TTPsObservedDetail

Details tactics, techniques, and procedures (TTPs) used in a potential security event. Tactics are based on MITRE ATT&CK Matrix for Enterprise.

Contents

APIFailureCount

The total number of failed API requests.

Type: Long

Required: No

APIName

The name of the API where the tactics, techniques, and procedure (TTP) was observed.

Type: String

Required: No

APISuccessCount

The total number of successful API requests.

Type: Long

Required: No

IpAddress

The IP address where the tactics, techniques, and procedure (TTP) was observed.

Type: String

Required: No

Procedure

The procedure used, identified by the investigation.

Type: String

Required: No

Tactic

The tactic used, identified by the investigation.

Type: String

Required: No

Technique

The technique used, identified by the investigation.

Type: String

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following:

• AWS SDK for C++

• AWS SDK for Java V2

• AWS SDK for Ruby V3