Baidu AI Cloud
中国站

百度智能云

Host Security

Website Backdoor Related Interface

Query the List of Trojan Files in the Specified Region

Description

  • Query the list of Trojan files in the specified region.

Request structure

GET /v{version}/hosteye/modwebshell/regionOverview?pageNo={pageNo}&pageSize={pageSize}&clientToken={clientToken} HTTP/1.1
Host: bss.{region}.baidubce.com
Authorization: authorization string

Request header

There are no other special headers except the public headers.

Request parameter

Parameter name Type Required or not Parameter position Description
version String Yes URL parameter API version number (the current value is 2)
clientToken String Yes Query parameter For details of idempotent Token, please see clientToken
pageNo int No Query Page number with default of 1
pageSize int No Query Page size with default of 10

Return status code

Successfully return to 200; for failure, please see Error Code.

Return header

There are no other special headers except the public headers.

Return parameter

Parameter name Type Description
status TaskStatus Task status
totalCount int Total number of Trojan files
list list<WebShellFileModel> List of Trojan files

Request example

GET /v2/hosteye/modwebshell/regionOverview?pageNo=1&pageSize=10&clientToken=be31b98c-5e41-4838-9830-9be700de5a20 HTTP/1.1
HOST bss.{region}.baidubce.com
Authorization bce-auth-v1/5e5a8adf11ae475ba95f1bd38228b44f/2016-04-10T08:26:52Z/1800/host;x-bce-date/ec3c0069f9abb1e247773a62707224124b2b31b4c171133677f9042969791f02

Response example

HTTP/1.1 200 OK
x-bce-request-id: 946002ee-cb4f-4aad-b686-5be55df27f09
Date: Wed, 10 Apr 2016 08:26:52 GMT
Transfer-Encoding: chunked
Content-Type: application/json;charset=UTF-8
Server: BWS
{
    "list": [ 
        {  
            "region":      String ()        // REGION, "bj"/"gz"/"sz"/"hk02"/"fsh"/"hkg03" are optional 
            "vmid":         String ()        // INSTANCE-UUID, // String, unique identification of the virtual machine, long ID 
            "fileName":     String()        //ABSOLUTTE_PATH, file absolute path 
            "fileMtime":    String()        //String, FILE-MODIFY-TMIE, UTC time, such as 2018-01-01T00:00:00Z 
            "fileStatus":  String()       //String, 'notHandled', 'quarantined', 'quarantineFailed', 'ignored'
            "availableOp": [String, String, ..] //'quarantine', 'restore', 'ignore', 'cancelIgnore'
            "fileType":     String()        // Trojan type, 'webshell' 
            "fileId":       Int()           // file identification, this file needs to be passed back to Meta when subsequently operated 
        },
    ],
    "totalCount" : 53 //Int
}

Query List of Trojan Files in the Global

Description

  • Query list of Trojan files in the global.

Request structure

GET /v{version}/hosteye/modwebshell/allOverview?pageNo={pageNo}&pageSize={pageSize}&clientToken={clientToken} HTTP/1.1
Host: bss.{region}.baidubce.com
Authorization: authorization string

Request header

There are no other special headers except the public headers.

Request parameter

Parameter name Type Required or not Parameter position Description
version String Yes URL parameter API version number (the current value is 2)
clientToken String Yes Query parameter For details of idempotent Token, please see clientToken
pageNo int No Query Page number with default of 1
pageSize int No Query Page size with default of 10

Return status code

Successfully return to 200; for failure, please see Error Code.

Return header

There are no other special headers except the public headers.

Return parameter

Parameter name Type Description
status TaskStatus Task status
totalCount int Total number of Trojan files
list list<WebShellFileModel> List of Trojan files

Request example

GET /v2/hosteye/modwebshell/allOverview?pageNo=1&pageSize=10&clientToken=be31b98c-5e41-4838-9830-9be700de5a20 HTTP/1.1
HOST bss.{region}.baidubce.com
Authorization bce-auth-v1/5e5a8adf11ae475ba95f1bd38228b44f/2016-04-10T08:26:52Z/1800/host;x-bce-date/ec3c0069f9abb1e247773a62707224124b2b31b4c171133677f9042969791f02

