Serialized Form

Package com.amazonaws.services.guardduty.model

Class com.amazonaws.services.guardduty.model.AcceptInvitationRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty member account.

masterId

String masterId

The account ID of the master GuardDuty account whose invitation you're accepting.

invitationId

String invitationId

The value that is used to validate the master account to the member account.

Class com.amazonaws.services.guardduty.model.AcceptInvitationResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.AccessKeyDetails extends Object implements Serializable

Serialized Fields

accessKeyId

String accessKeyId

The access key ID of the user.

principalId

String principalId

The principal ID of the user.

userName

String userName

The name of the user.

userType

String userType

The type of the user.

Class com.amazonaws.services.guardduty.model.AccountDetail extends Object implements Serializable

Serialized Fields

accountId

String accountId

The member account ID.

email

String email

The email address of the member account.

Class com.amazonaws.services.guardduty.model.Action extends Object implements Serializable

Serialized Fields

actionType

String actionType

The GuardDuty finding activity type.

awsApiCallAction

AwsApiCallAction awsApiCallAction

Information about the AWS_API_CALL action described in this finding.

dnsRequestAction

DnsRequestAction dnsRequestAction

Information about the DNS_REQUEST action described in this finding.

networkConnectionAction

NetworkConnectionAction networkConnectionAction

Information about the NETWORK_CONNECTION action described in this finding.

portProbeAction

PortProbeAction portProbeAction

Information about the PORT_PROBE action described in this finding.

Class com.amazonaws.services.guardduty.model.AdminAccount extends Object implements Serializable

Serialized Fields

adminAccountId

String adminAccountId

The AWS account ID for the account.

adminStatus

String adminStatus

Indicates whether the account is enabled as the delegated administrator.

Class com.amazonaws.services.guardduty.model.AmazonGuardDutyException extends AmazonServiceException implements Serializable

serialVersionUID:

1L

Class com.amazonaws.services.guardduty.model.ArchiveFindingsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector that specifies the GuardDuty service whose findings you want to archive.

findingIds

List<E> findingIds

The IDs of the findings that you want to archive.

Class com.amazonaws.services.guardduty.model.ArchiveFindingsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.AwsApiCallAction extends Object implements Serializable

Serialized Fields

api

String api

The AWS API name.

callerType

String callerType

The AWS API caller type.

domainDetails

DomainDetails domainDetails

The domain information for the AWS API call.

remoteIpDetails

RemoteIpDetails remoteIpDetails

The remote IP information of the connection.

serviceName

String serviceName

The AWS service name whose API was invoked.

Class com.amazonaws.services.guardduty.model.BadRequestException extends AmazonGuardDutyException implements Serializable

serialVersionUID:

1L

Serialized Fields

type

String type

The error type.

Class com.amazonaws.services.guardduty.model.City extends Object implements Serializable

Serialized Fields

cityName

String cityName

The city name of the remote IP address.

Class com.amazonaws.services.guardduty.model.Condition extends Object implements Serializable

Serialized Fields

eq

List<E> eq

Deprecated.

Represents the equal condition to be applied to a single field when querying for findings.

neq

List<E> neq

Deprecated.

Represents the not equal condition to be applied to a single field when querying for findings.

gt

Integer gt

Deprecated.

Represents a greater than condition to be applied to a single field when querying for findings.

gte

Integer gte

Deprecated.

Represents a greater than or equal condition to be applied to a single field when querying for findings.

lt

Integer lt

Deprecated.

Represents a less than condition to be applied to a single field when querying for findings.

lte

Integer lte

Deprecated.

Represents a less than or equal condition to be applied to a single field when querying for findings.

equals

List<E> equals

Represents an equal condition to be applied to a single field when querying for findings.

notEquals

List<E> notEquals

Represents a not equal condition to be applied to a single field when querying for findings.

greaterThan

Long greaterThan

Represents a greater than condition to be applied to a single field when querying for findings.

greaterThanOrEqual

Long greaterThanOrEqual

Represents a greater than or equal condition to be applied to a single field when querying for findings.

lessThan

Long lessThan

Represents a less than condition to be applied to a single field when querying for findings.

lessThanOrEqual

Long lessThanOrEqual

Represents a less than or equal condition to be applied to a single field when querying for findings.

Class com.amazonaws.services.guardduty.model.Country extends Object implements Serializable

Serialized Fields

countryCode

String countryCode

The country code of the remote IP address.

countryName

String countryName

The country name of the remote IP address.

Class com.amazonaws.services.guardduty.model.CreateDetectorRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

enable

Boolean enable

A Boolean value that specifies whether the detector is to be enabled.

clientToken

String clientToken

The idempotency token for the create request.

findingPublishingFrequency

String findingPublishingFrequency

An enum value that specifies how frequently updated findings are exported.

tags

Map<K,V> tags

The tags to be added to a new detector resource.

Class com.amazonaws.services.guardduty.model.CreateDetectorResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the created detector.

Class com.amazonaws.services.guardduty.model.CreateFilterRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty account that you want to create a filter for.

name

String name

The name of the filter.

description

String description

The description of the filter.

action

String action

Specifies the action that is to be applied to the findings that match the filter.

rank

Integer rank

Specifies the position of the filter in the list of current filters. Also specifies the order in which this filter is applied to the findings.

findingCriteria

FindingCriteria findingCriteria

Represents the criteria to be used in the filter for querying findings.

