Class: Aws::GuardDuty::Client
- Inherits:
-
Seahorse::Client::Base
- Object
- Seahorse::Client::Base
- Aws::GuardDuty::Client
- Includes:
- ClientStubs
- Defined in:
- gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb
Overview
An API client for GuardDuty. To construct a client, you need to configure a :region and :credentials.
client = Aws::GuardDuty::Client.new(
region: region_name,
credentials: credentials,
# ...
)
For details on configuring region and credentials see the developer guide.
See #initialize for a full list of supported configuration options.
Instance Attribute Summary
Attributes inherited from Seahorse::Client::Base
API Operations collapse
-
#accept_administrator_invitation(params = {}) ⇒ Struct
Accepts the invitation to be a member account and get monitored by a GuardDuty administrator account that sent the invitation.
-
#accept_invitation(params = {}) ⇒ Struct
Accepts the invitation to be monitored by a GuardDuty administrator account.
-
#archive_findings(params = {}) ⇒ Struct
Archives GuardDuty findings that are specified by the list of finding IDs.
-
#create_detector(params = {}) ⇒ Types::CreateDetectorResponse
Creates a single GuardDuty detector.
-
#create_filter(params = {}) ⇒ Types::CreateFilterResponse
Creates a filter using the specified finding criteria.
-
#create_investigation(params = {}) ⇒ Types::CreateInvestigationResponse
This API is currently available as a preview.
-
#create_ip_set(params = {}) ⇒ Types::CreateIPSetResponse
Creates a new IPSet, which is called a trusted IP list in the console user interface.
-
#create_malware_protection_plan(params = {}) ⇒ Types::CreateMalwareProtectionPlanResponse
Creates a new Malware Protection plan for the protected resource.
-
#create_members(params = {}) ⇒ Types::CreateMembersResponse
Creates member accounts of the current Amazon Web Services account by specifying a list of Amazon Web Services account IDs.
-
#create_publishing_destination(params = {}) ⇒ Types::CreatePublishingDestinationResponse
Creates a publishing destination where you can export your GuardDuty findings.
-
#create_sample_findings(params = {}) ⇒ Struct
Generates sample findings of types specified by the list of finding types.
-
#create_threat_entity_set(params = {}) ⇒ Types::CreateThreatEntitySetResponse
Creates a new threat entity set.
-
#create_threat_intel_set(params = {}) ⇒ Types::CreateThreatIntelSetResponse
Creates a new ThreatIntelSet.
-
#create_trusted_entity_set(params = {}) ⇒ Types::CreateTrustedEntitySetResponse
Creates a new trusted entity set.
-
#decline_invitations(params = {}) ⇒ Types::DeclineInvitationsResponse
Declines invitations sent to the current member account by Amazon Web Services accounts specified by their account IDs.
-
#delete_detector(params = {}) ⇒ Struct
Deletes an Amazon GuardDuty detector that is specified by the detector ID.
-
#delete_filter(params = {}) ⇒ Struct
Deletes the filter specified by the filter name.
-
#delete_invitations(params = {}) ⇒ Types::DeleteInvitationsResponse
Deletes invitations sent to the current member account by Amazon Web Services accounts specified by their account IDs.
-
#delete_ip_set(params = {}) ⇒ Struct
Deletes the IPSet specified by the
ipSetId. -
#delete_malware_protection_plan(params = {}) ⇒ Struct
Deletes the Malware Protection plan ID associated with the Malware Protection plan resource.
-
#delete_members(params = {}) ⇒ Types::DeleteMembersResponse
Deletes GuardDuty member accounts (to the current GuardDuty administrator account) specified by the account IDs.
-
#delete_publishing_destination(params = {}) ⇒ Struct
Deletes the publishing definition with the specified
destinationId. -
#delete_threat_entity_set(params = {}) ⇒ Struct
Deletes the threat entity set that is associated with the specified
threatEntitySetId. -
#delete_threat_intel_set(params = {}) ⇒ Struct
Deletes the ThreatIntelSet specified by the ThreatIntelSet ID.
