Devo SDK
App Vendor: Devo
App Category: Analytics & SIEM
Connector Version: 1.1.0
API Version: v1
About App
Devo SDK app is used to write data to Devo over HTTP via the Devo SDK. Devo SDK app can also be used to add or remove data from Devo tables.
The Devo SDK app is configured with Orchestrate to perform the following actions:
Action Name | Description |
|---|---|
Write to Table | This action writes data to a table. |
Delete Lookup Table Row | This action deletes a row in the lookup table. |
Create Lookup Table With CSV | This action creates a lookup table with a CSV file. |
Write to Lookup Table | This action writes data to a lookup table. |
Configuration Parameters
The following configuration parameters are required for the Devo SDK app to communicate with the Devo SDK enterprise application. The parameters can be configured by creating instances in the app.
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Certificate | Enter the contents of the cert file. | File | Required | |
Key | Enter the contents of the key file. | File | Required | |
Chain Key | Enter the contents of the chain key file. | File | Required | |
Relay Server | Enter the relay server to use. | Text | Optional | Default value: us.elb.relay.logtrust.net |
Action: Write to Table
This action writes data to a table.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Table Full Name | Enter the full name or path of a table. Example: demo.ecommerce.data | Text | Required | |
Data | Enter the data to write to a table. Example: $LIST["phishing", "ransomware"] | List | Required |
Example Request
[
{
"table_full_name": "demo.ecommerce.data",
"data": ["phishing", "ransomware"]
}
]
Action: Delete Lookup Table Row
This action deletes a row in the lookup table.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Lookup Name | Enter the lookup name from where you need to delete data. Example: "phishing_table" | Text | Required | |
Lookup Key | Enter the lookup row number to delete. Example: "4" | Text | Required |
Example Request
[
{
"lookup_name": "phishing_table",
"lookup_key": "4"
}
]
Action: Create Lookup Table With CSV
This action creates a lookup table with a CSV file.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Lookup Name | Enter the lookup name to which you need to add data. Example: "csv_data" | Text | Required | |
CSV File Path | Enter the path of the CSV file to upload. Example: "/tmp/971xx575-70x1-4883-a03b-3afdab389075/table.csv" | Text | Required | |
Lookup Key | Enter the lookup key to use in the lookup table. Example: "ip_list" | Text | Required | In this action, Lookup Key denotes the primary key of the table. |
Example Request
[
{
"lookup_key": "ip_list",
"lookup_name": "csv_data",
"csv_file_path": "/tmp/971xx575-70x1-4883-a03b-3afdab389075/table.csv"
}
]Action: Write to Lookup Table
This action writes data into a lookup table.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Lookup Name | Enter the lookup name to which you need to add data. Example: "table" | Text | Required | |
Lookup Fields | Enter a list of fields to add to the lookup table. Each item in the list is a column point. Example: $LIST[33, hex33, color33] | Text | Required | |
Lookup Key | Enter the row number to which you need to insert the data. Example: "4" | Text | Required |
Example Request
[
{
"lookup_name": "table",
"lookup_fields": [ "33", "hex33", "color33",
"lookup_key": "4"
}
]