You can only use the following attributes to query findings:

• accountId

• region

• confidence

• id

• resource.accessKeyDetails.accessKeyId

• resource.accessKeyDetails.principalId

• resource.accessKeyDetails.userName

• resource.accessKeyDetails.userType

• resource.instanceDetails.iamInstanceProfile.id

• resource.instanceDetails.imageId

• resource.instanceDetails.instanceId

• resource.instanceDetails.outpostArn

• resource.instanceDetails.networkInterfaces.ipv6Addresses

• resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress

• resource.instanceDetails.networkInterfaces.publicDnsName

• resource.instanceDetails.networkInterfaces.publicIp

• resource.instanceDetails.networkInterfaces.securityGroups.groupId

• resource.instanceDetails.networkInterfaces.securityGroups.groupName

• resource.instanceDetails.networkInterfaces.subnetId

• resource.instanceDetails.networkInterfaces.vpcId

• resource.instanceDetails.tags.key

• resource.instanceDetails.tags.value

• resource.resourceType

• service.action.actionType

• service.action.awsApiCallAction.api

• service.action.awsApiCallAction.callerType

• service.action.awsApiCallAction.remoteIpDetails.city.cityName

• service.action.awsApiCallAction.remoteIpDetails.country.countryName

• service.action.awsApiCallAction.remoteIpDetails.ipAddressV4

• service.action.awsApiCallAction.remoteIpDetails.organization.asn

• service.action.awsApiCallAction.remoteIpDetails.organization.asnOrg

• service.action.awsApiCallAction.serviceName

• service.action.dnsRequestAction.domain

• service.action.networkConnectionAction.blocked

• service.action.networkConnectionAction.connectionDirection

• service.action.networkConnectionAction.localPortDetails.port

• service.action.networkConnectionAction.protocol

• service.action.networkConnectionAction.remoteIpDetails.city.cityName

• service.action.networkConnectionAction.remoteIpDetails.country.countryName

• service.action.networkConnectionAction.remoteIpDetails.ipAddressV4

• service.action.networkConnectionAction.remoteIpDetails.organization.asn

• service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg

• service.action.networkConnectionAction.remotePortDetails.port

• service.additionalInfo.threatListName

• service.archived

  When this attribute is set to TRUE, only archived findings are listed. When it's set to FALSE, only unarchived findings are listed. When this attribute is not set, all existing findings are listed.

• service.resourceRole

• severity

• type

• updatedAt

  Type: ISO 8601 string format: YYYY-MM-DDTHH:MM:SS.SSSZ or YYYY-MM-DDTHH:MM:SSZ depending on whether the value contains milliseconds.

clientToken

String clientToken

The idempotency token for the create request.

tags

Map<K,V> tags

The tags to be added to a new filter resource.

Class com.amazonaws.services.guardduty.model.CreateFilterResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

name

String name

The name of the successfully created filter.

Class com.amazonaws.services.guardduty.model.CreateIPSetRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty account that you want to create an IPSet for.

name

String name

The user-friendly name to identify the IPSet.

Allowed characters are alphanumerics, spaces, hyphens (-), and underscores (_).

format

String format

The format of the file that contains the IPSet.

location

String location

The URI of the file that contains the IPSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.

activate

Boolean activate

A Boolean value that indicates whether GuardDuty is to start using the uploaded IPSet.

clientToken

String clientToken

The idempotency token for the create request.

tags

Map<K,V> tags

The tags to be added to a new IP set resource.

Class com.amazonaws.services.guardduty.model.CreateIPSetResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

ipSetId

String ipSetId

The ID of the IPSet resource.

Class com.amazonaws.services.guardduty.model.CreateMembersRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty account that you want to associate member accounts with.

accountDetails

List<E> accountDetails

A list of account ID and email address pairs of the accounts that you want to associate with the master GuardDuty account.

Class com.amazonaws.services.guardduty.model.CreateMembersResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

unprocessedAccounts

List<E> unprocessedAccounts

A list of objects that include the accountIds of the unprocessed accounts and a result string that explains why each was unprocessed.

Class com.amazonaws.services.guardduty.model.CreatePublishingDestinationRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the GuardDuty detector associated with the publishing destination.

destinationType

String destinationType

The type of resource for the publishing destination. Currently only Amazon S3 buckets are supported.

destinationProperties

DestinationProperties destinationProperties

The properties of the publishing destination, including the ARNs for the destination and the KMS key used for encryption.

clientToken

String clientToken

The idempotency token for the request.

Class com.amazonaws.services.guardduty.model.CreatePublishingDestinationResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

destinationId

String destinationId

The ID of the publishing destination that is created.

Class com.amazonaws.services.guardduty.model.CreateSampleFindingsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector to create sample findings for.

findingTypes

List<E> findingTypes

The types of sample findings to generate.

Class com.amazonaws.services.guardduty.model.CreateSampleFindingsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.CreateThreatIntelSetRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty account that you want to create a threatIntelSet for.

name

String name

A user-friendly ThreatIntelSet name displayed in all findings that are generated by activity that involves IP addresses included in this ThreatIntelSet.

format

String format

The format of the file that contains the ThreatIntelSet.

location

String location

The URI of the file that contains the ThreatIntelSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.

activate

Boolean activate

A Boolean value that indicates whether GuardDuty is to start using the uploaded ThreatIntelSet.

clientToken

String clientToken

The idempotency token for the create request.

tags

Map<K,V> tags

The tags to be added to a new threat list resource.

Class com.amazonaws.services.guardduty.model.CreateThreatIntelSetResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

threatIntelSetId

String threatIntelSetId

The ID of the ThreatIntelSet resource.

Class com.amazonaws.services.guardduty.model.DeclineInvitationsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

accountIds

List<E> accountIds

A list of account IDs of the AWS accounts that sent invitations to the current member account that you want to decline invitations from.

Class com.amazonaws.services.guardduty.model.DeclineInvitationsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

unprocessedAccounts

List<E> unprocessedAccounts

A list of objects that contain the unprocessed account and a result string that explains why it was unprocessed.

Class com.amazonaws.services.guardduty.model.DeleteDetectorRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that you want to delete.

Class com.amazonaws.services.guardduty.model.DeleteDetectorResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.DeleteFilterRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that the filter is associated with.

filterName

String filterName

The name of the filter that you want to delete.