-
#delete_trusted_entity_set(params = {}) ⇒ Struct
Deletes the trusted entity set that is associated with the specified
trustedEntitySetId. -
#describe_malware_scans(params = {}) ⇒ Types::DescribeMalwareScansResponse
Returns a list of malware scans.
-
#describe_organization_configuration(params = {}) ⇒ Types::DescribeOrganizationConfigurationResponse
Returns information about the account selected as the delegated administrator for GuardDuty.
-
#describe_publishing_destination(params = {}) ⇒ Types::DescribePublishingDestinationResponse
Returns information about the publishing destination specified by the provided
destinationId. -
#disable_organization_admin_account(params = {}) ⇒ Struct
Removes the existing GuardDuty delegated administrator of the organization.
-
#disassociate_from_administrator_account(params = {}) ⇒ Struct
Disassociates the current GuardDuty member account from its administrator account.
-
#disassociate_from_master_account(params = {}) ⇒ Struct
Disassociates the current GuardDuty member account from its administrator account.
-
#disassociate_members(params = {}) ⇒ Types::DisassociateMembersResponse
Disassociates GuardDuty member accounts (from the current administrator account) specified by the account IDs.
-
#enable_organization_admin_account(params = {}) ⇒ Struct
Designates an Amazon Web Services account within the organization as your GuardDuty delegated administrator.
-
#get_administrator_account(params = {}) ⇒ Types::GetAdministratorAccountResponse
Provides the details of the GuardDuty administrator account associated with the current GuardDuty member account.
-
#get_coverage_statistics(params = {}) ⇒ Types::GetCoverageStatisticsResponse
Retrieves aggregated statistics for your account.
-
#get_detector(params = {}) ⇒ Types::GetDetectorResponse
Retrieves a GuardDuty detector specified by the detectorId.
-
#get_filter(params = {}) ⇒ Types::GetFilterResponse
Returns the details of the filter specified by the filter name.
-
#get_findings(params = {}) ⇒ Types::GetFindingsResponse
Describes Amazon GuardDuty findings specified by finding IDs.
-
#get_findings_statistics(params = {}) ⇒ Types::GetFindingsStatisticsResponse
Lists GuardDuty findings statistics for the specified detector ID.
-
#get_investigation(params = {}) ⇒ Types::GetInvestigationResponse
This API is currently available as a preview.
-
#get_invitations_count(params = {}) ⇒ Types::GetInvitationsCountResponse
Returns the count of all GuardDuty membership invitations that were sent to the current member account except the currently accepted invitation.
-
#get_ip_set(params = {}) ⇒ Types::GetIPSetResponse
Retrieves the IPSet specified by the
ipSetId. -
#get_malware_protection_plan(params = {}) ⇒ Types::GetMalwareProtectionPlanResponse
Retrieves the Malware Protection plan details associated with a Malware Protection plan ID.
-
#get_malware_scan(params = {}) ⇒ Types::GetMalwareScanResponse
Retrieves the detailed information for a specific malware scan.
-
#get_malware_scan_settings(params = {}) ⇒ Types::GetMalwareScanSettingsResponse
Returns the details of the malware scan settings.
-
#get_master_account(params = {}) ⇒ Types::GetMasterAccountResponse
Provides the details for the GuardDuty administrator account associated with the current GuardDuty member account.
-
#get_member_detectors(params = {}) ⇒ Types::GetMemberDetectorsResponse
Describes which data sources are enabled for the member account's detector.
-
#get_members(params = {}) ⇒ Types::GetMembersResponse
Retrieves GuardDuty member accounts (of the current GuardDuty administrator account) specified by the account IDs.
-
#get_organization_statistics(params = {}) ⇒ Types::GetOrganizationStatisticsResponse
Retrieves how many active member accounts have each feature enabled within GuardDuty.
-
#get_remaining_free_trial_days(params = {}) ⇒ Types::GetRemainingFreeTrialDaysResponse
Provides the number of days left for each data source used in the free trial period.
