Skip to content

/AWS1/CL_GDYINDICATOR

Contains information about the indicators that include a set of signals observed in an attack sequence.

CONSTRUCTOR

IMPORTING

Required arguments:

iv_key TYPE /AWS1/GDYINDICATORTYPE /AWS1/GDYINDICATORTYPE

Specific indicator keys observed in the attack sequence. For description of the valid values for key, see Attack sequence finding details in the Amazon GuardDuty User Guide.

Optional arguments:

it_values TYPE /AWS1/CL_GDYINDICATORVALUES_W=>TT_INDICATORVALUES TT_INDICATORVALUES

Values associated with each indicator key. For example, if the indicator key is SUSPICIOUS_NETWORK, then the value will be the name of the network. If the indicator key is ATTACK_TACTIC, then the value will be one of the MITRE tactics.

iv_title TYPE /AWS1/GDYINDICATORTITLE /AWS1/GDYINDICATORTITLE

Title describing the indicator.

Queryable Attributes

Key

Specific indicator keys observed in the attack sequence. For description of the valid values for key, see Attack sequence finding details in the Amazon GuardDuty User Guide.

Accessible with the following methods

Method Description
GET_KEY() Getter for KEY, with configurable default
ASK_KEY() Getter for KEY w/ exceptions if field has no value
HAS_KEY() Determine if KEY has a value

Values

Values associated with each indicator key. For example, if the indicator key is SUSPICIOUS_NETWORK, then the value will be the name of the network. If the indicator key is ATTACK_TACTIC, then the value will be one of the MITRE tactics.

Accessible with the following methods

Method Description
GET_VALUES() Getter for VALUES, with configurable default
ASK_VALUES() Getter for VALUES w/ exceptions if field has no value
HAS_VALUES() Determine if VALUES has a value

Title

Title describing the indicator.

Accessible with the following methods

Method Description
GET_TITLE() Getter for TITLE, with configurable default
ASK_TITLE() Getter for TITLE w/ exceptions if field has no value
HAS_TITLE() Determine if TITLE has a value

Public Local Types In This Class

Internal table types, representing arrays and maps of this class, are defined as local types:

TT_INDICATORS

TYPES TT_INDICATORS TYPE STANDARD TABLE OF REF TO /AWS1/CL_GDYINDICATOR WITH DEFAULT KEY
.