Class com.amazonaws.services.guardduty.model.DeleteFilterResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.DeleteInvitationsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

accountIds

List<E> accountIds

A list of account IDs of the AWS accounts that sent invitations to the current member account that you want to delete invitations from.

Class com.amazonaws.services.guardduty.model.DeleteInvitationsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

unprocessedAccounts

List<E> unprocessedAccounts

A list of objects that contain the unprocessed account and a result string that explains why it was unprocessed.

Class com.amazonaws.services.guardduty.model.DeleteIPSetRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector associated with the IPSet.

ipSetId

String ipSetId

The unique ID of the IPSet to delete.

Class com.amazonaws.services.guardduty.model.DeleteIPSetResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.DeleteMembersRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty account whose members you want to delete.

accountIds

List<E> accountIds

A list of account IDs of the GuardDuty member accounts that you want to delete.

Class com.amazonaws.services.guardduty.model.DeleteMembersResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

unprocessedAccounts

List<E> unprocessedAccounts

The accounts that could not be processed.

Class com.amazonaws.services.guardduty.model.DeletePublishingDestinationRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector associated with the publishing destination to delete.

destinationId

String destinationId

The ID of the publishing destination to delete.

Class com.amazonaws.services.guardduty.model.DeletePublishingDestinationResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.DeleteThreatIntelSetRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that the threatIntelSet is associated with.

threatIntelSetId

String threatIntelSetId

The unique ID of the threatIntelSet that you want to delete.

Class com.amazonaws.services.guardduty.model.DeleteThreatIntelSetResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.DescribeOrganizationConfigurationRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector to retrieve information about the delegated administrator from.

Class com.amazonaws.services.guardduty.model.DescribeOrganizationConfigurationResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

autoEnable

Boolean autoEnable

Indicates whether GuardDuty is automatically enabled for accounts added to the organization.

memberAccountLimitReached

Boolean memberAccountLimitReached

Indicates whether the maximum number of allowed member accounts are already associated with the delegated administrator master account.

Class com.amazonaws.services.guardduty.model.DescribePublishingDestinationRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector associated with the publishing destination to retrieve.

destinationId

String destinationId

The ID of the publishing destination to retrieve.

Class com.amazonaws.services.guardduty.model.DescribePublishingDestinationResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

destinationId

String destinationId

The ID of the publishing destination.

destinationType

String destinationType

The type of publishing destination. Currently, only Amazon S3 buckets are supported.

status

String status

The status of the publishing destination.

publishingFailureStartTimestamp

Long publishingFailureStartTimestamp

The time, in epoch millisecond format, at which GuardDuty was first unable to publish findings to the destination.

destinationProperties

DestinationProperties destinationProperties

A DestinationProperties object that includes the DestinationArn and KmsKeyArn of the publishing destination.

Class com.amazonaws.services.guardduty.model.Destination extends Object implements Serializable

Serialized Fields

destinationId

String destinationId

The unique ID of the publishing destination.

destinationType

String destinationType

The type of resource used for the publishing destination. Currently, only Amazon S3 buckets are supported.

status

String status

The status of the publishing destination.

Class com.amazonaws.services.guardduty.model.DestinationProperties extends Object implements Serializable

Serialized Fields

destinationArn

String destinationArn

The ARN of the resource to publish to.

kmsKeyArn

String kmsKeyArn

The ARN of the KMS key to use for encryption.

Class com.amazonaws.services.guardduty.model.DisableOrganizationAdminAccountRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

adminAccountId

String adminAccountId

The AWS Account ID for the Organizations account to be disabled as a GuardDuty delegated administrator.

Class com.amazonaws.services.guardduty.model.DisableOrganizationAdminAccountResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.DisassociateFromMasterAccountRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty member account.

Class com.amazonaws.services.guardduty.model.DisassociateFromMasterAccountResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.DisassociateMembersRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty account whose members you want to disassociate from the master account.

accountIds

List<E> accountIds

A list of account IDs of the GuardDuty member accounts that you want to disassociate from the master account.

Class com.amazonaws.services.guardduty.model.DisassociateMembersResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

unprocessedAccounts

List<E> unprocessedAccounts

A list of objects that contain the unprocessed account and a result string that explains why it was unprocessed.

Class com.amazonaws.services.guardduty.model.DnsRequestAction extends Object implements Serializable

Serialized Fields

domain

String domain

The domain information for the API request.

Class com.amazonaws.services.guardduty.model.DomainDetails extends Object implements Serializable

Serialized Fields

domain

String domain

The domain information for the AWS API call.

Class com.amazonaws.services.guardduty.model.EnableOrganizationAdminAccountRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

adminAccountId

String adminAccountId

The AWS Account ID for the Organizations account to be enabled as a GuardDuty delegated administrator.

Class com.amazonaws.services.guardduty.model.EnableOrganizationAdminAccountResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.Evidence extends Object implements Serializable

Serialized Fields

threatIntelligenceDetails

List<E> threatIntelligenceDetails

A list of threat intelligence details related to the evidence.

Class com.amazonaws.services.guardduty.model.Finding extends Object implements Serializable

Serialized Fields

accountId

String accountId

The ID of the account in which the finding was generated.

arn

String arn

The ARN of the finding.

confidence

Double confidence

The confidence score for the finding.

createdAt

String createdAt

The time and date when the finding was created.

description

String description

The description of the finding.

id

String id

The ID of the finding.

partition

String partition

The partition associated with the finding.

region

String region

The Region where the finding was generated.

resource

Resource resource

schemaVersion

String schemaVersion

The version of the schema used for the finding.

service

Service service

severity

Double severity

The severity of the finding.

title

String title

The title of the finding.

type

String type

The type of finding.

updatedAt

String updatedAt

The time and date when the finding was last updated.

