API Reference

Last updated: May 2026

NOVE provides a RESTful JSON API. All endpoints require authentication via HttpOnly session cookie or API key.

Base URL: https://xero4nsic.com/api/v1

Authentication

Session management, API key generation, CSRF token endpoints, and session revocation.

Cases API

Create, read, update, and close cases. Assign investigators. Case template management and bulk operations.

Evidence API

Ingest evidence, retrieve chain of custody, verify hashes, manage legal hold, and export audit trails.

Webhooks

Subscribe to case events, evidence ingestion notifications, and playbook execution results via HTTPS callbacks.

Sample Request

GET /api/v1/cases?status=open&limit=20 Authorization: Bearer <api-key>

Sample Response

{ "data": [ { "id": "case_01HXYZ9ABC", "title": "Ransomware Incident — FinCorp EU", "status": "open", "severity": "critical", "assigned_to": "[email protected]", "created_at": "2026-05-10T09:14:22Z" } ], "meta": { "total": 142, "limit": 20, "offset": 0 } }

Full interactive API documentation (Swagger UI) is available inside the platform after login. All endpoints are documented with request/response schemas, authentication requirements, and live try-it-out functionality.

View full documentation index →