microsoft
/
MSRC-Microsoft-Engage-API
зеркало из https://github.com/microsoft/MSRC-Microsoft-Engage-API.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
MSRC Engage API
64 коммитов 4 Ветки 0 Теги 2,7 MiB
Objective-C 25.4%
Java 19.4%
C# 15.6%
JavaScript 11.9%
PHP 10.3%
Разное 17.4%
Перейти к файлу
Orion Cox d5bd358541
Add files via upload 		2017-11-07 13:06:43 -08:00
docs Rename swagger (1).yaml to swagger.yaml 2017-09-21 15:23:16 -07:00
msrcPenTest Add files via upload 2017-11-07 13:06:43 -08:00
src Add files via upload 2017-10-09 15:19:10 -07:00
LICENSE Initial commit 2017-09-13 13:57:03 -07:00
README.md Update README.md 2017-11-06 11:51:36 -08:00

README.md

Welcome

Microsoft provides APIs for an automation of submitting various security reports. The Engage API is a great place to report Abuse, Penetration Testing activity or submit Service Security Issues. The Portal (https://portal.msrc.microsoft.com/en-us/engage) is where individual reports should be submitted. To submit bulk reports, you may waht to call the Engage API directly on the developer portal (https://portal.msrc.microsoft.com/en-us/developer).

This project contains sample code and documentation for the Microsoft Engage API (https://portal.msrc.microsoft.com/en-us/developer), including:

  1. Abuse reports originating from Microsoft Online Services, such as Microsoft Azure, Bing, Outlook, One Drive, and Office 365. This includes malicious network activity originating from a Microsoft IP addresses.
  2. Azure Service customer-driven penetration testing notifications in a derivative of the CARS (Cloud Abuse Reporting Schema) as JSON
  3. Microsoft Service Security Issues, such as security misconfigurations, vulnerabilities, and other security related issues.

API Keys

The Security Updates API requires an API key. To obtain an API key please visit the Security Updates Guide. For help using the Security Updates Guide please visit the Security Updates Guide Community Forum. NOTE: Currently generating api keys requires an @outlook.com, @live.com, or @microsoft.com email address. If you do not have one of these email addresses, you can create a personal outlook account to access this service while we investigate this issue.

Change Log

Uploaded C#, Python and Ruby code samples as well as CARS Swagger file.

Updated swagger.json and added swagger.yaml. Uploaded Powershell Module.

Added Curl, ObjC, Java, JavaScript, and PHP code examples.

Contributing

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.

It is Microsofts mission to empower every person and every organization on the planet to achieve more. We thank you for helping shape that future by keeping the world a more secure place by tooling security into your organizations practices. We would love to hear your feedback on features to add or bugs to fix.