Class com.amazonaws.services.guardduty.model.FindingCriteria extends Object implements Serializable

Serialized Fields

criterion

Map<K,V> criterion

Represents a map of finding properties that match specified conditions and values when querying findings.

Class com.amazonaws.services.guardduty.model.FindingStatistics extends Object implements Serializable

Serialized Fields

countBySeverity

Map<K,V> countBySeverity

Represents a map of severity to count statistics for a set of findings.

Class com.amazonaws.services.guardduty.model.GeoLocation extends Object implements Serializable

Serialized Fields

lat

Double lat

The latitude information of the remote IP address.

lon

Double lon

The longitude information of the remote IP address.

Class com.amazonaws.services.guardduty.model.GetDetectorRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that you want to get.

Class com.amazonaws.services.guardduty.model.GetDetectorResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

createdAt

String createdAt

The timestamp of when the detector was created.

findingPublishingFrequency

String findingPublishingFrequency

The publishing frequency of the finding.

serviceRole

String serviceRole

The GuardDuty service role.

status

String status

The detector status.

updatedAt

String updatedAt

The last-updated timestamp for the detector.

tags

Map<K,V> tags

The tags of the detector resource.

Class com.amazonaws.services.guardduty.model.GetFilterRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that the filter is associated with.

filterName

String filterName

The name of the filter you want to get.

Class com.amazonaws.services.guardduty.model.GetFilterResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

name

String name

The name of the filter.

description

String description

The description of the filter.

action

String action

Specifies the action that is to be applied to the findings that match the filter.

rank

Integer rank

Specifies the position of the filter in the list of current filters. Also specifies the order in which this filter is applied to the findings.

findingCriteria

FindingCriteria findingCriteria

Represents the criteria to be used in the filter for querying findings.

tags

Map<K,V> tags

The tags of the filter resource.

Class com.amazonaws.services.guardduty.model.GetFindingsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector that specifies the GuardDuty service whose findings you want to retrieve.

findingIds

List<E> findingIds

The IDs of the findings that you want to retrieve.

sortCriteria

SortCriteria sortCriteria

Represents the criteria used for sorting findings.

Class com.amazonaws.services.guardduty.model.GetFindingsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

findings

List<E> findings

A list of findings.

Class com.amazonaws.services.guardduty.model.GetFindingsStatisticsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector that specifies the GuardDuty service whose findings' statistics you want to retrieve.

findingStatisticTypes

List<E> findingStatisticTypes

The types of finding statistics to retrieve.

findingCriteria

FindingCriteria findingCriteria

Represents the criteria that is used for querying findings.

Class com.amazonaws.services.guardduty.model.GetFindingsStatisticsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

findingStatistics

FindingStatistics findingStatistics

The finding statistics object.

Class com.amazonaws.services.guardduty.model.GetInvitationsCountRequest extends AmazonWebServiceRequest implements Serializable

Class com.amazonaws.services.guardduty.model.GetInvitationsCountResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

invitationsCount

Integer invitationsCount

The number of received invitations.

Class com.amazonaws.services.guardduty.model.GetIPSetRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that the IPSet is associated with.

ipSetId

String ipSetId

The unique ID of the IPSet to retrieve.

Class com.amazonaws.services.guardduty.model.GetIPSetResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

name

String name

The user-friendly name for the IPSet.

format

String format

The format of the file that contains the IPSet.

location

String location

The URI of the file that contains the IPSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.

status

String status

The status of IPSet file that was uploaded.

tags

Map<K,V> tags

The tags of the IPSet resource.

Class com.amazonaws.services.guardduty.model.GetMasterAccountRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty member account.

Class com.amazonaws.services.guardduty.model.GetMasterAccountResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

master

Master master

The master account details.

Class com.amazonaws.services.guardduty.model.GetMembersRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty account whose members you want to retrieve.

accountIds

List<E> accountIds

A list of account IDs of the GuardDuty member accounts that you want to describe.

Class com.amazonaws.services.guardduty.model.GetMembersResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

members

List<E> members

A list of members.

unprocessedAccounts

List<E> unprocessedAccounts

A list of objects that contain the unprocessed account and a result string that explains why it was unprocessed.

Class com.amazonaws.services.guardduty.model.GetThreatIntelSetRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that the threatIntelSet is associated with.

threatIntelSetId

String threatIntelSetId

The unique ID of the threatIntelSet that you want to get.

Class com.amazonaws.services.guardduty.model.GetThreatIntelSetResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

name

String name

A user-friendly ThreatIntelSet name displayed in all findings that are generated by activity that involves IP addresses included in this ThreatIntelSet.

format

String format

The format of the threatIntelSet.

location

String location

The URI of the file that contains the ThreatIntelSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.

status

String status

The status of threatIntelSet file uploaded.

tags

Map<K,V> tags

The tags of the threat list resource.

Class com.amazonaws.services.guardduty.model.IamInstanceProfile extends Object implements Serializable

Serialized Fields

arn

String arn

The profile ARN of the EC2 instance.

id

String id

The profile ID of the EC2 instance.

Class com.amazonaws.services.guardduty.model.InstanceDetails extends Object implements Serializable

Serialized Fields

availabilityZone

String availabilityZone

The Availability Zone of the EC2 instance.

iamInstanceProfile

IamInstanceProfile iamInstanceProfile

The profile information of the EC2 instance.

imageDescription

String imageDescription

The image description of the EC2 instance.

imageId

String imageId

The image ID of the EC2 instance.

instanceId

String instanceId

The ID of the EC2 instance.

instanceState

String instanceState

The state of the EC2 instance.

instanceType

String instanceType

The type of the EC2 instance.

outpostArn

String outpostArn

The Amazon Resource Name (ARN) of the AWS Outpost. Only applicable to AWS Outposts instances.

launchTime

String launchTime

The launch time of the EC2 instance.

networkInterfaces

List<E> networkInterfaces

The elastic network interface information of the EC2 instance.

platform

String platform

The platform of the EC2 instance.

productCodes

List<E> productCodes

The product code of the EC2 instance.

tags

List<E> tags

The tags of the EC2 instance.

