Skip to main content


This Script is part of the Check Point Sandblast Cloud Services (Deprecated) Pack.#


Use Check Point Threat Emulation (SandBlast) instead.

Uses the Upload API to have a client application request that Check Point Threat Prevention modules scan and analyze a file. When a file is to the service, the file will be encrypted. The file is un-encrypted during analysis, and then deleted.

Script Data#

Script Typepython


This script uses the following commands and scripts.

  • sb-upload


Argument NameDescription
file_nameThe name of the file. The service calculates the file name from the part name.
md5The MD5 hash of the file to upload.
sha1The SHA1 hash of the file to upload.
sha256The SHA256 hash of the file to upload.
file_typeThe extension of the file. The service identifies the type of the file.
featuresThe available features. The default is "te" and "av".
imagesThe array of the objects with ID and revision of available OS images.
reportsThe array of supported report formats. Can be, "pdf", "xml", or "tar".
benign_reportsBy default, reports are returned only for malicious files. Mark this as true and get benign reports.
file_idThe ID of the file.


There are no outputs for this script.