Class: Aws::SecurityHub::Types::AwsSecurityFindingFilters

Inherits:
Struct
  • Object
show all
Defined in:
gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb

Overview

Note:

When making an API call, you may pass AwsSecurityFindingFilters data as a hash:

{
  product_arn: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  aws_account_id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  generator_id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  type: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  first_observed_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  last_observed_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  created_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  updated_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  severity_product: [
    {
      gte: 1.0,
      lte: 1.0,
      eq: 1.0,
    },
  ],
  severity_normalized: [
    {
      gte: 1.0,
      lte: 1.0,
      eq: 1.0,
    },
  ],
  severity_label: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  confidence: [
    {
      gte: 1.0,
      lte: 1.0,
      eq: 1.0,
    },
  ],
  criticality: [
    {
      gte: 1.0,
      lte: 1.0,
      eq: 1.0,
    },
  ],
  title: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  description: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  recommendation_text: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  source_url: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  product_fields: [
    {
      key: "NonEmptyString",
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS
    },
  ],
  product_name: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  company_name: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  user_defined_fields: [
    {
      key: "NonEmptyString",
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS
    },
  ],
  malware_name: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  malware_type: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  malware_path: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  malware_state: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  network_direction: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  network_protocol: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  network_source_ip_v4: [
    {
      cidr: "NonEmptyString",
    },
  ],
  network_source_ip_v6: [
    {
      cidr: "NonEmptyString",
    },
  ],
  network_source_port: [
    {
      gte: 1.0,
      lte: 1.0,
      eq: 1.0,
    },
  ],
  network_source_domain: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  network_source_mac: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  network_destination_ip_v4: [
    {
      cidr: "NonEmptyString",
    },
  ],
  network_destination_ip_v6: [
    {
      cidr: "NonEmptyString",
    },
  ],
  network_destination_port: [
    {
      gte: 1.0,
      lte: 1.0,
      eq: 1.0,
    },
  ],
  network_destination_domain: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  process_name: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  process_path: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  process_pid: [
    {
      gte: 1.0,
      lte: 1.0,
      eq: 1.0,
    },
  ],
  process_parent_pid: [
    {
      gte: 1.0,
      lte: 1.0,
      eq: 1.0,
    },
  ],
  process_launched_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  process_terminated_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  threat_intel_indicator_type: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  threat_intel_indicator_value: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  threat_intel_indicator_category: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  threat_intel_indicator_last_observed_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  threat_intel_indicator_source: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  threat_intel_indicator_source_url: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_type: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_partition: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_region: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_tags: [
    {
      key: "NonEmptyString",
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS
    },
  ],
  resource_aws_ec2_instance_type: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_ec2_instance_image_id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_ec2_instance_ip_v4_addresses: [
    {
      cidr: "NonEmptyString",
    },
  ],
  resource_aws_ec2_instance_ip_v6_addresses: [
    {
      cidr: "NonEmptyString",
    },
  ],
  resource_aws_ec2_instance_key_name: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_ec2_instance_iam_instance_profile_arn: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_ec2_instance_vpc_id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_ec2_instance_subnet_id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_ec2_instance_launched_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  resource_aws_s3_bucket_owner_id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_s3_bucket_owner_name: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_iam_access_key_user_name: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_iam_access_key_status: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_aws_iam_access_key_created_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  resource_container_name: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_container_image_id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_container_image_name: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  resource_container_launched_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  resource_details_other: [
    {
      key: "NonEmptyString",
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS
    },
  ],
  compliance_status: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  verification_state: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  workflow_state: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  workflow_status: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  record_state: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  related_findings_product_arn: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  related_findings_id: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  note_text: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  note_updated_at: [
    {
      start: "NonEmptyString",
      end: "NonEmptyString",
      date_range: {
        value: 1,
        unit: "DAYS", # accepts DAYS
      },
    },
  ],
  note_updated_by: [
    {
      value: "NonEmptyString",
      comparison: "EQUALS", # accepts EQUALS, PREFIX
    },
  ],
  keyword: [
    {
      value: "NonEmptyString",
    },
  ],
}

A collection of attributes that are applied to all active Security Hub-aggregated findings and that result in a subset of findings that are included in this insight.

