Security Dev Center
Cisco Security supports third-party integration across its portfolio with 18+ open APIs and integration points.
Getting started
-
Check out the APIs -
Check out the tutorials
I’m looking for information about...
-
Gain better control of threats
Automate my security
Monitor and analyze security events -
Secure my cloud resources and applications
Check out the APIs
Discover all of Cisco's security technologies across various platforms.
|
Name
|
Description
|
Product
|
|---|---|---|
|
ISE is an identity and access control policy platform enabling enterprises to enforce compliance, enhance infrastructure security, and streamline their user network access operations.
|
||
|
Cisco Platform Exchange Grid (pxGrid) enables cross-platform security monitoring and detection systems, network policy platforms, asset and configuration management, identity and access management platforms, and more.
|
||
|
Thread Grid combines advanced sandboxing with threat intelligence into one unified solution to protect organizations from malware.
|
||
|
Context-rich APIs for exchange of network and endpoint security event data and host information.
|
||
|
This document describes the REST API provided for the Firepower 9300 Chassis. It includes both Platform and Firepower Chassis Services RESTful APIs, and describes both Configuration and Monitoring APIs.
|
||
|
Snort is an open source intrusion prevention system capable of real-time traffic analysis and packet logging.
|
||
|
Cisco Stealthwatch uses NetFlow to provide visibility across the network, data center, branch offices, and cloud. Its advanced security analytics uncover stealthy attacks on the extended network.
|
||
|
Cisco Umbrella is a cloud security platform that provides the first line of defense against threats on the internet. It blocks access to malicious domains, URLs, IPs, and files before a connection is ever established or a file downloaded.
|
||
|
Use the Investigate API to programmatically pull contextual threat intelligence from the Umbrella Global Network into your security management or incident response environment.
|
||
|
Using a cloud-native, API-based architecture, the CloudLock CyberDev Platform delivers CASB capabilities without interfering with the end-user experience or requiring any hardware, gateways, or proxy configurations.
|
Check out the tutorials
Learn how to get started with pxGrid and Firepower using the security learning labs.
-
pxGrid Introduction Using JavaExplore nowLearn how to build a sample JAVA client application using pxGrid APIs. Whenever wireless devices connect to or disconnect from the network, ISE will publish session notifications through pxGrid. -
Programming with FirepowerExplore nowLearn how to take control of threats and reduce time-to-evolve using REST APIs for managing Firepower Threat Defense (NGFW) and legacy Firepower devices through a Firepower Management Center (FMC).
Gain better control of threats
Adversaries work nonstop to evolve their threats. Learn how to take control of threats and reduce time-to-evolve.
-
Firepower REST APIsLearn moreREST based lightweight, easy-to-use API option for managing Firepower Threat Defense (NGFW) and legacy Firepower devices through a Firepower Management Center (FMC). Manage your threat policies before attack! -
AMP for EndpointsLearn moreSupports direct collection AMP for Endpoints event data directly from the AMP cloud. Event data is fully contextualized with all available end point host attributes. Ideal for AMP users that do not have a Firepower Management Center. Analyze your threats!
Automate my security
API driven configuration and policy management enables automation use cases for various orchestration architectures.
-
pxGridLearn moreCisco Platform Exchange Grid (pxGrid) enables multivendor, cross-platform network system collaboration among parts of the IT infrastructure such as security monitoring and detection systems, network policy platforms, asset and configuration management, identity and access management platforms, and virtually any other IT operations platform.
-
Firepower REST API GuidesLearn moreREST based APIs for Firepower Management Center (FMC) this enables NGFW and legacy Firepower devices to participate in third party orchestration as well as SDN, NFV, and other controller-based architectures.
Monitor and analyze security events
Discover more with forensics and investigation on the traffic flows & events in order to scope and remediate.
-
StealthwatchLearn moreCisco Stealthwatch uses NetFlow to provide visibility across the network, data center, branch offices, and cloud. Its advanced security analytics uncover stealthy attacks on the extended network. Stealthwatch helps you use your existing network as a security sensor and enforcer to dramatically improve your threat defense.
-
eStreamer APILearn moreBuild your own clients using eStreamer protocol and API to get insights on different event types generated by the sensors (intrusions events, malware events, file events …etc).
-
Umbrella InvestigateLearn moreProvides API access to Umbrella threat intelligence and provides querying of our threat database to find emerging threats.
- Investigate security incidents
- Stream intel to your SIEM
Secure my cloud resources and applications
When enterprises shift to the cloud, their security perimeter extends into the virtual realm. However, that security perimeter quickly dissipates with each connected third-party cloud application that employees introduce into the environment.
-
Cisco UmbrellaLearn moreCisco Umbrella is a cloud security platform that provides the first line of defense against threats on the internet. It blocks access to malicious domains, URLs, IPs, and files before a connection is ever established or a file downloaded.
-
Cisco CloudLockLearn moreUsing a cloud-native, API-based architecture, the CloudLock CyberDev Platform delivers CASB capabilities without interfering with the end-user experience or requiring any hardware, gateways, or proxy configurations. This API-based approach allows fast integrations and codeless security for apps built on popular IaaS and PaaS platforms, including Amazon Web Services (AWS) and Force.com.