Class: Aws::Detective::Types::TTPsObservedDetail

Inherits:

Struct

• Object
• Struct
• Aws::Detective::Types::TTPsObservedDetail

Includes:

Structure

Defined in:

lib/aws-sdk-detective/types.rb

Overview

Details tactics, techniques, and procedures (TTPs) used in a potential security event. Tactics are based on [MITRE ATT&CK Matrix for Enterprise].

[1]: attack.mitre.org/matrices/enterprise/

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #api_failure_count ⇒ Integer

  The total number of failed API requests.

• #api_name ⇒ String

  The name of the API where the tactics, techniques, and procedure (TTP) was observed.

• #api_success_count ⇒ Integer

  The total number of successful API requests.

• #ip_address ⇒ String

  The IP address where the tactics, techniques, and procedure (TTP) was observed.

• #procedure ⇒ String

  The procedure used, identified by the investigation.

• #tactic ⇒ String

  The tactic used, identified by the investigation.

• #technique ⇒ String

  The technique used, identified by the investigation.

Instance Attribute Details

#api_failure_count ⇒ Integer

The total number of failed API requests.

Returns:

• (Integer)

# File 'lib/aws-sdk-detective/types.rb', line 1712

class TTPsObservedDetail < Struct.new(
  :tactic,
  :technique,
  :procedure,
  :ip_address,
  :api_name,
  :api_success_count,
  :api_failure_count)
  SENSITIVE = []
  include Aws::Structure
end

#api_name ⇒ String

The name of the API where the tactics, techniques, and procedure (TTP) was observed.

Returns:

• (String)

# File 'lib/aws-sdk-detective/types.rb', line 1712

class TTPsObservedDetail < Struct.new(
  :tactic,
  :technique,
  :procedure,
  :ip_address,
  :api_name,
  :api_success_count,
  :api_failure_count)
  SENSITIVE = []
  include Aws::Structure
end

#api_success_count ⇒ Integer

The total number of successful API requests.

Returns:

• (Integer)

# File 'lib/aws-sdk-detective/types.rb', line 1712

class TTPsObservedDetail < Struct.new(
  :tactic,
  :technique,
  :procedure,
  :ip_address,
  :api_name,
  :api_success_count,
  :api_failure_count)
  SENSITIVE = []
  include Aws::Structure
end

#ip_address ⇒ String

The IP address where the tactics, techniques, and procedure (TTP) was observed.

Returns:

• (String)

# File 'lib/aws-sdk-detective/types.rb', line 1712

class TTPsObservedDetail < Struct.new(
  :tactic,
  :technique,
  :procedure,
  :ip_address,
  :api_name,
  :api_success_count,
  :api_failure_count)
  SENSITIVE = []
  include Aws::Structure
end

#procedure ⇒ String

The procedure used, identified by the investigation.

Returns:

• (String)

# File 'lib/aws-sdk-detective/types.rb', line 1712

class TTPsObservedDetail < Struct.new(
  :tactic,
  :technique,
  :procedure,
  :ip_address,
  :api_name,
  :api_success_count,
  :api_failure_count)
  SENSITIVE = []
  include Aws::Structure
end

#tactic ⇒ String

The tactic used, identified by the investigation.

Returns:

• (String)

# File 'lib/aws-sdk-detective/types.rb', line 1712

class TTPsObservedDetail < Struct.new(
  :tactic,
  :technique,
  :procedure,
  :ip_address,
  :api_name,
  :api_success_count,
  :api_failure_count)
  SENSITIVE = []
  include Aws::Structure
end

#technique ⇒ String

The technique used, identified by the investigation.

Returns:

• (String)

# File 'lib/aws-sdk-detective/types.rb', line 1712

class TTPsObservedDetail < Struct.new(
  :tactic,
  :technique,
  :procedure,
  :ip_address,
  :api_name,
  :api_success_count,
  :api_failure_count)
  SENSITIVE = []
  include Aws::Structure
end