mirror of
https://github.com/MicrosoftDocs/windows-itpro-docs.git
synced 2025-06-07 01:57:21 +00:00
90 lines
2.6 KiB
Markdown
90 lines
2.6 KiB
Markdown
---
|
|
title: Get installed software
|
|
description: Retrieves a collection of installed software related to a given device ID.
|
|
keywords: apis, graph api, supported apis, get, list, file, information, software inventory, installed software per device, threat & vulnerability management api, mdatp tvm api
|
|
search.product: eADQiWindows 10XVcnh
|
|
ms.prod: w10
|
|
ms.mktglfcycl: deploy
|
|
ms.sitesec: library
|
|
ms.pagetype: security
|
|
ms.author: dolmont
|
|
author: DulceMontemayor
|
|
ms.localizationpriority: medium
|
|
manager: dansimp
|
|
audience: ITPro
|
|
ms.collection: M365-security-compliance
|
|
ms.topic: article
|
|
---
|
|
|
|
# Get installed software
|
|
**Applies to:**
|
|
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
|
|
|
|
[!include[Prerelease information](../../includes/prerelease.md)]
|
|
|
|
Retrieves a collection of installed software related to a given device ID.
|
|
|
|
## Permissions
|
|
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
|
|
|
|
Permission type | Permission | Permission display name
|
|
:---|:---|:---
|
|
Application |Software.Read.All | 'Read Threat and Vulnerability Management Software information'
|
|
Delegated (work or school account) | Software.Read | 'Read Threat and Vulnerability Management Software information'
|
|
|
|
## HTTP request
|
|
```
|
|
GET /api/machines/{machineId}/software
|
|
```
|
|
|
|
## Request headers
|
|
|
|
Name | Type | Description
|
|
:---|:---|:---
|
|
Authorization | String | Bearer {token}. **Required**.
|
|
|
|
|
|
## Request body
|
|
Empty
|
|
|
|
## Response
|
|
If successful, this method returns 200 OK with the installed software information in the body.
|
|
|
|
|
|
## Example
|
|
|
|
**Request**
|
|
|
|
Here is an example of the request.
|
|
|
|
```
|
|
GET https://api.securitycenter.windows.com/api/machines/ac233fa6208e1579620bf44207c4006ed7cc4501/software
|
|
```
|
|
|
|
**Response**
|
|
|
|
Here is an example of the response.
|
|
|
|
|
|
```
|
|
{
|
|
"@odata.context": "https://api.securitycenter.windows.com/api/$metadata#Software",
|
|
"value": [
|
|
{
|
|
"id": "microsoft-_-internet_explorer",
|
|
"name": "internet_explorer",
|
|
"vendor": "microsoft",
|
|
"weaknesses": 67,
|
|
"publicExploit": true,
|
|
"activeAlert": false,
|
|
"exposedMachines": 42115,
|
|
"impactScore": 46.2037163
|
|
}
|
|
]
|
|
}
|
|
```
|
|
|
|
## Related topics
|
|
- [Risk-based Threat & Vulnerability Management](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/next-gen-threat-and-vuln-mgt)
|
|
- [Threat & Vulnerability software inventory](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory)
|