@Generated(value="com.amazonaws:aws-java-sdk-code-generator") public class IndicatorDetail extends Object implements Serializable, Cloneable, StructuredPojo
Details about the indicators of compromise which are used to determine if a resource is involved in a security incident. An indicator of compromise (IOC) is an artifact observed in or on a network, system, or environment that can (with a high level of confidence) identify malicious activity or a security incident. For the list of indicators of compromise that are generated by Detective investigations, see Detective investigations.
Constructor and Description |
---|
IndicatorDetail() |
Modifier and Type | Method and Description |
---|---|
IndicatorDetail |
clone() |
boolean |
equals(Object obj) |
FlaggedIpAddressDetail |
getFlaggedIpAddressDetail()
Suspicious IP addresses that are flagged, which indicates critical or severe threats based on threat intelligence
by Detective.
|
ImpossibleTravelDetail |
getImpossibleTravelDetail()
Identifies unusual and impossible user activity for an account.
|
NewAsoDetail |
getNewAsoDetail()
Contains details about the new Autonomous System Organization (ASO).
|
NewGeolocationDetail |
getNewGeolocationDetail()
Contains details about the new geographic location.
|
NewUserAgentDetail |
getNewUserAgentDetail()
Contains details about the new user agent.
|
RelatedFindingDetail |
getRelatedFindingDetail()
Contains details about related findings.
|
RelatedFindingGroupDetail |
getRelatedFindingGroupDetail()
Contains details about related finding groups.
|
TTPsObservedDetail |
getTTPsObservedDetail()
Details about the indicator of compromise.
|
int |
hashCode() |
void |
marshall(ProtocolMarshaller protocolMarshaller)
Marshalls this structured data using the given
ProtocolMarshaller . |
void |
setFlaggedIpAddressDetail(FlaggedIpAddressDetail flaggedIpAddressDetail)
Suspicious IP addresses that are flagged, which indicates critical or severe threats based on threat intelligence
by Detective.
|
void |
setImpossibleTravelDetail(ImpossibleTravelDetail impossibleTravelDetail)
Identifies unusual and impossible user activity for an account.
|
void |
setNewAsoDetail(NewAsoDetail newAsoDetail)
Contains details about the new Autonomous System Organization (ASO).
|
void |
setNewGeolocationDetail(NewGeolocationDetail newGeolocationDetail)
Contains details about the new geographic location.
|
void |
setNewUserAgentDetail(NewUserAgentDetail newUserAgentDetail)
Contains details about the new user agent.
|
void |
setRelatedFindingDetail(RelatedFindingDetail relatedFindingDetail)
Contains details about related findings.
|
void |
setRelatedFindingGroupDetail(RelatedFindingGroupDetail relatedFindingGroupDetail)
Contains details about related finding groups.
|
void |
setTTPsObservedDetail(TTPsObservedDetail tTPsObservedDetail)
Details about the indicator of compromise.
|
String |
toString()
Returns a string representation of this object.
|
IndicatorDetail |
withFlaggedIpAddressDetail(FlaggedIpAddressDetail flaggedIpAddressDetail)
Suspicious IP addresses that are flagged, which indicates critical or severe threats based on threat intelligence
by Detective.
|
IndicatorDetail |
withImpossibleTravelDetail(ImpossibleTravelDetail impossibleTravelDetail)
Identifies unusual and impossible user activity for an account.
|
IndicatorDetail |
withNewAsoDetail(NewAsoDetail newAsoDetail)
Contains details about the new Autonomous System Organization (ASO).
|
IndicatorDetail |
withNewGeolocationDetail(NewGeolocationDetail newGeolocationDetail)
Contains details about the new geographic location.
|
IndicatorDetail |
withNewUserAgentDetail(NewUserAgentDetail newUserAgentDetail)
Contains details about the new user agent.
|
IndicatorDetail |
withRelatedFindingDetail(RelatedFindingDetail relatedFindingDetail)
Contains details about related findings.
|
IndicatorDetail |
withRelatedFindingGroupDetail(RelatedFindingGroupDetail relatedFindingGroupDetail)
Contains details about related finding groups.
|
IndicatorDetail |
withTTPsObservedDetail(TTPsObservedDetail tTPsObservedDetail)
Details about the indicator of compromise.
|
public void setTTPsObservedDetail(TTPsObservedDetail tTPsObservedDetail)
Details about the indicator of compromise.
tTPsObservedDetail
- Details about the indicator of compromise.public TTPsObservedDetail getTTPsObservedDetail()
Details about the indicator of compromise.
public IndicatorDetail withTTPsObservedDetail(TTPsObservedDetail tTPsObservedDetail)
Details about the indicator of compromise.
