atd
Node/Javascript library for interacting with McAfee ATD appliances.
Usage
Refer to the McAfee ATD API Guide and inside the library code.
Currently, the following API calls have been implemented:
- Connect (login)
- Upload (submit)
- GetReport (showreport)
- Close (logout).
Connecting
const atd = host ssl user password;atd;
Note: The library will automatically try and connect if you forget to call connect.
Uploading
Submitting a file can be done with a file name off disk:
atd;
Or via a stream:
atd;
On success, meta is a structure like:
success: true jobId: 397 md5: 'FD4C32A8412EED390BD66D0152EE1650' sha1: 'AFB23D7DBACD53B0A0564DAF259048EB9ACE8F14' sha256: '01534F5786529E78A0018A7D48ED385E6F20736523AB014BA505E91DD0FA0001'
Get Report
Get the report for a the given JobId, TaskId or md5 hash:
atd
Where the LOOKUP and REPORT options are:
atdREPORT = HTML: '...' TXT: '...' XML: '...' ZIP: '...' JSON: '...' IOC: '...' STIX: '...' PDF: '...' SAMPLE: '...'; atdLOOKUP = JOBID: '...' TASKID: '...' MD5: '...' // todo: any others?;
The type of the report callback parameter will be determined by the atd.REPORT type requested.
In the case of atd.REPORT.JSON, it will already be parsed, in all other cases it will be the raw response and needs to be decoded/saved/etc according to that format.
Clean Up
atd.close
Testing
To test the library, first copy "test/params-default.js" to "test/params.js" and enter valid ATD host IP and credentials. Then:
npm run test
license
MIT
thanks
largely ported from https://github.com/passimens/atdlib