Instance Attribute Summary collapse

Instance Attribute Details

#aws_account_idArray<Types::StringFilter>

The AWS account ID that a finding is generated in.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#company_nameArray<Types::StringFilter>

The name of the findings provider (company) that owns the solution (product) that generates findings.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#compliance_statusArray<Types::StringFilter>

Exclusive to findings that are generated as the result of a check run against a specific rule in a supported standard, such as CIS AWS Foundations. Contains security standard-related finding details.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#confidenceArray<Types::NumberFilter>

A finding's confidence. Confidence is defined as the likelihood that a finding accurately identifies the behavior or issue that it was intended to identify.

Confidence is scored on a 0-100 basis using a ratio scale, where 0 means zero percent confidence and 100 means 100 percent confidence.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#created_atArray<Types::DateFilter>

An ISO8601-formatted timestamp that indicates when the security-findings provider captured the potential security issue that a finding captured.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#criticalityArray<Types::NumberFilter>

The level of importance assigned to the resources associated with the finding.

A score of 0 means that the underlying resources have no criticality, and a score of 100 is reserved for the most critical resources.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#descriptionArray<Types::StringFilter>

A finding's description.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#first_observed_atArray<Types::DateFilter>

An ISO8601-formatted timestamp that indicates when the security-findings provider first observed the potential security issue that a finding captured.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#generator_idArray<Types::StringFilter>

The identifier for the solution-specific component (a discrete unit of logic) that generated a finding. In various security-findings providers' solutions, this generator can be called a rule, a check, a detector, a plugin, etc.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#idArray<Types::StringFilter>

The security findings provider-specific identifier for a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#keywordArray<Types::KeywordFilter>

A keyword for a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#last_observed_atArray<Types::DateFilter>

An ISO8601-formatted timestamp that indicates when the security-findings provider most recently observed the potential security issue that a finding captured.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#malware_nameArray<Types::StringFilter>

The name of the malware that was observed.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#malware_pathArray<Types::StringFilter>

The filesystem path of the malware that was observed.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#malware_stateArray<Types::StringFilter>

The state of the malware that was observed.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#malware_typeArray<Types::StringFilter>

The type of the malware that was observed.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_destination_domainArray<Types::StringFilter>

The destination domain of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_destination_ip_v4Array<Types::IpFilter>

The destination IPv4 address of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_destination_ip_v6Array<Types::IpFilter>

The destination IPv6 address of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_destination_portArray<Types::NumberFilter>

The destination port of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_directionArray<Types::StringFilter>

Indicates the direction of network traffic associated with a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_protocolArray<Types::StringFilter>

The protocol of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_source_domainArray<Types::StringFilter>

The source domain of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_source_ip_v4Array<Types::IpFilter>

The source IPv4 address of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_source_ip_v6Array<Types::IpFilter>

The source IPv6 address of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_source_macArray<Types::StringFilter>

The source media access control (MAC) address of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#network_source_portArray<Types::NumberFilter>

The source port of network-related information about a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#note_textArray<Types::StringFilter>

The text of a note.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#note_updated_atArray<Types::DateFilter>

The timestamp of when the note was updated.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#note_updated_byArray<Types::StringFilter>

The principal that created a note.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#process_launched_atArray<Types::DateFilter>

The date/time that the process was launched.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#process_nameArray<Types::StringFilter>

The name of the process.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#process_parent_pidArray<Types::NumberFilter>

The parent process ID.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#process_pathArray<Types::StringFilter>

The path to the process executable.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#process_pidArray<Types::NumberFilter>

The process ID.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#process_terminated_atArray<Types::DateFilter>

The date/time that the process was terminated.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#product_arnArray<Types::StringFilter>

The ARN generated by Security Hub that uniquely identifies a third-party company (security findings provider) after this provider's product (solution that generates findings) is registered with Security Hub.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#product_fieldsArray<Types::MapFilter>