-
#get_threat_entity_set(params = {}) ⇒ Types::GetThreatEntitySetResponse
Retrieves the threat entity set associated with the specified
threatEntitySetId. -
#get_threat_intel_set(params = {}) ⇒ Types::GetThreatIntelSetResponse
Retrieves the ThreatIntelSet that is specified by the ThreatIntelSet ID.
-
#get_trusted_entity_set(params = {}) ⇒ Types::GetTrustedEntitySetResponse
Retrieves the trusted entity set associated with the specified
trustedEntitySetId. -
#get_usage_statistics(params = {}) ⇒ Types::GetUsageStatisticsResponse
Lists Amazon GuardDuty usage statistics over the last 30 days for the specified detector ID.
-
#invite_members(params = {}) ⇒ Types::InviteMembersResponse
Invites Amazon Web Services accounts to become members of an organization administered by the Amazon Web Services account that invokes this API.
-
#list_coverage(params = {}) ⇒ Types::ListCoverageResponse
Lists coverage details for your GuardDuty account.
-
#list_detectors(params = {}) ⇒ Types::ListDetectorsResponse
Lists detectorIds of all the existing Amazon GuardDuty detector resources.
-
#list_filters(params = {}) ⇒ Types::ListFiltersResponse
Returns a paginated list of the current filters.
-
#list_findings(params = {}) ⇒ Types::ListFindingsResponse
Lists GuardDuty findings for the specified detector ID.
-
#list_investigations(params = {}) ⇒ Types::ListInvestigationsResponse
This API is currently available as a preview.
-
#list_invitations(params = {}) ⇒ Types::ListInvitationsResponse
Lists all GuardDuty membership invitations that were sent to the current Amazon Web Services account.
-
#list_ip_sets(params = {}) ⇒ Types::ListIPSetsResponse
Lists the IPSets of the GuardDuty service specified by the detector ID.
-
#list_malware_protection_plans(params = {}) ⇒ Types::ListMalwareProtectionPlansResponse
Lists the Malware Protection plan IDs associated with the protected resources in your Amazon Web Services account.
-
#list_malware_scans(params = {}) ⇒ Types::ListMalwareScansResponse
Returns a list of malware scans.
-
#list_members(params = {}) ⇒ Types::ListMembersResponse
Lists details about all member accounts for the current GuardDuty administrator account.
-
#list_organization_admin_accounts(params = {}) ⇒ Types::ListOrganizationAdminAccountsResponse
Lists the accounts designated as GuardDuty delegated administrators.
-
#list_publishing_destinations(params = {}) ⇒ Types::ListPublishingDestinationsResponse
Returns a list of publishing destinations associated with the specified
detectorId. -
#list_tags_for_resource(params = {}) ⇒ Types::ListTagsForResourceResponse
Lists tags for a resource.
-
#list_threat_entity_sets(params = {}) ⇒ Types::ListThreatEntitySetsResponse
Lists the threat entity sets associated with the specified GuardDuty detector ID.
-
#list_threat_intel_sets(params = {}) ⇒ Types::ListThreatIntelSetsResponse
Lists the ThreatIntelSets of the GuardDuty service specified by the detector ID.
-
#list_trusted_entity_sets(params = {}) ⇒ Types::ListTrustedEntitySetsResponse
Lists the trusted entity sets associated with the specified GuardDuty detector ID.
-
#send_object_malware_scan(params = {}) ⇒ Struct
Initiates a malware scan for a specific S3 object.
-
#start_malware_scan(params = {}) ⇒ Types::StartMalwareScanResponse
Initiates the malware scan.
-
#start_monitoring_members(params = {}) ⇒ Types::StartMonitoringMembersResponse
Turns on GuardDuty monitoring of the specified member accounts.
-
#stop_monitoring_members(params = {}) ⇒ Types::StopMonitoringMembersResponse
Stops GuardDuty monitoring for the specified member accounts.
-
#tag_resource(params = {}) ⇒ Struct
Adds tags to a resource.
-
#unarchive_findings(params = {}) ⇒ Struct
Unarchives GuardDuty findings specified by the
findingIds. -
#untag_resource(params = {}) ⇒ Struct
Removes tags from a resource.
