Class: Aws::SecurityHub::Types::Actor

Inherits:

Struct

• Object
• Struct
• Aws::SecurityHub::Types::Actor

Includes:

Aws::Structure

Defined in:

lib/aws-sdk-securityhub/types.rb

Overview

Information about the threat actor identified in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub, you must have GuardDuty enabled. For more information, see [GuardDuty Extended Threat Detection ][1] in the *Amazon GuardDuty User Guide*.

[1]: docs.aws.amazon.com/guardduty/latest/ug/guardduty-extended-threat-detection.html

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #id ⇒ String

  The ID of the threat actor.

• #session ⇒ Types::ActorSession

  Contains information about the user session where the activity initiated.

• #user ⇒ Types::ActorUser

  Contains information about the user credentials used by the threat actor.

Instance Attribute Details

#id ⇒ String

The ID of the threat actor.

Returns:

• (String)

# File 'lib/aws-sdk-securityhub/types.rb', line 300

class Actor < Struct.new(
  :id,
  :user,
  :session)
  SENSITIVE = []
  include Aws::Structure
end

#session ⇒ Types::ActorSession

Contains information about the user session where the activity initiated.

Returns:

• (Types::ActorSession)

# File 'lib/aws-sdk-securityhub/types.rb', line 300

class Actor < Struct.new(
  :id,
  :user,
  :session)
  SENSITIVE = []
  include Aws::Structure
end

#user ⇒ Types::ActorUser

Contains information about the user credentials used by the threat actor.

Returns:

• (Types::ActorUser)

# File 'lib/aws-sdk-securityhub/types.rb', line 300

class Actor < Struct.new(
  :id,
  :user,
  :session)
  SENSITIVE = []
  include Aws::Structure
end