@datafire/amazonaws_guardduty NPM

@datafire/amazonaws_guardduty

Client library for Amazon GuardDuty

Installation and Usage

npm install --save @datafire/amazonaws_guardduty

let amazonaws_guardduty = require('@datafire/amazonaws_guardduty').create({
  accessKeyId: "",
  secretAccessKey: "",
  region: ""
});

amazonaws_guardduty.ListDetectors({}).then(data => {
  console.log(data);
});

Description

Assess, monitor, manage, and remediate security issues across your AWS infrastructure, applications, and data.

Actions

ListDetectors

amazonaws_guardduty.ListDetectors({}, context)

Input

input object
- MaxResults string
- NextToken string

Output

output ListDetectorsResponse

CreateDetector

amazonaws_guardduty.CreateDetector({}, context)

Input

input object
- Enable Enable

Output

output CreateDetectorResponse

DeleteDetector

amazonaws_guardduty.DeleteDetector({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string

Output

output DeleteDetectorResponse

GetDetector

amazonaws_guardduty.GetDetector({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string

Output

output GetDetectorResponse

UpdateDetector

amazonaws_guardduty.UpdateDetector({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- Enable Enable

Output

output UpdateDetectorResponse

ListFindings

amazonaws_guardduty.ListFindings({
  "detectorId": ""
}, context)

Input

input object
- MaxResults string
- NextToken string
- detectorId required string
- FindingCriteria FindingCriteria
- MaxResults MaxResults
- NextToken NextToken
- SortCriteria SortCriteria

Output

output ListFindingsResponse

ArchiveFindings

amazonaws_guardduty.ArchiveFindings({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- FindingIds FindingIds

Output

output ArchiveFindingsResponse

CreateSampleFindings

amazonaws_guardduty.CreateSampleFindings({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- FindingTypes FindingTypes

Output

output CreateSampleFindingsResponse

UpdateFindingsFeedback

amazonaws_guardduty.UpdateFindingsFeedback({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- Comments Comments
- Feedback Feedback
- FindingIds FindingIds

Output

output UpdateFindingsFeedbackResponse

GetFindings

amazonaws_guardduty.GetFindings({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- FindingIds FindingIds
- SortCriteria SortCriteria

Output

output GetFindingsResponse

GetFindingsStatistics

amazonaws_guardduty.GetFindingsStatistics({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- FindingCriteria FindingCriteria
- FindingStatisticTypes FindingStatisticTypes

Output

output GetFindingsStatisticsResponse

UnarchiveFindings

amazonaws_guardduty.UnarchiveFindings({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- FindingIds FindingIds

Output

output UnarchiveFindingsResponse

ListIPSets

amazonaws_guardduty.ListIPSets({
  "detectorId": ""
}, context)

Input

input object
- MaxResults string
- NextToken string
- detectorId required string

Output

output ListIPSetsResponse

CreateIPSet

amazonaws_guardduty.CreateIPSet({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- Activate Activate
- Format IpSetFormat
- Location Location
- Name Name

Output

output CreateIPSetResponse

DeleteIPSet

amazonaws_guardduty.DeleteIPSet({
  "detectorId": "",
  "ipSetId": ""
}, context)

Input

input object
- detectorId required string
- ipSetId required string

Output

output DeleteIPSetResponse

GetIPSet

amazonaws_guardduty.GetIPSet({
  "detectorId": "",
  "ipSetId": ""
}, context)

Input

input object
- detectorId required string
- ipSetId required string

Output

output GetIPSetResponse

UpdateIPSet

amazonaws_guardduty.UpdateIPSet({
  "detectorId": "",
  "ipSetId": ""
}, context)

Input

input object
- detectorId required string
- ipSetId required string
- Activate Activate
- Location Location
- Name Name

Output

output UpdateIPSetResponse

GetMasterAccount

amazonaws_guardduty.GetMasterAccount({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string

Output

output GetMasterAccountResponse

AcceptInvitation

amazonaws_guardduty.AcceptInvitation({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- InvitationId InvitationId
- MasterId MasterId