Response example

HTTP/1.1 200 OK
x-bce-request-id: 946002ee-cb4f-4aad-b686-5be55df27f09
Date: Wed, 10 Apr 2016 08:26:52 GMT
Transfer-Encoding: chunked
Content-Type: application/json;charset=UTF-8
Server: BWS

{
    "list": [ 
        {  
            "region":      String ()        // REGION, "bj"/"gz"/"sz"/"hk02"/"fsh"/"hkg03" are optional 
            "vmid":         String ()        // INSTANCE-UUID, // String, unique identification of the virtual machine, long ID 
            "fileName":     String()        //ABSOLUTTE_PATH, file absolute path 
            "fileMtime":    String()        //String, FILE-MODIFY-TMIE, UTC time, such as 2018-01-01T00:00:00Z 
            "fileStatus":  String()       //String, 'notHandled', 'quarantined', 'quarantineFailed', 'ignored'
            "availableOp": [String, String, ..] //'quarantine', 'restore', 'ignore', 'cancelIgnore'
            "fileType":     String()        // Trojan type, 'webshell' 
            "fileId":       Int()           // file identification, this file needs to be passed back to Meta when subsequently operated 
        },
    ],
    "totalCount" : 53 //Int
 }

Specify File Execution Action

Description

  • Specify file execution action.

Request structure

POST /v{version}/hosteye/modwebshell/op?&clientToken={clientToken} HTTP/1.1
Host: bss.{region}.baidubce.com
Authorization: authorization string

{
    "action":   String() //one of 'quarantine', 'restore', 'ignore', 'cancelIgnore' 
    "vmid":     String() //INSTANCE-UUID, unique identification of the virtual machine, long ID 
    "fileId":   Int()     // file identification, this file needs to be passed back to Meta when subsequently operated 
}

Request header

There are no other special headers except the public headers.

Request parameter

Parameter name Type Required or not Parameter position Description
version String Yes URL parameter API version number (the current value is 2)
clientToken String Yes Query parameter For details of idempotent Token, please see clientToken
action WebShellFileOperation Yes RequestBody Action executed
vmid String Yes RequestBody Virtual machine long id
fileId int Yes RequestBody File identified id

Return status code

Successfully return to 200; for failure, please see Error Code.

Return header

There are no other special headers except the public headers.

Return parameter

Parameter name Type Description
code int Return code
message String Message

Request example

POST /v2/hosteye/modwebshell/op?clientToken=be31b98c-5e41-4838-9830-9be700de5a20 HTTP/1.1
HOST bss.{region}.baidubce.com
Authorization bce-auth-v1/5e5a8adf11ae475ba95f1bd38228b44f/2016-04-10T08:26:52Z/1800/host;x-bce-date/ec3c0069f9abb1e247773a62707224124b2b31b4c171133677f9042969791f02

{
    "action":   String() //one of 'quarantine', 'restore', 'ignore', 'cancelIgnore' 
    "vmid":     String() //INSTANCE-UUID, unique identification of the virtual machine, long ID 
    "fileId":   Int()     // file identification, this file needs to be passed back to Meta when subsequently operated 
}

Response example

HTTP/1.1 200 OK
x-bce-request-id: 946002ee-cb4f-4aad-b686-5be55df27f09
Date: Wed, 10 Apr 2016 08:26:52 GMT
Transfer-Encoding: chunked
Content-Type: application/json;charset=UTF-8
Server: BWS

{
    "code":    Int()    //200+~500+
    "message": String () // UTF Chinese, indicating the reason for failure 
}

View the Website Backdoor Configuration for the Specified Virtual Machine

Description

  • View the website backdoor configuration for the virtual machine with the specified long id.

Request structure

POST /v{version}/hosteye/modwebshell/config?&clientToken={clientToken} HTTP/1.1
Host: bss.{region}.baidubce.com
Authorization: authorization string

{
    "vmid":     String() //INSTANCE-UUID, unique identification of the virtual machine, long ID 
}

Request header

There are no other special headers except the public headers.

Request parameter

Parameter name Type Required or not Parameter position Description
version String Yes URL parameter API version number (the current value is 2)
clientToken String Yes Query parameter For details of idempotent Token, please see clientToken
vmid String Yes RequestBody Virtual machine long id

Return status code

Successfully return to 200; for failure, please see Error Code.