Class com.amazonaws.services.guardduty.model.InternalServerErrorException extends AmazonGuardDutyException implements Serializable

serialVersionUID:

1L

Serialized Fields

type

String type

The error type.

Class com.amazonaws.services.guardduty.model.Invitation extends Object implements Serializable

Serialized Fields

accountId

String accountId

The ID of the account that the invitation was sent from.

invitationId

String invitationId

The ID of the invitation. This value is used to validate the inviter account to the member account.

relationshipStatus

String relationshipStatus

The status of the relationship between the inviter and invitee accounts.

invitedAt

String invitedAt

The timestamp when the invitation was sent.

Class com.amazonaws.services.guardduty.model.InviteMembersRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty account that you want to invite members with.

accountIds

List<E> accountIds

A list of account IDs of the accounts that you want to invite to GuardDuty as members.

disableEmailNotification

Boolean disableEmailNotification

A Boolean value that specifies whether you want to disable email notification to the accounts that you’re inviting to GuardDuty as members.

message

String message

The invitation message that you want to send to the accounts that you’re inviting to GuardDuty as members.

Class com.amazonaws.services.guardduty.model.InviteMembersResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

unprocessedAccounts

List<E> unprocessedAccounts

A list of objects that contain the unprocessed account and a result string that explains why it was unprocessed.

Class com.amazonaws.services.guardduty.model.ListDetectorsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

maxResults

Integer maxResults

You can use this parameter to indicate the maximum number of items that you want in the response. The default value is 50. The maximum value is 50.

nextToken

String nextToken

You can use this parameter when paginating results. Set the value of this parameter to null on your first call to the list action. For subsequent calls to the action, fill nextToken in the request with the value of NextToken from the previous response to continue listing data.

Class com.amazonaws.services.guardduty.model.ListDetectorsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

detectorIds

List<E> detectorIds

A list of detector IDs.

nextToken

String nextToken

The pagination parameter to be used on the next list operation to retrieve more items.

Class com.amazonaws.services.guardduty.model.ListFiltersRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that the filter is associated with.

maxResults

Integer maxResults

You can use this parameter to indicate the maximum number of items that you want in the response. The default value is 50. The maximum value is 50.

nextToken

String nextToken

You can use this parameter when paginating results. Set the value of this parameter to null on your first call to the list action. For subsequent calls to the action, fill nextToken in the request with the value of NextToken from the previous response to continue listing data.

Class com.amazonaws.services.guardduty.model.ListFiltersResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

filterNames

List<E> filterNames

A list of filter names.

nextToken

String nextToken

The pagination parameter to be used on the next list operation to retrieve more items.

Class com.amazonaws.services.guardduty.model.ListFindingsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector that specifies the GuardDuty service whose findings you want to list.

findingCriteria

FindingCriteria findingCriteria

Represents the criteria used for querying findings. Valid values include:

• JSON field name

• accountId

• region

• confidence

• id

• resource.accessKeyDetails.accessKeyId

• resource.accessKeyDetails.principalId

• resource.accessKeyDetails.userName

• resource.accessKeyDetails.userType

• resource.instanceDetails.iamInstanceProfile.id

• resource.instanceDetails.imageId

• resource.instanceDetails.instanceId

• resource.instanceDetails.networkInterfaces.ipv6Addresses

• resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress

• resource.instanceDetails.networkInterfaces.publicDnsName

• resource.instanceDetails.networkInterfaces.publicIp

• resource.instanceDetails.networkInterfaces.securityGroups.groupId

• resource.instanceDetails.networkInterfaces.securityGroups.groupName

• resource.instanceDetails.networkInterfaces.subnetId

• resource.instanceDetails.networkInterfaces.vpcId

• resource.instanceDetails.tags.key

• resource.instanceDetails.tags.value

• resource.resourceType

• service.action.actionType

• service.action.awsApiCallAction.api

• service.action.awsApiCallAction.callerType

• service.action.awsApiCallAction.remoteIpDetails.city.cityName

• service.action.awsApiCallAction.remoteIpDetails.country.countryName

• service.action.awsApiCallAction.remoteIpDetails.ipAddressV4

• service.action.awsApiCallAction.remoteIpDetails.organization.asn

• service.action.awsApiCallAction.remoteIpDetails.organization.asnOrg

• service.action.awsApiCallAction.serviceName

• service.action.dnsRequestAction.domain

• service.action.networkConnectionAction.blocked

• service.action.networkConnectionAction.connectionDirection

• service.action.networkConnectionAction.localPortDetails.port

• service.action.networkConnectionAction.protocol

• service.action.networkConnectionAction.remoteIpDetails.city.cityName

• service.action.networkConnectionAction.remoteIpDetails.country.countryName

• service.action.networkConnectionAction.remoteIpDetails.ipAddressV4

• service.action.networkConnectionAction.remoteIpDetails.organization.asn

• service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg

• service.action.networkConnectionAction.remotePortDetails.port

• service.additionalInfo.threatListName

• service.archived

  When this attribute is set to 'true', only archived findings are listed. When it's set to 'false', only unarchived findings are listed. When this attribute is not set, all existing findings are listed.

• service.resourceRole

• severity

• type

• updatedAt

  Type: Timestamp in Unix Epoch millisecond format: 1486685375000

sortCriteria

SortCriteria sortCriteria

Represents the criteria used for sorting findings.

maxResults

Integer maxResults

You can use this parameter to indicate the maximum number of items you want in the response. The default value is 50. The maximum value is 50.

nextToken

String nextToken

You can use this parameter when paginating results. Set the value of this parameter to null on your first call to the list action. For subsequent calls to the action, fill nextToken in the request with the value of NextToken from the previous response to continue listing data.

