> ## Documentation Index > Fetch the complete documentation index at: https://docs.neo.projectdiscovery.io/llms.txt > Use this file to discover all available pages before exploring further. # List network events > List captured HTTP traffic with filtering, sorting, and pagination. Supports HTTPQL queries, time range filtering, and field selection. Pass show_stats=true to get statistics instead of events. ## OpenAPI ````yaml https://neo.api.projectdiscovery.io/api/openapi.json get /api/v1/network/events openapi: 3.1.0 info: contact: name: ProjectDiscovery url: https://neo.projectdiscovery.io description: Neo API Server - Security agent orchestration platform license: name: Apache 2.0 url: https://www.apache.org/licenses/LICENSE-2.0 title: Neo API version: 1.0.0 servers: - description: Production url: https://neo.api.projectdiscovery.io - description: Local development url: http://localhost:8080 security: [] tags: - description: Task execution and management name: Tasks - description: Agent listing and management name: Agents - description: Public agent directory name: Agent Directory - description: User file storage management name: Files - description: User working memory management name: Memory - description: Scheduled and recurring task management name: Schedules - description: Knowledge base and semantic search name: Knowledge - description: Encrypted user credentials and API keys name: Secrets - description: Neo API key management for programmatic access name: API Keys - description: User profile and account information name: User - description: Task and LLM usage tracking name: Usage - description: Bring Your Own Key provider management name: BYOK - description: Model discovery and capabilities name: Models - description: Third-party integrations name: Integrations - description: Skill knowledge documents for agent prompts name: Skills - description: Team management and member invitations name: Teams - description: Prompt library management and discovery name: Prompts - description: Slack bot integration for workspace installation and OAuth name: Slack - description: GitHub integration for PR reviews and repository management name: GitHub - description: Vulnerability issue tracking and management name: Issues - description: Subscription billing and plans name: Billing - description: Project management and member assignments name: Projects - description: SSH key pair generation and management for remote server access name: SSH Keys - description: Codebase structural analysis and mapping name: Codemaps - description: AI-generated codebase documentation and security analysis name: CodeWiki - description: Captured HTTP traffic query and replay name: Network Events paths: /api/v1/network/events: get: tags: - Network Events summary: List network events description: | List captured HTTP traffic with filtering, sorting, and pagination. Supports HTTPQL queries, time range filtering, and field selection. Pass show_stats=true to get statistics instead of events. operationId: get-v1-network-events parameters: - description: Filter by task ID (omit for all tasks) in: query name: chat_id required: false schema: type: string - description: Filter by tool name (curl, python, browser) in: query name: tool_name required: false schema: type: string - description: Filter by request host in: query name: host required: false schema: type: string - description: Filter by request path in: query name: path required: false schema: type: string - description: Filter by HTTP method in: query name: method required: false schema: type: string - description: Minimum response status code in: query name: status_min required: false schema: maximum: 599 minimum: 100 type: integer - description: Maximum response status code in: query name: status_max required: false schema: maximum: 599 minimum: 100 type: integer - description: Filter by event source type in: query name: source_type required: false schema: enum: - script - cli - browser type: string - description: Only events after this timestamp (RFC 3339) in: query name: since required: false schema: format: date-time type: string - description: Only events before this timestamp (RFC 3339) in: query name: until required: false schema: format: date-time type: string - description: Substring search across full URL in: query name: search required: false schema: type: string - description: HTTPQL query (Caido-compatible syntax with neo.* extensions) in: query name: q required: false schema: type: string - description: Page number in: query name: page required: false schema: default: 1 minimum: 1 type: integer - description: Results per page in: query name: page_size required: false schema: default: 50 maximum: 100 minimum: 1 type: integer - description: Sort field in: query name: sort_by required: false schema: default: timestamp enum: - timestamp - captured_at type: string - description: Sort order in: query name: sort_order required: false schema: default: desc enum: - asc - desc type: string - description: Return statistics instead of events in: query name: show_stats required: false schema: enum: - 'true' type: string - description: Comma-separated list of fields to return in: query name: fields required: false schema: type: string responses: '200': content: application/json: schema: $ref: '#/components/schemas/NetworkEventsResponse' description: List of events or statistics '400': content: application/json: schema: $ref: '#/components/schemas/ErrorResponse' description: Invalid request (e.g., bad HTTPQL syntax) '401': content: application/json: schema: $ref: '#/components/schemas/ErrorResponse' description: Unauthorized security: - BearerAuth: [] - ApiKeyAuth: [] components: schemas: NetworkEventsResponse: properties: events: items: $ref: '#/components/schemas/NetworkEventSummary' type: array pagination: $ref: '#/components/schemas/NetworkPagination' stats: $ref: '#/components/schemas/NetworkStatistics' type: object ErrorResponse: properties: code: description: > Stable machine-readable error code — branch on this rather than matching the human `error`/`message` strings. Domain codes include `user_spending_cap_reached`, `project_spending_cap_reached`, and `insufficient_neo_credits`; otherwise it mirrors the error kind (e.g. `forbidden`, `invalid_request`, `not_exists`, `already_exists`). example: user_spending_cap_reached type: string error: example: Bad request type: string error_id: description: Correlation id for a specific error instance, when present. type: string kind: description: Coarse error category (e.g. "forbidden request", "invalid request"). example: forbidden request type: string message: description: | Human-readable detail (the kind prefixed to the error). For display, not for branching. type: string required: - error type: object NetworkEventSummary: properties: full_url: type: string id: format: uuid type: string source_type: type: string timestamp: format: date-time type: string tool_name: type: string url_host: type: string url_path: type: string type: object NetworkPagination: properties: has_next: type: boolean has_previous: type: boolean page: type: integer page_size: type: integer total_count: type: integer total_pages: type: integer type: object NetworkStatistics: properties: by_tool_name: items: properties: count: type: integer tool_name: type: string type: object type: array earliest_event: format: date-time type: string latest_event: format: date-time type: string total_events: type: integer type: object securitySchemes: BearerAuth: bearerFormat: JWT description: JWT authentication token scheme: bearer type: http ApiKeyAuth: description: Neo API key (neo_sk_* prefix) in: header name: X-Api-Key type: apiKey ````