Class: Aws::GuardDuty::Types::Indicator

Inherits:

Struct

• Object
• Struct
• Aws::GuardDuty::Types::Indicator

Includes:

Structure

Defined in:

lib/aws-sdk-guardduty/types.rb

Overview

Contains information about the indicators that include a set of signals observed in an attack sequence.

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #key ⇒ String

  Specific indicator keys observed in the attack sequence.

• #title ⇒ String

  Title describing the indicator.

• #values ⇒ Array<String>

  Values associated with each indicator key.

Instance Attribute Details

#key ⇒ String

Specific indicator keys observed in the attack sequence. For description of the valid values for key, see [Attack sequence finding details] in the *Amazon GuardDuty User Guide*.

[1]: docs.aws.amazon.com/guardduty/latest/ug/guardduty_findings-summary.html#guardduty-extended-threat-detection-attack-sequence-finding-details

Returns:

• (String)

# File 'lib/aws-sdk-guardduty/types.rb', line 4564

class Indicator < Struct.new(
  :key,
  :values,
  :title)
  SENSITIVE = []
  include Aws::Structure
end

#title ⇒ String

Title describing the indicator.

Returns:

• (String)

# File 'lib/aws-sdk-guardduty/types.rb', line 4564

class Indicator < Struct.new(
  :key,
  :values,
  :title)
  SENSITIVE = []
  include Aws::Structure
end

#values ⇒ Array<String>

Values associated with each indicator key. For example, if the indicator key is ‘SUSPICIOUS_NETWORK`, then the value will be the name of the network. If the indicator key is `ATTACK_TACTIC`, then the value will be one of the MITRE tactics.

Returns:

• (Array<String>)

# File 'lib/aws-sdk-guardduty/types.rb', line 4564

class Indicator < Struct.new(
  :key,
  :values,
  :title)
  SENSITIVE = []
  include Aws::Structure
end