Skip to main content


This Script is part of the Check Point Sandblast Cloud Services Pack.#

Uses the Query API to have a client application look for either the analysis report of a specific file on the Check Point Threat Prevention service databases or the status of a file, uploaded for analysis.

Script Data#

Script Typepython


This script uses the following commands and scripts.

  • sb-query


Argument NameDescription
md5The MD5 hash of the file to query.
sha1The SHA1 hash of the file to query.
sha256The SHA256 hash of the file to query.
file_typeThe extension of the file. The service identifies the type.
featuresThe available features. The default is "te" and "av".
imagesThe array of the objects with ID and revision of the available OS images.
reportsThe array of supported report formats. Can be, "pdf", "xml", or "tar".
benign_reportsBy default, reports are returned only for malicious files. Mark this as true to get benign reports.
quotaWhether the response delivers the quota data (for cloud services only).
file_nameThe name of the file. The service calculates the file name from the part name.


There are no outputs for this script.