Output

output AcceptInvitationResponse

DisassociateFromMasterAccount

amazonaws_guardduty.DisassociateFromMasterAccount({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string

Output

output DisassociateFromMasterAccountResponse

ListMembers

amazonaws_guardduty.ListMembers({
  "detectorId": ""
}, context)

Input

input object
- MaxResults string
- NextToken string
- detectorId required string

Output

output ListMembersResponse

CreateMembers

amazonaws_guardduty.CreateMembers({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- AccountDetails AccountDetails

Output

output CreateMembersResponse

DeleteMembers

amazonaws_guardduty.DeleteMembers({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- AccountIds AccountIds

Output

output DeleteMembersResponse

DisassociateMembers

amazonaws_guardduty.DisassociateMembers({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- AccountIds AccountIds

Output

output DisassociateMembersResponse

GetMembers

amazonaws_guardduty.GetMembers({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- AccountIds AccountIds

Output

output GetMembersResponse

InviteMembers

amazonaws_guardduty.InviteMembers({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- AccountIds AccountIds
- Message Message

Output

output InviteMembersResponse

StartMonitoringMembers

amazonaws_guardduty.StartMonitoringMembers({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- AccountIds AccountIds

Output

output StartMonitoringMembersResponse

StopMonitoringMembers

amazonaws_guardduty.StopMonitoringMembers({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- AccountIds AccountIds

Output

output StopMonitoringMembersResponse

ListThreatIntelSets

amazonaws_guardduty.ListThreatIntelSets({
  "detectorId": ""
}, context)

Input

input object
- MaxResults string
- NextToken string
- detectorId required string

Output

output ListThreatIntelSetsResponse

CreateThreatIntelSet

amazonaws_guardduty.CreateThreatIntelSet({
  "detectorId": ""
}, context)

Input

input object
- detectorId required string
- Activate Activate
- Format ThreatIntelSetFormat
- Location Location
- Name Name

Output

output CreateThreatIntelSetResponse

DeleteThreatIntelSet

amazonaws_guardduty.DeleteThreatIntelSet({
  "detectorId": "",
  "threatIntelSetId": ""
}, context)

Input

input object
- detectorId required string
- threatIntelSetId required string

Output

output DeleteThreatIntelSetResponse

GetThreatIntelSet

amazonaws_guardduty.GetThreatIntelSet({
  "detectorId": "",
  "threatIntelSetId": ""
}, context)

Input

input object
- detectorId required string
- threatIntelSetId required string

Output

output GetThreatIntelSetResponse

UpdateThreatIntelSet

amazonaws_guardduty.UpdateThreatIntelSet({
  "detectorId": "",
  "threatIntelSetId": ""
}, context)

Input

input object
- detectorId required string
- threatIntelSetId required string
- Activate Activate
- Location Location
- Name Name

Output

output UpdateThreatIntelSetResponse

ListInvitations

amazonaws_guardduty.ListInvitations({}, context)

Input

input object
- MaxResults string
- NextToken string

Output

output ListInvitationsResponse

GetInvitationsCount

amazonaws_guardduty.GetInvitationsCount({}, context)

Input

input object

Output

output GetInvitationsCountResponse

DeclineInvitations

amazonaws_guardduty.DeclineInvitations({}, context)

Input

input object
- AccountIds AccountIds

Output

output DeclineInvitationsResponse

DeleteInvitations

amazonaws_guardduty.DeleteInvitations({}, context)

Input

input object
- AccountIds AccountIds

Output

output DeleteInvitationsResponse

Definitions

AcceptInvitationRequest

AcceptInvitationRequest object: AcceptInvitation request body.
- InvitationId InvitationId
- MasterId MasterId

AcceptInvitationResponse

AcceptInvitationResponse object

AccessKeyDetails

AccessKeyDetails object: The IAM access key details (IAM user information) of a user that engaged in the activity that prompted GuardDuty to generate a finding.
- AccessKeyId __string
- PrincipalId __string
- UserName __string
- UserType __string

AccountDetail

AccountDetail object: An object containing the member's accountId and email address.
- AccountId AccountId
- Email Email

AccountDetails

AccountDetails array: A list of account/email pairs.
- items AccountDetail

AccountId

AccountId string: AWS account ID.

