home

Mobile Endpoint Security

Mobile Endpoint SecuritySecurity Service Edge
Mobile Endpoint SecuritySecurity Service Edge

Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Show Contents

Mobile Endpoint Security

Network Threat Detail Fields

networkThreatDetails:legacyMitmDetails Fields

Legacy Man-in-the-Middle events are returned as THREAT events with type=NETWORK and a networkThreatDetails:legacyMitmDetails block with the following information:

"details": {
  ...,
  "assessments": [...],
  "networkThreatDetails": {
    "legacyMitmDetails" {
      "type": "ACTIVE_MITM",
      "ssid": "home",
      "dnsIpAddresses": ["10.18.216.174", "10.18.216.175"],
      "mac_address": "ab:dc:ac:8e:35:12"
    }
  }
}
Field Type Description
 
type
 String Always ACTIVE_MITM
*ssid
 String The wireless network ID.
dnsIpAddresses
 String array List of IP addresses.
*macAddress
 String The MAC address.
vpnPresent
 Boolean (Optional) Indicates if a VPN exists.
vpnLocalAddress
 String (Optional) The VPN IP address, if one is present.
proxyAddress
 String The proxy IP address.
proxyPort
 Integer The proxy port being used.
proxyProtocol
 String The proxy protocol being used.

* Field omitted if privacy controls are enabled.

Last updated: November 20, 2024

lookout-footer

Legal Privacy Policy Cookie Policy Transparency Report Compliance Info Compliance Info (Gov)

© 2024 Lookout, Inc. LOOKOUT®, the Lookout Shield Design®, LOOKOUT with Shield Design® and the Lookout multi-color/multi-shaded Wingspan Design® are registered trademarks of Lookout, Inc. in the United States and other countries. DAY OF SHECURITY®, LOOKOUT MOBILE SECURITY®, and POWERED BY LOOKOUT® are registered trademarks of Lookout, Inc. in the United States. Lookout, Inc. maintains common law trademark rights in EVERYTHING IS OK, PROTECTED BY LOOKOUT, CIPHERCLOUD, and the 4 Bar Shield Design.