NAME
Paws::SecurityHub::AwsSecurityFindingFilters
USAGE
This class represents one of two things:
Arguments in a call to a service
Use the attributes of this class as arguments to methods. You shouldn't make instances of this class. Each attribute should be used as a named argument in the calls that expect this type of object.
As an example, if Att1 is expected to be a Paws::SecurityHub::AwsSecurityFindingFilters object:
$service_obj->Method(Att1 => { AwsAccountId => $value, ..., WorkflowState => $value });Results returned from an API call
Use accessors for each attribute. If Att1 is expected to be an Paws::SecurityHub::AwsSecurityFindingFilters object:
$result = $service_obj->Method(...);
$result->Att1->AwsAccountIdDESCRIPTION
A collection of attributes that are applied to all active Security Hub-aggregated findings and that result in a subset of findings that are included in this insight.
ATTRIBUTES
AwsAccountId => ArrayRef[Paws::SecurityHub::StringFilter]
The AWS account ID that a finding is generated in.
CompanyName => ArrayRef[Paws::SecurityHub::StringFilter]
The name of the findings provider (company) that owns the solution (product) that generates findings.
ComplianceStatus => ArrayRef[Paws::SecurityHub::StringFilter]
Exclusive to findings that are generated as the result of a check run against a specific rule in a supported standard, such as CIS AWS Foundations. Contains compliance-related finding details.
Confidence => ArrayRef[Paws::SecurityHub::NumberFilter]
A finding's confidence. Confidence is defined as the likelihood that a finding accurately identifies the behavior or issue that it was intended to identify.
Confidence is scored on a 0-100 basis using a ratio scale, where 0 means zero percent confidence and 100 means 100 percent confidence.
CreatedAt => ArrayRef[Paws::SecurityHub::DateFilter]
An ISO8601-formatted timestamp that indicates when the security-findings provider captured the potential security issue that a finding captured.
Criticality => ArrayRef[Paws::SecurityHub::NumberFilter]
The level of importance assigned to the resources associated with the finding.
A score of 0 means that the underlying resources have no criticality, and a score of 100 is reserved for the most critical resources.
Description => ArrayRef[Paws::SecurityHub::StringFilter]
A finding's description.
FirstObservedAt => ArrayRef[Paws::SecurityHub::DateFilter]
An ISO8601-formatted timestamp that indicates when the security-findings provider first observed the potential security issue that a finding captured.
GeneratorId => ArrayRef[Paws::SecurityHub::StringFilter]
The identifier for the solution-specific component (a discrete unit of logic) that generated a finding. In various security-findings providers' solutions, this generator can be called a rule, a check, a detector, a plug-in, etc.
Id => ArrayRef[Paws::SecurityHub::StringFilter]
The security findings provider-specific identifier for a finding.
Keyword => ArrayRef[Paws::SecurityHub::KeywordFilter]
A keyword for a finding.
LastObservedAt => ArrayRef[Paws::SecurityHub::DateFilter]
An ISO8601-formatted timestamp that indicates when the security-findings provider most recently observed the potential security issue that a finding captured.
MalwareName => ArrayRef[Paws::SecurityHub::StringFilter]
The name of the malware that was observed.
MalwarePath => ArrayRef[Paws::SecurityHub::StringFilter]
The filesystem path of the malware that was observed.
MalwareState => ArrayRef[Paws::SecurityHub::StringFilter]
The state of the malware that was observed.
MalwareType => ArrayRef[Paws::SecurityHub::StringFilter]
The type of the malware that was observed.
NetworkDestinationDomain => ArrayRef[Paws::SecurityHub::StringFilter]
The destination domain of network-related information about a finding.
NetworkDestinationIpV4 => ArrayRef[Paws::SecurityHub::IpFilter]
The destination IPv4 address of network-related information about a finding.
NetworkDestinationIpV6 => ArrayRef[Paws::SecurityHub::IpFilter]
The destination IPv6 address of network-related information about a finding.
NetworkDestinationPort => ArrayRef[Paws::SecurityHub::NumberFilter]
The destination port of network-related information about a finding.
NetworkDirection => ArrayRef[Paws::SecurityHub::StringFilter]
Indicates the direction of network traffic associated with a finding.
NetworkProtocol => ArrayRef[Paws::SecurityHub::StringFilter]
The protocol of network-related information about a finding.
