Trellix · Schema

SearchCreate

Cloud SecurityCybersecurityEndpoint SecurityThreat DetectionThreat IntelligenceXDR

Properties

Name Type Description
query string Search query expression specifying the indicators to hunt for, such as file hashes, process names, or network indicators.
targetHosts array Optional list of specific host identifiers to target. If omitted, the search runs across all managed endpoints.
View JSON Schema on GitHub

JSON Schema

trellix-searchcreate-schema.json Raw ↑ 
{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "$id": "#/components/schemas/SearchCreate",
  "title": "SearchCreate",
  "type": "object",
  "required": [
    "query"
  ],
  "properties": {
    "query": {
      "type": "string",
      "description": "Search query expression specifying the indicators to hunt for, such as file hashes, process names, or network indicators."
    },
    "targetHosts": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Optional list of specific host identifiers to target. If omitted, the search runs across all managed endpoints."
    }
  }
}