AccountIds

AccountIds array: A list of account IDs.
- items __string

Action

Action object: Information about the activity described in a finding.
- ActionType __string
- AwsApiCallAction AwsApiCallAction
- DnsRequestAction DnsRequestAction
- NetworkConnectionAction NetworkConnectionAction
- PortProbeAction PortProbeAction

Activate

Activate boolean: Whether we should start processing the list immediately or not.

ArchiveFindingsRequest

ArchiveFindingsRequest object: ArchiveFindings request body.
- FindingIds FindingIds

ArchiveFindingsResponse

ArchiveFindingsResponse object

AwsApiCallAction

AwsApiCallAction object: Information about the AWS_API_CALL action described in this finding.
- Api __string
- CallerType __string
- DomainDetails DomainDetails
- RemoteIpDetails RemoteIpDetails
- ServiceName __string

BadRequestException

BadRequestException object: Error response object.
- Message __string
- Type __string

City

City object: City information of the remote IP address.
- CityName __string

Comments

Comments string: Additional feedback about the GuardDuty findings.

Condition

Condition object: Finding attribute (for example, accountId) for which conditions and values must be specified when querying findings.
- Eq Eq
- Gt __integer
- Gte __integer
- Lt __integer
- Lte __integer
- Neq Neq

CountBySeverityFindingStatistic

CountBySeverityFindingStatistic integer: The count of findings for the given severity.

Country

Country object: Country information of the remote IP address.
- CountryCode __string
- CountryName __string

CreateDetectorRequest

CreateDetectorRequest object: CreateDetector request body.
- Enable Enable

CreateDetectorResponse

CreateDetectorResponse object
- DetectorId DetectorId

CreateIPSetRequest

CreateIPSetRequest object: CreateIPSet request body.
- Activate Activate
- Format IpSetFormat
- Location Location
- Name Name

CreateIPSetResponse

CreateIPSetResponse object
- IpSetId IpSetId

CreateMembersRequest

CreateMembersRequest object: CreateMembers request body.
- AccountDetails AccountDetails

CreateMembersResponse

CreateMembersResponse object
- UnprocessedAccounts UnprocessedAccounts

CreateSampleFindingsRequest

CreateSampleFindingsRequest object: CreateSampleFindings request body.
- FindingTypes FindingTypes

CreateSampleFindingsResponse

CreateSampleFindingsResponse object

CreateThreatIntelSetRequest

CreateThreatIntelSetRequest object: CreateThreatIntelSet request body.
- Activate Activate
- Format ThreatIntelSetFormat
- Location Location
- Name Name

CreateThreatIntelSetResponse

CreateThreatIntelSetResponse object
- ThreatIntelSetId ThreatIntelSetId

CreatedAt

CreatedAt string: The first time a resource was created. The format will be ISO-8601.

DeclineInvitationsRequest

DeclineInvitationsRequest object: DeclineInvitations request body.
- AccountIds AccountIds

DeclineInvitationsResponse

DeclineInvitationsResponse object
- UnprocessedAccounts UnprocessedAccounts

DeleteDetectorRequest

DeleteDetectorRequest object

DeleteDetectorResponse

DeleteDetectorResponse object

DeleteIPSetRequest

DeleteIPSetRequest object

DeleteIPSetResponse

DeleteIPSetResponse object

DeleteInvitationsRequest

DeleteInvitationsRequest object: DeleteInvitations request body.
- AccountIds AccountIds

DeleteInvitationsResponse

DeleteInvitationsResponse object
- UnprocessedAccounts UnprocessedAccounts

DeleteMembersRequest

DeleteMembersRequest object: DeleteMembers request body.
- AccountIds AccountIds

DeleteMembersResponse

DeleteMembersResponse object
- UnprocessedAccounts UnprocessedAccounts

DeleteThreatIntelSetRequest

DeleteThreatIntelSetRequest object

DeleteThreatIntelSetResponse

DeleteThreatIntelSetResponse object

DetectorId

DetectorId string: The unique identifier for a detector.