Class com.amazonaws.services.guardduty.model.ListFindingsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

findingIds

List<E> findingIds

The IDs of the findings that you're listing.

nextToken

String nextToken

The pagination parameter to be used on the next list operation to retrieve more items.

Class com.amazonaws.services.guardduty.model.ListInvitationsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

maxResults

Integer maxResults

You can use this parameter to indicate the maximum number of items that you want in the response. The default value is 50. The maximum value is 50.

nextToken

String nextToken

You can use this parameter when paginating results. Set the value of this parameter to null on your first call to the list action. For subsequent calls to the action, fill nextToken in the request with the value of NextToken from the previous response to continue listing data.

Class com.amazonaws.services.guardduty.model.ListInvitationsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

invitations

List<E> invitations

A list of invitation descriptions.

nextToken

String nextToken

The pagination parameter to be used on the next list operation to retrieve more items.

Class com.amazonaws.services.guardduty.model.ListIPSetsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that the IPSet is associated with.

maxResults

Integer maxResults

You can use this parameter to indicate the maximum number of items you want in the response. The default value is 50. The maximum value is 50.

nextToken

String nextToken

You can use this parameter when paginating results. Set the value of this parameter to null on your first call to the list action. For subsequent calls to the action, fill nextToken in the request with the value of NextToken from the previous response to continue listing data.

Class com.amazonaws.services.guardduty.model.ListIPSetsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

ipSetIds

List<E> ipSetIds

The IDs of the IPSet resources.

nextToken

String nextToken

The pagination parameter to be used on the next list operation to retrieve more items.

Class com.amazonaws.services.guardduty.model.ListMembersRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector the member is associated with.

maxResults

Integer maxResults

You can use this parameter to indicate the maximum number of items you want in the response. The default value is 50. The maximum value is 50.

nextToken

String nextToken

You can use this parameter when paginating results. Set the value of this parameter to null on your first call to the list action. For subsequent calls to the action, fill nextToken in the request with the value of NextToken from the previous response to continue listing data.

onlyAssociated

String onlyAssociated

Specifies what member accounts the response includes based on their relationship status with the master account. The default value is "true". If set to "false" the response includes all existing member accounts (including members who haven't been invited yet or have been disassociated).

Class com.amazonaws.services.guardduty.model.ListMembersResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

members

List<E> members

A list of members.

nextToken

String nextToken

The pagination parameter to be used on the next list operation to retrieve more items.

Class com.amazonaws.services.guardduty.model.ListOrganizationAdminAccountsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

maxResults

Integer maxResults

The maximum number of results to return in the response.

nextToken

String nextToken

A token to use for paginating results that are returned in the response. Set the value of this parameter to null for the first request to a list action. For subsequent calls, use the NextToken value returned from the previous request to continue listing results after the first page.

Class com.amazonaws.services.guardduty.model.ListOrganizationAdminAccountsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

adminAccounts

List<E> adminAccounts

An AdminAccounts object that includes a list of accounts configured as GuardDuty delegated administrators.

nextToken

String nextToken

The pagination parameter to be used on the next list operation to retrieve more items.

Class com.amazonaws.services.guardduty.model.ListPublishingDestinationsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector to retrieve publishing destinations for.

maxResults

Integer maxResults

The maximum number of results to return in the response.

nextToken

String nextToken

A token to use for paginating results that are returned in the response. Set the value of this parameter to null for the first request to a list action. For subsequent calls, use the NextToken value returned from the previous request to continue listing results after the first page.

Class com.amazonaws.services.guardduty.model.ListPublishingDestinationsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

destinations

List<E> destinations

A Destinations object that includes information about each publishing destination returned.

nextToken

String nextToken

A token to use for paginating results that are returned in the response. Set the value of this parameter to null for the first request to a list action. For subsequent calls, use the NextToken value returned from the previous request to continue listing results after the first page.

Class com.amazonaws.services.guardduty.model.ListTagsForResourceRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

resourceArn

String resourceArn

The Amazon Resource Name (ARN) for the given GuardDuty resource.

Class com.amazonaws.services.guardduty.model.ListTagsForResourceResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

tags

Map<K,V> tags

The tags associated with the resource.

Class com.amazonaws.services.guardduty.model.ListThreatIntelSetsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that the threatIntelSet is associated with.

maxResults

Integer maxResults

You can use this parameter to indicate the maximum number of items that you want in the response. The default value is 50. The maximum value is 50.

nextToken

String nextToken

You can use this parameter to paginate results in the response. Set the value of this parameter to null on your first call to the list action. For subsequent calls to the action, fill nextToken in the request with the value of NextToken from the previous response to continue listing data.

Class com.amazonaws.services.guardduty.model.ListThreatIntelSetsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

threatIntelSetIds

List<E> threatIntelSetIds

The IDs of the ThreatIntelSet resources.

nextToken

String nextToken

The pagination parameter to be used on the next list operation to retrieve more items.

Class com.amazonaws.services.guardduty.model.LocalIpDetails extends Object implements Serializable

Serialized Fields

ipAddressV4

String ipAddressV4

The IPv4 local address of the connection.

Class com.amazonaws.services.guardduty.model.LocalPortDetails extends Object implements Serializable

Serialized Fields

port

Integer port

The port number of the local connection.

portName

String portName

The port name of the local connection.

Class com.amazonaws.services.guardduty.model.Master extends Object implements Serializable

Serialized Fields

accountId

String accountId

The ID of the account used as the master account.

invitationId

String invitationId

The value used to validate the master account to the member account.

relationshipStatus

String relationshipStatus

The status of the relationship between the master and member accounts.

invitedAt

String invitedAt

The timestamp when the invitation was sent.