A data type where security-findings providers can include additional solution-specific details that aren't part of the defined AwsSecurityFinding format.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#product_nameArray<Types::StringFilter>

The name of the solution (product) that generates findings.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#recommendation_textArray<Types::StringFilter>

The recommendation of what to do about the issue described in a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#record_stateArray<Types::StringFilter>

The updated record state for the finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

The solution-generated identifier for a related finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

The ARN of the solution that generated a related finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_ec2_instance_iam_instance_profile_arnArray<Types::StringFilter>

The IAM profile ARN of the instance.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_ec2_instance_image_idArray<Types::StringFilter>

The Amazon Machine Image (AMI) ID of the instance.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_ec2_instance_ip_v4_addressesArray<Types::IpFilter>

The IPv4 addresses associated with the instance.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_ec2_instance_ip_v6_addressesArray<Types::IpFilter>

The IPv6 addresses associated with the instance.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_ec2_instance_key_nameArray<Types::StringFilter>

The key name associated with the instance.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_ec2_instance_launched_atArray<Types::DateFilter>

The date and time the instance was launched.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_ec2_instance_subnet_idArray<Types::StringFilter>

The identifier of the subnet that the instance was launched in.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_ec2_instance_typeArray<Types::StringFilter>

The instance type of the instance.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_ec2_instance_vpc_idArray<Types::StringFilter>

The identifier of the VPC that the instance was launched in.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_iam_access_key_created_atArray<Types::DateFilter>

The creation date/time of the IAM access key related to a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_iam_access_key_statusArray<Types::StringFilter>

The status of the IAM access key related to a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_iam_access_key_user_nameArray<Types::StringFilter>

The user associated with the IAM access key related to a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_s3_bucket_owner_idArray<Types::StringFilter>

The canonical user ID of the owner of the S3 bucket.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_aws_s3_bucket_owner_nameArray<Types::StringFilter>

The display name of the owner of the S3 bucket.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_container_image_idArray<Types::StringFilter>

The identifier of the image related to a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_container_image_nameArray<Types::StringFilter>

The name of the image related to a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_container_launched_atArray<Types::DateFilter>

The date/time that the container was started.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_container_nameArray<Types::StringFilter>

The name of the container related to a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_details_otherArray<Types::MapFilter>

The details of a resource that doesn't have a specific subfield for the resource type defined.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_idArray<Types::StringFilter>

The canonical identifier for the given resource type.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_partitionArray<Types::StringFilter>

The canonical AWS partition name that the Region is assigned to.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_regionArray<Types::StringFilter>

The canonical AWS external Region name where this resource is located.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_tagsArray<Types::MapFilter>

A list of AWS tags associated with a resource at the time the finding was processed.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#resource_typeArray<Types::StringFilter>

Specifies the type of the resource that details are provided for.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#severity_labelArray<Types::StringFilter>

The label of a finding's severity.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#severity_normalizedArray<Types::NumberFilter>

The normalized severity of a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#severity_productArray<Types::NumberFilter>

The native severity as defined by the security-findings provider's solution that generated the finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#source_urlArray<Types::StringFilter>

A URL that links to a page about the current finding in the security-findings provider's solution.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#threat_intel_indicator_categoryArray<Types::StringFilter>

The category of a threat intelligence indicator.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#threat_intel_indicator_last_observed_atArray<Types::DateFilter>

The date/time of the last observation of a threat intelligence indicator.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#threat_intel_indicator_sourceArray<Types::StringFilter>

The source of the threat intelligence.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#threat_intel_indicator_source_urlArray<Types::StringFilter>

The URL for more details from the source of the threat intelligence.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#threat_intel_indicator_typeArray<Types::StringFilter>

The type of a threat intelligence indicator.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#threat_intel_indicator_valueArray<Types::StringFilter>

The value of a threat intelligence indicator.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#titleArray<Types::StringFilter>

A finding's title.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#typeArray<Types::StringFilter>

A finding type in the format of namespace/category/classifier that classifies a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#updated_atArray<Types::DateFilter>

An ISO8601-formatted timestamp that indicates when the security-findings provider last updated the finding record.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#user_defined_fieldsArray<Types::MapFilter>

A list of name/value string pairs associated with the finding. These are custom, user-defined fields added to a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#verification_stateArray<Types::StringFilter>

The veracity of a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#workflow_stateArray<Types::StringFilter>

The workflow state of a finding.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end

#workflow_statusArray<Types::StringFilter>

The status of the investigation into a finding. Allowed values are the following.