DetectorIds

DetectorIds array: A list of detector Ids.
- items DetectorId

DetectorStatus

DetectorStatus string (values: ENABLED, DISABLED): The status of detector.

DisassociateFromMasterAccountRequest

DisassociateFromMasterAccountRequest object

DisassociateFromMasterAccountResponse

DisassociateFromMasterAccountResponse object

DisassociateMembersRequest

DisassociateMembersRequest object: DisassociateMembers request body.
- AccountIds AccountIds

DisassociateMembersResponse

DisassociateMembersResponse object
- UnprocessedAccounts UnprocessedAccounts

DnsRequestAction

DnsRequestAction object: Information about the DNS_REQUEST action described in this finding.
- Domain Domain

Domain

Domain string: A domain name.

DomainDetails

DomainDetails object: Domain information for the AWS API call.

Email

Email string: Member account's email address.

Enable

Enable boolean: A boolean value that specifies whether the detector is to be enabled.

Eq

Eq array: Represents the equal condition to be applied to a single field when querying for findings.
- items __string

ErrorResponse

ErrorResponse object: Error response object.
- Message __string
- Type __string

Feedback

Feedback string (values: USEFUL, NOT_USEFUL): Finding Feedback Value

Finding

Finding object: Representation of a abnormal or suspicious activity.
- AccountId __string
- Arn __string
- Confidence __double
- CreatedAt CreatedAt
- Description __string
- Id __string
- Partition __string
- Region __string
- Resource Resource
- SchemaVersion __string
- Service Service
- Severity __double
- Title __string
- Type __string
- UpdatedAt UpdatedAt

FindingCriteria

FindingCriteria object: Represents the criteria used for querying findings.
- Criterion MapOfCondition

FindingId

FindingId string: The unique identifier for the Finding

FindingIds

FindingIds array: The list of the Findings.
- items FindingId

FindingStatisticType

FindingStatisticType string (values: COUNT_BY_SEVERITY): The types of finding statistics.

FindingStatisticTypes

FindingStatisticTypes array: The list of the finding statistics.
- items FindingStatisticType

FindingStatistics

FindingStatistics object: Finding statistics object.
- CountBySeverity MapOfCountBySeverityFindingStatistic

FindingType

FindingType string: The finding type for the finding

FindingTypes

FindingTypes array: The list of the finding types.
- items FindingType

Findings

Findings array: A list of findings.
- items Finding

GeoLocation

GeoLocation object: Location information of the remote IP address.
- Lat __double
- Lon __double

GetDetectorRequest

GetDetectorRequest object

GetDetectorResponse

GetDetectorResponse object
- CreatedAt CreatedAt
- ServiceRole ServiceRole
- Status DetectorStatus
- UpdatedAt UpdatedAt

GetFindingsRequest

GetFindingsRequest object: GetFindings request body.
- FindingIds FindingIds
- SortCriteria SortCriteria

GetFindingsResponse

GetFindingsResponse object
- Findings Findings

GetFindingsStatisticsRequest

GetFindingsStatisticsRequest object: GetFindingsStatistics request body.
- FindingCriteria FindingCriteria
- FindingStatisticTypes FindingStatisticTypes

GetFindingsStatisticsResponse

GetFindingsStatisticsResponse object
- FindingStatistics FindingStatistics

GetIPSetRequest

GetIPSetRequest object

GetIPSetResponse

GetIPSetResponse object
- Format IpSetFormat
- Location Location
- Name Name
- Status IpSetStatus

