other security features to solve the main network security risks faced by servers, help enterprises build a server security protection system, and prevent data leakage.
This section introduces the CWP API interface. All are API 3.0 interfaces.
You can call APIs to operate CWP, such as asset management, malicious file scan, intrusion defense, vulnerability detection, and baseline detection.
For ALL supported API information of CWP, please refer to the API overview (https://www.tencentcloud.com/document/product/296/19825?from_cn_redirect=1).
See the table below for common terminology of the CWP API interface.
| Terminology | Description |
|---|---|
| Host | Includes Tencent Cloud servers and non-Tencent Cloud servers, and is the main object of CWP protection. |
| Host list | Feature to unify security control for server assets, including asset sync, categorization, and risk view. |
| Asset fingerprinting: Collect and identify asset information such as software, ports, and processes running on the host. | |
| File Detection and Elimination | A security feature that detects files on the host and isolates trojans, viruses, and other malicious files based on the Cloud Killing Engine. |
| Intrusion detection, a security protection feature to detect hacker attacks, including abnormal login, brute force cracking, and malicious request. | |
| Vulnerability detection identifies security vulnerabilities in the host and provides remediation suggestions to find and fix security risks in advance. | |
| Baseline detection | Perform security checks on system settings, evaluate them, and provide reinforcement suggestions. |
| Advanced defense monitors and defends against hacker attacks, including network attacks and core file monitoring. |
-For version function differences of CWP protection editions, see feature introduction and edition comparison.
-For specific parameter limits, refer to the parameter descriptions in the API documentation.
You can use the API Explorer tool to call APIs online.
This document takes [one-click vulnerability detection] as an example to introduce the steps for making an API call through the API Explorer Tool.
文档反馈