NetworkSourceDomain => ArrayRef[Paws::SecurityHub::StringFilter]
The source domain of network-related information about a finding.
NetworkSourceIpV4 => ArrayRef[Paws::SecurityHub::IpFilter]
The source IPv4 address of network-related information about a finding.
NetworkSourceIpV6 => ArrayRef[Paws::SecurityHub::IpFilter]
The source IPv6 address of network-related information about a finding.
NetworkSourceMac => ArrayRef[Paws::SecurityHub::StringFilter]
The source media access control (MAC) address of network-related information about a finding.
NetworkSourcePort => ArrayRef[Paws::SecurityHub::NumberFilter]
The source port of network-related information about a finding.
NoteText => ArrayRef[Paws::SecurityHub::StringFilter]
The text of a note.
NoteUpdatedAt => ArrayRef[Paws::SecurityHub::DateFilter]
The timestamp of when the note was updated.
NoteUpdatedBy => ArrayRef[Paws::SecurityHub::StringFilter]
The principal that created a note.
ProcessLaunchedAt => ArrayRef[Paws::SecurityHub::DateFilter]
The date/time that the process was launched.
ProcessName => ArrayRef[Paws::SecurityHub::StringFilter]
The name of the process.
ProcessParentPid => ArrayRef[Paws::SecurityHub::NumberFilter]
The parent process ID.
ProcessPath => ArrayRef[Paws::SecurityHub::StringFilter]
The path to the process executable.
ProcessPid => ArrayRef[Paws::SecurityHub::NumberFilter]
The process ID.
ProcessTerminatedAt => ArrayRef[Paws::SecurityHub::DateFilter]
The date/time that the process was terminated.
ProductArn => ArrayRef[Paws::SecurityHub::StringFilter]
The ARN generated by Security Hub that uniquely identifies a third-party company (security findings provider) after this provider's product (solution that generates findings) is registered with Security Hub.
ProductFields => ArrayRef[Paws::SecurityHub::MapFilter]
A data type where security-findings providers can include additional solution-specific details that aren't part of the defined AwsSecurityFinding format.
ProductName => ArrayRef[Paws::SecurityHub::StringFilter]
The name of the solution (product) that generates findings.
RecommendationText => ArrayRef[Paws::SecurityHub::StringFilter]
The recommendation of what to do about the issue described in a finding.
RecordState => ArrayRef[Paws::SecurityHub::StringFilter]
The updated record state for the finding.
RelatedFindingsId => ArrayRef[Paws::SecurityHub::StringFilter]
The solution-generated identifier for a related finding.
RelatedFindingsProductArn => ArrayRef[Paws::SecurityHub::StringFilter]
The ARN of the solution that generated a related finding.
ResourceAwsEc2InstanceIamInstanceProfileArn => ArrayRef[Paws::SecurityHub::StringFilter]
The IAM profile ARN of the instance.
ResourceAwsEc2InstanceImageId => ArrayRef[Paws::SecurityHub::StringFilter]
The Amazon Machine Image (AMI) ID of the instance.
ResourceAwsEc2InstanceIpV4Addresses => ArrayRef[Paws::SecurityHub::IpFilter]
The IPv4 addresses associated with the instance.
ResourceAwsEc2InstanceIpV6Addresses => ArrayRef[Paws::SecurityHub::IpFilter]
The IPv6 addresses associated with the instance.
ResourceAwsEc2InstanceKeyName => ArrayRef[Paws::SecurityHub::StringFilter]
The key name associated with the instance.
ResourceAwsEc2InstanceLaunchedAt => ArrayRef[Paws::SecurityHub::DateFilter]
The date and time the instance was launched.
ResourceAwsEc2InstanceSubnetId => ArrayRef[Paws::SecurityHub::StringFilter]
The identifier of the subnet that the instance was launched in.
ResourceAwsEc2InstanceType => ArrayRef[Paws::SecurityHub::StringFilter]
The instance type of the instance.
ResourceAwsEc2InstanceVpcId => ArrayRef[Paws::SecurityHub::StringFilter]
The identifier of the VPC that the instance was launched in.
ResourceAwsIamAccessKeyCreatedAt => ArrayRef[Paws::SecurityHub::DateFilter]
The creation date/time of the IAM access key related to a finding.