GetInvitationsCountRequest

GetInvitationsCountRequest object

GetInvitationsCountResponse

GetInvitationsCountResponse object
- InvitationsCount __integer

GetMasterAccountRequest

GetMasterAccountRequest object

GetMasterAccountResponse

GetMasterAccountResponse object
- Master Master

GetMembersRequest

GetMembersRequest object: GetMembers request body.
- AccountIds AccountIds

GetMembersResponse

GetMembersResponse object
- Members Members
- UnprocessedAccounts UnprocessedAccounts

GetThreatIntelSetRequest

GetThreatIntelSetRequest object

GetThreatIntelSetResponse

GetThreatIntelSetResponse object
- Format ThreatIntelSetFormat
- Location Location
- Name Name
- Status ThreatIntelSetStatus

IamInstanceProfile

IamInstanceProfile object: The profile information of the EC2 instance.
- Arn __string
- Id __string

InstanceDetails

InstanceDetails object: The information about the EC2 instance associated with the activity that prompted GuardDuty to generate a finding.
- AvailabilityZone __string
- IamInstanceProfile IamInstanceProfile
- ImageId __string
- InstanceId __string
- InstanceState __string
- InstanceType __string
- LaunchTime __string
- NetworkInterfaces NetworkInterfaces
- Platform __string
- ProductCodes ProductCodes
- Tags Tags

InternalServerErrorException

InternalServerErrorException object: Error response object.
- Message __string
- Type __string

Invitation

Invitation object: Invitation from an AWS account to become the current account's master.
- AccountId __string
- InvitationId InvitationId
- InvitedAt InvitedAt
- RelationshipStatus __string

InvitationId

InvitationId string: This value is used to validate the master account to the member account.

Invitations

Invitations array: A list of invitation descriptions.
- items Invitation

InviteMembersRequest

InviteMembersRequest object: InviteMembers request body.
- AccountIds AccountIds
- Message Message

InviteMembersResponse

InviteMembersResponse object
- UnprocessedAccounts UnprocessedAccounts

InvitedAt

InvitedAt string: Timestamp at which a member has been invited. The format will be ISO-8601.

IpSetFormat

IpSetFormat string (values: TXT, STIX, OTX_CSV, ALIEN_VAULT, PROOF_POINT, FIRE_EYE): The format of the ipSet.

IpSetId

IpSetId string: The unique identifier for an IP Set

IpSetIds

IpSetIds array: A list of the IP set IDs
- items IpSetId

IpSetStatus

IpSetStatus string (values: INACTIVE, ACTIVATING, ACTIVE, DEACTIVATING, ERROR, DELETE_PENDING, DELETED): The status of ipSet file uploaded.

Ipv6Address

Ipv6Address string: IpV6 address of the EC2 instance.

Ipv6Addresses

Ipv6Addresses array: A list of EC2 instance IPv6 address information.
- items Ipv6Address

ListDetectorsRequest

ListDetectorsRequest object

ListDetectorsResponse

ListDetectorsResponse object
- DetectorIds DetectorIds
- NextToken NextToken

ListFindingsRequest

ListFindingsRequest object: ListFindings request body.
- FindingCriteria FindingCriteria
- MaxResults MaxResults
- NextToken NextToken
- SortCriteria SortCriteria

ListFindingsResponse

ListFindingsResponse object
- FindingIds FindingIds
- NextToken NextToken

ListIPSetsRequest

ListIPSetsRequest object

ListIPSetsResponse

ListIPSetsResponse object
- IpSetIds IpSetIds
- NextToken NextToken

ListInvitationsRequest

ListInvitationsRequest object

ListInvitationsResponse

ListInvitationsResponse object
- Invitations Invitations
- NextToken NextToken

ListMembersRequest

ListMembersRequest object

ListMembersResponse

ListMembersResponse object
- Members Members
- NextToken NextToken

ListOfPortProbeDetail

ListOfPortProbeDetail array
- items PortProbeDetail

ListThreatIntelSetsRequest

ListThreatIntelSetsRequest object

ListThreatIntelSetsResponse

ListThreatIntelSetsResponse object
- NextToken NextToken
- ThreatIntelSetIds ThreatIntelSetIds