Return header

There are no other special headers except the public headers.

Return parameter

Parameter name Type Description
autoDir list Web directories automatically configured
manualAdd list Web directories manually added
osType system Operating system
quarantineDir String Quarantine directory
cloudOn bool Whether to enable cloud detection and removal, true: enabled, false: disabled
agentOn bool Agent is alive or not, true: yes, false: no

Request example

POST /v2/hosteye/modwebshell/config?clientToken=be31b98c-5e41-4838-9830-9be700de5a20 HTTP/1.1
HOST bss.{region}.baidubce.com
Authorization bce-auth-v1/5e5a8adf11ae475ba95f1bd38228b44f/2016-04-10T08:26:52Z/1800/host;x-bce-date/ec3c0069f9abb1e247773a62707224124b2b31b4c171133677f9042969791f02

{
    "vmid":     String() //INSTANCE-UUID, unique identification of the virtual machine, long ID 
}

Response example

HTTP/1.1 200 OK
x-bce-request-id: 946002ee-cb4f-4aad-b686-5be55df27f09
Date: Wed, 10 Apr 2016 08:26:52 GMT
Transfer-Encoding: chunked
Content-Type: application/json;charset=UTF-8
Server: BWS
{
      "autoDir":       [String, String]// directory string array 
      "manualAdd":     [String, String]// directory string array 
      "osType":       String()         //'windows', 'linux'
      "quarantineDir":String()          // specific directory 
      "cloudOn":      Bool()           //true, false
      "agentOn":       Bool()            // agent is alive or not, true/false 
}

Update the Website Backdoor Configuration for the Specified Virtual Machine

Description

  • Update the website backdoor configuration for the virtual machine with the specified long id.

Request structure

PUT /v{version}/hosteye/modwebshell/config?&clientToken={clientToken} HTTP/1.1
Host: bss.{region}.baidubce.com
Authorization: authorization string

{
    "vmid":     String() //INSTANCE-UUID, unique identification of the virtual machine, long ID 
    "autoDir":       [String, String]// directory string array 
      "manualAdd":     [String, String]// directory string array 
      "cloudOn":      Bool()           //true, false
}

Request header

There are no other special headers except the public headers.

Request parameter

Parameter name Type Required or not Parameter position Description
version String Yes URL parameter API version number (the current value is 2)
clientToken String Yes Query parameter For details of idempotent Token, please see clientToken
vmid String Yes RequestBody Virtual machine long id
autoDir list Yes RequestBody Scan directories automatically got
manualAdd list Yes RequestBody Scan directories manually added
cloudOn bool Yes RequestBody Whether to enable cloud detection and removal, true: enabled, false: disabled

Return status code

Successfully return to 200; for failure, please see Error Code.

Return header

There are no other special headers except the public headers.

Return parameter

Parameter name Type Description
code int Return code
message String Message

Request example

PUT /v2/hosteye/modwebshell/config?clientToken=be31b98c-5e41-4838-9830-9be700de5a20 HTTP/1.1
HOST bss.{region}.baidubce.com
Authorization bce-auth-v1/5e5a8adf11ae475ba95f1bd38228b44f/2016-04-10T08:26:52Z/1800/host;x-bce-date/ec3c0069f9abb1e247773a62707224124b2b31b4c171133677f9042969791f02

{
    "vmid":     String() //INSTANCE-UUID, unique identification of the virtual machine, long ID 
    "autoDir":       [String, String]// directory string array 
     "manualAdd":     [String, String]// directory string array 
     "cloudOn":      Bool()           //true, false
}

Response example

HTTP/1.1 200 OK
 x-bce-request-id: 946002ee-cb4f-4aad-b686-5be55df27f09
 Date: Wed, 10 Apr 2016 08:26:52 GMT
 Transfer-Encoding: chunked
 Content-Type: application/json;charset=UTF-8
 Server: BWS

 {
     "code":    Int()    //200+~500+
     "message": String () // UTF Chinese, indicating the reason for failure 
 }
Previous
Login Management Related Interface
Next
Security Baseline Related Interface