ResourceAwsIamAccessKeyStatus => ArrayRef[Paws::SecurityHub::StringFilter]
The status of the IAM access key related to a finding.
ResourceAwsIamAccessKeyUserName => ArrayRef[Paws::SecurityHub::StringFilter]
The user associated with the IAM access key related to a finding.
ResourceAwsS3BucketOwnerId => ArrayRef[Paws::SecurityHub::StringFilter]
The canonical user ID of the owner of the S3 bucket.
ResourceAwsS3BucketOwnerName => ArrayRef[Paws::SecurityHub::StringFilter]
The display name of the owner of the S3 bucket.
ResourceContainerImageId => ArrayRef[Paws::SecurityHub::StringFilter]
The identifier of the image related to a finding.
ResourceContainerImageName => ArrayRef[Paws::SecurityHub::StringFilter]
The name of the image related to a finding.
ResourceContainerLaunchedAt => ArrayRef[Paws::SecurityHub::DateFilter]
The date/time that the container was started.
ResourceContainerName => ArrayRef[Paws::SecurityHub::StringFilter]
The name of the container related to a finding.
ResourceDetailsOther => ArrayRef[Paws::SecurityHub::MapFilter]
The details of a resource that doesn't have a specific subfield for the resource type defined.
ResourceId => ArrayRef[Paws::SecurityHub::StringFilter]
The canonical identifier for the given resource type.
ResourcePartition => ArrayRef[Paws::SecurityHub::StringFilter]
The canonical AWS partition name that the Region is assigned to.
ResourceRegion => ArrayRef[Paws::SecurityHub::StringFilter]
The canonical AWS external Region name where this resource is located.
ResourceTags => ArrayRef[Paws::SecurityHub::MapFilter]
A list of AWS tags associated with a resource at the time the finding was processed.
ResourceType => ArrayRef[Paws::SecurityHub::StringFilter]
Specifies the type of the resource that details are provided for.
SeverityLabel => ArrayRef[Paws::SecurityHub::StringFilter]
The label of a finding's severity.
SeverityNormalized => ArrayRef[Paws::SecurityHub::NumberFilter]
The normalized severity of a finding.
SeverityProduct => ArrayRef[Paws::SecurityHub::NumberFilter]
The native severity as defined by the security-findings provider's solution that generated the finding.
SourceUrl => ArrayRef[Paws::SecurityHub::StringFilter]
A URL that links to a page about the current finding in the security-findings provider's solution.
ThreatIntelIndicatorCategory => ArrayRef[Paws::SecurityHub::StringFilter]
The category of a threat intelligence indicator.
ThreatIntelIndicatorLastObservedAt => ArrayRef[Paws::SecurityHub::DateFilter]
The date/time of the last observation of a threat intelligence indicator.
ThreatIntelIndicatorSource => ArrayRef[Paws::SecurityHub::StringFilter]
The source of the threat intelligence.
ThreatIntelIndicatorSourceUrl => ArrayRef[Paws::SecurityHub::StringFilter]
The URL for more details from the source of the threat intelligence.
ThreatIntelIndicatorType => ArrayRef[Paws::SecurityHub::StringFilter]
The type of a threat intelligence indicator.
ThreatIntelIndicatorValue => ArrayRef[Paws::SecurityHub::StringFilter]
The value of a threat intelligence indicator.
Title => ArrayRef[Paws::SecurityHub::StringFilter]
A finding's title.
Type => ArrayRef[Paws::SecurityHub::StringFilter]
A finding type in the format of namespace/category/classifier that classifies a finding.
UpdatedAt => ArrayRef[Paws::SecurityHub::DateFilter]
An ISO8601-formatted timestamp that indicates when the security-findings provider last updated the finding record.
UserDefinedFields => ArrayRef[Paws::SecurityHub::MapFilter]
A list of name/value string pairs associated with the finding. These are custom, user-defined fields added to a finding.
VerificationState => ArrayRef[Paws::SecurityHub::StringFilter]
The veracity of a finding.
WorkflowState => ArrayRef[Paws::SecurityHub::StringFilter]
The workflow state of a finding.
SEE ALSO
This class forms part of Paws, describing an object used in Paws::SecurityHub
BUGS and CONTRIBUTIONS
The source code is located here: https://github.com/pplu/aws-sdk-perl
Please report bugs to: https://github.com/pplu/aws-sdk-perl/issues