Class com.amazonaws.services.guardduty.model.Member extends Object implements Serializable

Serialized Fields

accountId

String accountId

The ID of the member account.

detectorId

String detectorId

The detector ID of the member account.

masterId

String masterId

The master account ID.

email

String email

The email address of the member account.

relationshipStatus

String relationshipStatus

The status of the relationship between the member and the master.

invitedAt

String invitedAt

The timestamp when the invitation was sent.

updatedAt

String updatedAt

The last-updated timestamp of the member.

Class com.amazonaws.services.guardduty.model.NetworkConnectionAction extends Object implements Serializable

Serialized Fields

blocked

Boolean blocked

Indicates whether EC2 blocked the network connection to your instance.

connectionDirection

String connectionDirection

The network connection direction.

localPortDetails

LocalPortDetails localPortDetails

The local port information of the connection.

protocol

String protocol

The network connection protocol.

localIpDetails

LocalIpDetails localIpDetails

The local IP information of the connection.

remoteIpDetails

RemoteIpDetails remoteIpDetails

The remote IP information of the connection.

remotePortDetails

RemotePortDetails remotePortDetails

The remote port information of the connection.

Class com.amazonaws.services.guardduty.model.NetworkInterface extends Object implements Serializable

Serialized Fields

ipv6Addresses

List<E> ipv6Addresses

A list of IPv6 addresses for the EC2 instance.

networkInterfaceId

String networkInterfaceId

The ID of the network interface.

privateDnsName

String privateDnsName

The private DNS name of the EC2 instance.

privateIpAddress

String privateIpAddress

The private IP address of the EC2 instance.

privateIpAddresses

List<E> privateIpAddresses

Other private IP address information of the EC2 instance.

publicDnsName

String publicDnsName

The public DNS name of the EC2 instance.

publicIp

String publicIp

The public IP address of the EC2 instance.

securityGroups

List<E> securityGroups

The security groups associated with the EC2 instance.

subnetId

String subnetId

The subnet ID of the EC2 instance.

vpcId

String vpcId

The VPC ID of the EC2 instance.

Class com.amazonaws.services.guardduty.model.Organization extends Object implements Serializable

Serialized Fields

asn

String asn

The Autonomous System Number (ASN) of the internet provider of the remote IP address.

asnOrg

String asnOrg

The organization that registered this ASN.

isp

String isp

The ISP information for the internet provider.

org

String org

The name of the internet provider.

Class com.amazonaws.services.guardduty.model.PortProbeAction extends Object implements Serializable

Serialized Fields

blocked

Boolean blocked

Indicates whether EC2 blocked the port probe to the instance, such as with an ACL.

portProbeDetails

List<E> portProbeDetails

A list of objects related to port probe details.

Class com.amazonaws.services.guardduty.model.PortProbeDetail extends Object implements Serializable

Serialized Fields

localPortDetails

LocalPortDetails localPortDetails

The local port information of the connection.

localIpDetails

LocalIpDetails localIpDetails

The local IP information of the connection.

remoteIpDetails

RemoteIpDetails remoteIpDetails

The remote IP information of the connection.

Class com.amazonaws.services.guardduty.model.PrivateIpAddressDetails extends Object implements Serializable

Serialized Fields

privateDnsName

String privateDnsName

The private DNS name of the EC2 instance.

privateIpAddress

String privateIpAddress

The private IP address of the EC2 instance.

Class com.amazonaws.services.guardduty.model.ProductCode extends Object implements Serializable

Serialized Fields

code

String code

The product code information.

productType

String productType

The product code type.

Class com.amazonaws.services.guardduty.model.RemoteIpDetails extends Object implements Serializable

Serialized Fields

city

City city

The city information of the remote IP address.

country

Country country

The country code of the remote IP address.

geoLocation

GeoLocation geoLocation

The location information of the remote IP address.

ipAddressV4

String ipAddressV4

The IPv4 remote address of the connection.

organization

Organization organization

The ISP organization information of the remote IP address.

Class com.amazonaws.services.guardduty.model.RemotePortDetails extends Object implements Serializable

Serialized Fields

port

Integer port

The port number of the remote connection.

portName

String portName

The port name of the remote connection.

Class com.amazonaws.services.guardduty.model.Resource extends Object implements Serializable

Serialized Fields

accessKeyDetails

AccessKeyDetails accessKeyDetails

The IAM access key details (IAM user information) of a user that engaged in the activity that prompted GuardDuty to generate a finding.

instanceDetails

InstanceDetails instanceDetails

The information about the EC2 instance associated with the activity that prompted GuardDuty to generate a finding.

resourceType

String resourceType

The type of AWS resource.

Class com.amazonaws.services.guardduty.model.SecurityGroup extends Object implements Serializable

Serialized Fields

groupId

String groupId

The security group ID of the EC2 instance.

groupName

String groupName

The security group name of the EC2 instance.

Class com.amazonaws.services.guardduty.model.Service extends Object implements Serializable

Serialized Fields

action

Action action

Information about the activity that is described in a finding.

evidence

Evidence evidence

An evidence object associated with the service.

archived

Boolean archived

Indicates whether this finding is archived.

count

Integer count

The total count of the occurrences of this finding type.

detectorId

String detectorId

The detector ID for the GuardDuty service.

eventFirstSeen

String eventFirstSeen

The first-seen timestamp of the activity that prompted GuardDuty to generate this finding.

eventLastSeen

String eventLastSeen

The last-seen timestamp of the activity that prompted GuardDuty to generate this finding.

resourceRole

String resourceRole

The resource role information for this finding.

serviceName

String serviceName

The name of the AWS service (GuardDuty) that generated a finding.

userFeedback

String userFeedback

Feedback that was submitted about the finding.

Class com.amazonaws.services.guardduty.model.SortCriteria extends Object implements Serializable

Serialized Fields

attributeName

String attributeName

Represents the finding attribute (for example, accountId) to sort findings by.

orderBy

String orderBy

The order by which the sorted findings are to be displayed.

