Palo Alto Networks · JSON Structure

Cortex Xpanse Api Attack Surface Rule Structure

An attack surface rule defining criteria for classifying internet exposures as incidents.

Type: object Properties: 10
Cloud SecurityCybersecurityFirewallNetwork SecuritySASESOARThreat IntelligenceXDR

AttackSurfaceRule is a JSON Structure definition published by Palo Alto Networks, describing 10 properties. It conforms to the https://json-structure.org/meta/core/v0/# meta-schema.

Properties

attack_surface_rule_id attack_surface_rule_name category description remediation_guidance enabled_status severity created modified release_status

Meta-schema: https://json-structure.org/meta/core/v0/#

JSON Structure

Raw ↑ 
{
  "$schema": "https://json-structure.org/meta/core/v0/#",
  "$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-structure/cortex-xpanse-api-attack-surface-rule-structure.json",
  "name": "AttackSurfaceRule",
  "description": "An attack surface rule defining criteria for classifying internet exposures as incidents.",
  "type": "object",
  "properties": {
    "attack_surface_rule_id": {
      "type": "string"
    },
    "attack_surface_rule_name": {
      "type": "string"
    },
    "category": {
      "type": "string",
      "description": "Rule category (e.g., Unencrypted, Misconfigured, Unauthorized)."
    },
    "description": {
      "type": "string"
    },
    "remediation_guidance": {
      "type": "string"
    },
    "enabled_status": {
      "type": "string",
      "enum": [
        true,
        false
      ]
    },
    "severity": {
      "type": "string",
      "enum": [
        "critical",
        "high",
        "medium",
        "low",
        "informational"
      ]
    },
    "created": {
      "type": "int32"
    },
    "modified": {
      "type": "int32"
    },
    "release_status": {
      "type": "string",
      "enum": [
        "GA",
        "BETA"
      ]
    }
  }
}