LocalPortDetails

LocalPortDetails object: Local port information of the connection.
- Port __integer
- PortName __string

Location

Location string: The location of the S3 bucket where the list resides. For example (https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key)

MapOfCondition

MapOfCondition array
- items object
  - key __string
  - value Condition

MapOfCountBySeverityFindingStatistic

MapOfCountBySeverityFindingStatistic array
- items object
  - key __string
  - value CountBySeverityFindingStatistic

Master

Master object: Contains details about the master account.
- AccountId __string
- InvitationId InvitationId
- InvitedAt InvitedAt
- RelationshipStatus __string

MasterId

MasterId string: The master account ID.

MaxResults

MaxResults integer

Member

Member object: Contains details about the member account.
- AccountId AccountId
- DetectorId DetectorId
- Email Email
- InvitedAt InvitedAt
- MasterId MasterId
- RelationshipStatus __string
- UpdatedAt UpdatedAt

Members

Members array: A list of member descriptions.
- items Member

Message

Message string: The invitation message that you want to send to the accounts that you're inviting to GuardDuty as members.

Name

Name string: The user-friendly name to identify the list.

Neq

Neq array: Represents the not equal condition to be applied to a single field when querying for findings.
- items __string

NetworkConnectionAction

NetworkConnectionAction object: Information about the NETWORK_CONNECTION action described in this finding.
- Blocked __boolean
- ConnectionDirection __string
- LocalPortDetails LocalPortDetails
- Protocol __string
- RemoteIpDetails RemoteIpDetails
- RemotePortDetails RemotePortDetails

NetworkInterface

NetworkInterface object: The network interface information of the EC2 instance.
- Ipv6Addresses Ipv6Addresses
- PrivateDnsName PrivateDnsName
- PrivateIpAddress PrivateIpAddress
- PrivateIpAddresses PrivateIpAddresses
- PublicDnsName __string
- PublicIp __string
- SecurityGroups SecurityGroups
- SubnetId __string
- VpcId __string

NetworkInterfaces

NetworkInterfaces array: The network interface information of the EC2 instance.
- items NetworkInterface

NextToken

NextToken string: You can use this parameter when paginating results. Set the value of this parameter to null on your first call to the list action. For subsequent calls to the action fill nextToken in the request with the value of NextToken from the previous response to continue listing data.

OrderBy

OrderBy string (values: ASC, DESC)

Organization

Organization object: ISP Organization information of the remote IP address.
- Asn __string
- AsnOrg __string
- Isp __string
- Org __string

PortProbeAction

PortProbeAction object: Information about the PORT_PROBE action described in this finding.
- Blocked __boolean
- PortProbeDetails ListOfPortProbeDetail

PortProbeDetail

PortProbeDetail object: Details about the port probe finding.
- LocalPortDetails LocalPortDetails
- RemoteIpDetails RemoteIpDetails

PrivateDnsName

PrivateDnsName string: Private DNS name of the EC2 instance.

PrivateIpAddress

PrivateIpAddress string: Private IP address of the EC2 instance.

PrivateIpAddressDetails

PrivateIpAddressDetails object: Other private IP address information of the EC2 instance.
- PrivateDnsName PrivateDnsName
- PrivateIpAddress PrivateIpAddress

PrivateIpAddresses

PrivateIpAddresses array: Other private IP address information of the EC2 instance.
- items PrivateIpAddressDetails

ProductCode

ProductCode object: The product code of the EC2 instance.
- Code __string
- ProductType __string

ProductCodes

ProductCodes array: The product code of the EC2 instance.
- items ProductCode

RemoteIpDetails

RemoteIpDetails object: Remote IP information of the connection.
- City City
- Country Country
- GeoLocation GeoLocation
- IpAddressV4 __string
- Organization Organization

RemotePortDetails

RemotePortDetails object: Remote port information of the connection.
- Port __integer
- PortName __string