Class com.amazonaws.services.guardduty.model.StartMonitoringMembersRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector of the GuardDuty master account associated with the member accounts to monitor.

accountIds

List<E> accountIds

A list of account IDs of the GuardDuty member accounts to start monitoring.

Class com.amazonaws.services.guardduty.model.StartMonitoringMembersResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

unprocessedAccounts

List<E> unprocessedAccounts

A list of objects that contain the unprocessed account and a result string that explains why it was unprocessed.

Class com.amazonaws.services.guardduty.model.StopMonitoringMembersRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector associated with the GuardDuty master account that is monitoring member accounts.

accountIds

List<E> accountIds

A list of account IDs for the member accounts to stop monitoring.

Class com.amazonaws.services.guardduty.model.StopMonitoringMembersResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

unprocessedAccounts

List<E> unprocessedAccounts

A list of objects that contain an accountId for each account that could not be processed, and a result string that indicates why the account was not processed.

Class com.amazonaws.services.guardduty.model.Tag extends Object implements Serializable

Serialized Fields

key

String key

The EC2 instance tag key.

value

String value

The EC2 instance tag value.

Class com.amazonaws.services.guardduty.model.TagResourceRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

resourceArn

String resourceArn

The Amazon Resource Name (ARN) for the GuardDuty resource to apply a tag to.

tags

Map<K,V> tags

The tags to be added to a resource.

Class com.amazonaws.services.guardduty.model.TagResourceResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.ThreatIntelligenceDetail extends Object implements Serializable

Serialized Fields

threatListName

String threatListName

The name of the threat intelligence list that triggered the finding.

threatNames

List<E> threatNames

A list of names of the threats in the threat intelligence list that triggered the finding.

Class com.amazonaws.services.guardduty.model.UnarchiveFindingsRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector associated with the findings to unarchive.

findingIds

List<E> findingIds

The IDs of the findings to unarchive.

Class com.amazonaws.services.guardduty.model.UnarchiveFindingsResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.UnprocessedAccount extends Object implements Serializable

Serialized Fields

accountId

String accountId

The AWS account ID.

result

String result

A reason why the account hasn't been processed.

Class com.amazonaws.services.guardduty.model.UntagResourceRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

resourceArn

String resourceArn

The Amazon Resource Name (ARN) for the resource to remove tags from.

tagKeys

List<E> tagKeys

The tag keys to remove from the resource.

Class com.amazonaws.services.guardduty.model.UntagResourceResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.UpdateDetectorRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector to update.

enable

Boolean enable

Specifies whether the detector is enabled or not enabled.

findingPublishingFrequency

String findingPublishingFrequency

An enum value that specifies how frequently findings are exported, such as to CloudWatch Events.

Class com.amazonaws.services.guardduty.model.UpdateDetectorResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.UpdateFilterRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The unique ID of the detector that specifies the GuardDuty service where you want to update a filter.

filterName

String filterName

The name of the filter.

description

String description

The description of the filter.

action

String action

Specifies the action that is to be applied to the findings that match the filter.

rank

Integer rank

Specifies the position of the filter in the list of current filters. Also specifies the order in which this filter is applied to the findings.

findingCriteria

FindingCriteria findingCriteria

Represents the criteria to be used in the filter for querying findings.

Class com.amazonaws.services.guardduty.model.UpdateFilterResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Serialized Fields

name

String name

The name of the filter.

Class com.amazonaws.services.guardduty.model.UpdateFindingsFeedbackRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector associated with the findings to update feedback for.

findingIds

List<E> findingIds

The IDs of the findings that you want to mark as useful or not useful.

feedback

String feedback

The feedback for the finding.

comments

String comments

Additional feedback about the GuardDuty findings.

Class com.amazonaws.services.guardduty.model.UpdateFindingsFeedbackResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.UpdateIPSetRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The detectorID that specifies the GuardDuty service whose IPSet you want to update.

ipSetId

String ipSetId

The unique ID that specifies the IPSet that you want to update.

name

String name

The unique ID that specifies the IPSet that you want to update.

location

String location

The updated URI of the file that contains the IPSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.

activate

Boolean activate

The updated Boolean value that specifies whether the IPSet is active or not.

Class com.amazonaws.services.guardduty.model.UpdateIPSetResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.UpdateOrganizationConfigurationRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector to update the delegated administrator for.

autoEnable

Boolean autoEnable

Indicates whether to automatically enable member accounts in the organization.

Class com.amazonaws.services.guardduty.model.UpdateOrganizationConfigurationResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.UpdatePublishingDestinationRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The ID of the detector associated with the publishing destinations to update.

destinationId

String destinationId

The ID of the publishing destination to update.

destinationProperties

DestinationProperties destinationProperties

A DestinationProperties object that includes the DestinationArn and KmsKeyArn of the publishing destination.

Class com.amazonaws.services.guardduty.model.UpdatePublishingDestinationResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable

Class com.amazonaws.services.guardduty.model.UpdateThreatIntelSetRequest extends AmazonWebServiceRequest implements Serializable

Serialized Fields

detectorId

String detectorId

The detectorID that specifies the GuardDuty service whose ThreatIntelSet you want to update.

threatIntelSetId

String threatIntelSetId

The unique ID that specifies the ThreatIntelSet that you want to update.

name

String name

The unique ID that specifies the ThreatIntelSet that you want to update.

location

String location

The updated URI of the file that contains the ThreateIntelSet. For example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.

activate

Boolean activate

The updated Boolean value that specifies whether the ThreateIntelSet is active or not.

Class com.amazonaws.services.guardduty.model.UpdateThreatIntelSetResult extends AmazonWebServiceResult<ResponseMetadata> implements Serializable