  • NEW - The initial state of a finding, before it is reviewed.

  • NOTIFIED - Indicates that the resource owner has been notified about the security issue. Used when the initial reviewer is not the resource owner, and needs intervention from the resource owner.

  • SUPPRESSED - The finding will not be reviewed again and will not be acted upon.

  • RESOLVED - The finding was reviewed and remediated and is now considered resolved.

Returns:



4159
4160
4161
4162
4163
4164
4165
4166
4167
4168
4169
4170
4171
4172
4173
4174
4175
4176
4177
4178
4179
4180
4181
4182
4183
4184
4185
4186
4187
4188
4189
4190
4191
4192
4193
4194
4195
4196
4197
4198
4199
4200
4201
4202
4203
4204
4205
4206
4207
4208
4209
4210
4211
4212
4213
4214
4215
4216
4217
4218
4219
4220
4221
4222
4223
4224
4225
4226
4227
4228
4229
4230
4231
4232
4233
4234
4235
4236
4237
4238
4239
4240
4241
4242
4243
4244
4245
# File 'gems/aws-sdk-securityhub/lib/aws-sdk-securityhub/types.rb', line 4159

class AwsSecurityFindingFilters < Struct.new(
  :product_arn,
  :aws_account_id,
  :id,
  :generator_id,
  :type,
  :first_observed_at,
  :last_observed_at,
  :created_at,
  :updated_at,
  :severity_product,
  :severity_normalized,
  :severity_label,
  :confidence,
  :criticality,
  :title,
  :description,
  :recommendation_text,
  :source_url,
  :product_fields,
  :product_name,
  :company_name,
  :user_defined_fields,
  :malware_name,
  :malware_type,
  :malware_path,
  :malware_state,
  :network_direction,
  :network_protocol,
  :network_source_ip_v4,
  :network_source_ip_v6,
  :network_source_port,
  :network_source_domain,
  :network_source_mac,
  :network_destination_ip_v4,
  :network_destination_ip_v6,
  :network_destination_port,
  :network_destination_domain,
  :process_name,
  :process_path,
  :process_pid,
  :process_parent_pid,
  :process_launched_at,
  :process_terminated_at,
  :threat_intel_indicator_type,
  :threat_intel_indicator_value,
  :threat_intel_indicator_category,
  :threat_intel_indicator_last_observed_at,
  :threat_intel_indicator_source,
  :threat_intel_indicator_source_url,
  :resource_type,
  :resource_id,
  :resource_partition,
  :resource_region,
  :resource_tags,
  :resource_aws_ec2_instance_type,
  :resource_aws_ec2_instance_image_id,
  :resource_aws_ec2_instance_ip_v4_addresses,
  :resource_aws_ec2_instance_ip_v6_addresses,
  :resource_aws_ec2_instance_key_name,
  :resource_aws_ec2_instance_iam_instance_profile_arn,
  :resource_aws_ec2_instance_vpc_id,
  :resource_aws_ec2_instance_subnet_id,
  :resource_aws_ec2_instance_launched_at,
  :resource_aws_s3_bucket_owner_id,
  :resource_aws_s3_bucket_owner_name,
  :resource_aws_iam_access_key_user_name,
  :resource_aws_iam_access_key_status,
  :resource_aws_iam_access_key_created_at,
  :resource_container_name,
  :resource_container_image_id,
  :resource_container_image_name,
  :resource_container_launched_at,
  :resource_details_other,
  :compliance_status,
  :verification_state,
  :workflow_state,
  :workflow_status,
  :record_state,
  :related_findings_product_arn,
  :related_findings_id,
  :note_text,
  :note_updated_at,
  :note_updated_by,
  :keyword)
  include Aws::Structure
end