Resource

Resource object: The AWS resource associated with the activity that prompted GuardDuty to generate a finding.
- AccessKeyDetails AccessKeyDetails
- InstanceDetails InstanceDetails
- ResourceType __string

SecurityGroup

SecurityGroup object: Security groups associated with the EC2 instance.
- GroupId __string
- GroupName __string

SecurityGroups

SecurityGroups array: Security groups associated with the EC2 instance.
- items SecurityGroup

Service

Service object: Additional information assigned to the generated finding by GuardDuty.
- Action Action
- Archived __boolean
- Count __integer
- DetectorId DetectorId
- EventFirstSeen __string
- EventLastSeen __string
- ResourceRole __string
- ServiceName __string
- UserFeedback __string

ServiceRole

ServiceRole string: Customer serviceRole name or ARN for accessing customer resources

SortCriteria

SortCriteria object: Represents the criteria used for sorting findings.
- AttributeName __string
- OrderBy OrderBy

StartMonitoringMembersRequest

StartMonitoringMembersRequest object: StartMonitoringMembers request body.
- AccountIds AccountIds

StartMonitoringMembersResponse

StartMonitoringMembersResponse object
- UnprocessedAccounts UnprocessedAccounts

StopMonitoringMembersRequest

StopMonitoringMembersRequest object: StopMonitoringMembers request body.
- AccountIds AccountIds

StopMonitoringMembersResponse

StopMonitoringMembersResponse object
- UnprocessedAccounts UnprocessedAccounts

ThreatIntelSetFormat

ThreatIntelSetFormat string (values: TXT, STIX, OTX_CSV, ALIEN_VAULT, PROOF_POINT, FIRE_EYE): The format of the threatIntelSet.

ThreatIntelSetId

ThreatIntelSetId string: The unique identifier for an threat intel set

ThreatIntelSetIds

ThreatIntelSetIds array: The list of the threat intel set IDs
- items ThreatIntelSetId

ThreatIntelSetStatus

ThreatIntelSetStatus string (values: INACTIVE, ACTIVATING, ACTIVE, DEACTIVATING, ERROR, DELETE_PENDING, DELETED): The status of threatIntelSet file uploaded.

UnarchiveFindingsRequest

UnarchiveFindingsRequest object: UnarchiveFindings request body.
- FindingIds FindingIds

UnarchiveFindingsResponse

UnarchiveFindingsResponse object

UnprocessedAccount

UnprocessedAccount object: An object containing the unprocessed account and a result string explaining why it was unprocessed.
- AccountId __string
- Result __string

UnprocessedAccounts

UnprocessedAccounts array: A list of objects containing the unprocessed account and a result string explaining why it was unprocessed.
- items UnprocessedAccount

UpdateDetectorRequest

UpdateDetectorRequest object: UpdateDetector request body.
- Enable Enable

UpdateDetectorResponse

UpdateDetectorResponse object

UpdateFindingsFeedbackRequest

UpdateFindingsFeedbackRequest object: UpdateFindingsFeedback request body.
- Comments Comments
- Feedback Feedback
- FindingIds FindingIds

UpdateFindingsFeedbackResponse

UpdateFindingsFeedbackResponse object

UpdateIPSetRequest

UpdateIPSetRequest object: UpdateIPSet request body.
- Activate Activate
- Location Location
- Name Name

UpdateIPSetResponse

UpdateIPSetResponse object

UpdateThreatIntelSetRequest

UpdateThreatIntelSetRequest object: UpdateThreatIntelSet request body.
- Activate Activate
- Location Location
- Name Name

UpdateThreatIntelSetResponse

UpdateThreatIntelSetResponse object

UpdatedAt

UpdatedAt string: The first time a resource was created. The format will be ISO-8601.

__boolean

__boolean boolean

__double

__double number

__integer

__integer integer

__string

__string string

__timestamp

__timestamp string

datafire aws-sdk

@infinitebrahmanuniverse/nolb-_datafire_am @everything-registry/sub-chunk-220

5.0.0

7 years ago

4.0.0

8 years ago