tTPsObservedDetail
- Details about the indicator of compromise.public void setImpossibleTravelDetail(ImpossibleTravelDetail impossibleTravelDetail)
Identifies unusual and impossible user activity for an account.
impossibleTravelDetail
- Identifies unusual and impossible user activity for an account.public ImpossibleTravelDetail getImpossibleTravelDetail()
Identifies unusual and impossible user activity for an account.
public IndicatorDetail withImpossibleTravelDetail(ImpossibleTravelDetail impossibleTravelDetail)
Identifies unusual and impossible user activity for an account.
impossibleTravelDetail
- Identifies unusual and impossible user activity for an account.public void setFlaggedIpAddressDetail(FlaggedIpAddressDetail flaggedIpAddressDetail)
Suspicious IP addresses that are flagged, which indicates critical or severe threats based on threat intelligence by Detective. This indicator is derived from Amazon Web Services threat intelligence.
flaggedIpAddressDetail
- Suspicious IP addresses that are flagged, which indicates critical or severe threats based on threat
intelligence by Detective. This indicator is derived from Amazon Web Services threat intelligence.public FlaggedIpAddressDetail getFlaggedIpAddressDetail()
Suspicious IP addresses that are flagged, which indicates critical or severe threats based on threat intelligence by Detective. This indicator is derived from Amazon Web Services threat intelligence.
public IndicatorDetail withFlaggedIpAddressDetail(FlaggedIpAddressDetail flaggedIpAddressDetail)
Suspicious IP addresses that are flagged, which indicates critical or severe threats based on threat intelligence by Detective. This indicator is derived from Amazon Web Services threat intelligence.
flaggedIpAddressDetail
- Suspicious IP addresses that are flagged, which indicates critical or severe threats based on threat
intelligence by Detective. This indicator is derived from Amazon Web Services threat intelligence.public void setNewGeolocationDetail(NewGeolocationDetail newGeolocationDetail)
Contains details about the new geographic location.
newGeolocationDetail
- Contains details about the new geographic location.public NewGeolocationDetail getNewGeolocationDetail()
Contains details about the new geographic location.
public IndicatorDetail withNewGeolocationDetail(NewGeolocationDetail newGeolocationDetail)
Contains details about the new geographic location.
newGeolocationDetail
- Contains details about the new geographic location.public void setNewAsoDetail(NewAsoDetail newAsoDetail)
Contains details about the new Autonomous System Organization (ASO).
newAsoDetail
- Contains details about the new Autonomous System Organization (ASO).public NewAsoDetail getNewAsoDetail()
Contains details about the new Autonomous System Organization (ASO).
public IndicatorDetail withNewAsoDetail(NewAsoDetail newAsoDetail)
Contains details about the new Autonomous System Organization (ASO).
newAsoDetail
- Contains details about the new Autonomous System Organization (ASO).public void setNewUserAgentDetail(NewUserAgentDetail newUserAgentDetail)
Contains details about the new user agent.
newUserAgentDetail
- Contains details about the new user agent.public NewUserAgentDetail getNewUserAgentDetail()
Contains details about the new user agent.
public IndicatorDetail withNewUserAgentDetail(NewUserAgentDetail newUserAgentDetail)
Contains details about the new user agent.
newUserAgentDetail
- Contains details about the new user agent.public void setRelatedFindingDetail(RelatedFindingDetail relatedFindingDetail)
Contains details about related findings.
relatedFindingDetail
- Contains details about related findings.public RelatedFindingDetail getRelatedFindingDetail()
Contains details about related findings.
public IndicatorDetail withRelatedFindingDetail(RelatedFindingDetail relatedFindingDetail)
Contains details about related findings.
relatedFindingDetail
- Contains details about related findings.public void setRelatedFindingGroupDetail(RelatedFindingGroupDetail relatedFindingGroupDetail)
Contains details about related finding groups.
relatedFindingGroupDetail
- Contains details about related finding groups.public RelatedFindingGroupDetail getRelatedFindingGroupDetail()
Contains details about related finding groups.
public IndicatorDetail withRelatedFindingGroupDetail(RelatedFindingGroupDetail relatedFindingGroupDetail)
Contains details about related finding groups.
relatedFindingGroupDetail
- Contains details about related finding groups.public String toString()
toString
in class Object
Object.toString()
public IndicatorDetail clone()
public void marshall(ProtocolMarshaller protocolMarshaller)
StructuredPojo
ProtocolMarshaller
.marshall
in interface StructuredPojo
protocolMarshaller
- Implementation of ProtocolMarshaller
used to marshall this object's data.