-
#update_detector(params = {}) ⇒ Struct
Updates the GuardDuty detector specified by the detector ID.
-
#update_filter(params = {}) ⇒ Types::UpdateFilterResponse
Updates the filter specified by the filter name.
-
#update_findings_feedback(params = {}) ⇒ Struct
Marks the specified GuardDuty findings as useful or not useful.
-
#update_ip_set(params = {}) ⇒ Struct
Updates the IPSet specified by the IPSet ID.
-
#update_malware_protection_plan(params = {}) ⇒ Struct
Updates an existing Malware Protection plan resource.
-
#update_malware_scan_settings(params = {}) ⇒ Struct
Updates the malware scan settings.
-
#update_member_detectors(params = {}) ⇒ Types::UpdateMemberDetectorsResponse
Contains information on member accounts to be updated.
-
#update_organization_configuration(params = {}) ⇒ Struct
Configures the delegated administrator account with the provided values.
-
#update_publishing_destination(params = {}) ⇒ Struct
Updates information about the publishing destination specified by the
destinationId. -
#update_threat_entity_set(params = {}) ⇒ Struct
Updates the threat entity set associated with the specified
threatEntitySetId. -
#update_threat_intel_set(params = {}) ⇒ Struct
Updates the ThreatIntelSet specified by the ThreatIntelSet ID.
-
#update_trusted_entity_set(params = {}) ⇒ Struct
Updates the trusted entity set associated with the specified
trustedEntitySetId.
Instance Method Summary collapse
-
#initialize(options) ⇒ Client
constructor
A new instance of Client.
Methods included from ClientStubs
#api_requests, #stub_data, #stub_responses
Methods inherited from Seahorse::Client::Base
add_plugin, api, clear_plugins, define, new, #operation_names, plugins, remove_plugin, set_api, set_plugins
Methods included from Seahorse::Client::HandlerBuilder
#handle, #handle_request, #handle_response
Constructor Details
#initialize(options) ⇒ Client
Returns a new instance of Client.
471 472 473 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 471 def initialize(*args) super end |
Instance Method Details
#accept_administrator_invitation(params = {}) ⇒ Struct
Accepts the invitation to be a member account and get monitored by a GuardDuty administrator account that sent the invitation.
505 506 507 508 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 505 def accept_administrator_invitation(params = {}, = {}) req = build_request(:accept_administrator_invitation, params) req.send_request() end |
#accept_invitation(params = {}) ⇒ Struct
Accepts the invitation to be monitored by a GuardDuty administrator account.
545 546 547 548 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 545 def accept_invitation(params = {}, = {}) req = build_request(:accept_invitation, params) req.send_request() end |
#archive_findings(params = {}) ⇒ Struct
Archives GuardDuty findings that are specified by the list of finding IDs.
585 586 587 588 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 585 def archive_findings(params = {}, = {}) req = build_request(:archive_findings, params) req.send_request() end |
#create_detector(params = {}) ⇒ Types::CreateDetectorResponse
Creates a single GuardDuty detector. A detector is a resource that represents the GuardDuty service. To start using GuardDuty, you must create a detector in each Region where you enable the service. You can have only one detector per account per Region. All data sources are enabled in a new detector by default.
When you don't specify any
features, with an exception toRUNTIME_MONITORING, all the optional features are enabled by default.When you specify some of the
features, any feature that is not specified in the API call gets enabled by default, with an exception toRUNTIME_MONITORING.
Specifying both EKS Runtime Monitoring (EKS_RUNTIME_MONITORING) and
Runtime Monitoring (RUNTIME_MONITORING) will cause an error. You can
add only one of these two features because Runtime Monitoring already
includes the threat detection for Amazon EKS resources. For more
information, see Runtime Monitoring.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
704 705 706 707 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 704 def create_detector(params = {}, = {}) req = build_request(:create_detector, params) req.send_request() end |
#create_filter(params = {}) ⇒ Types::CreateFilterResponse
Creates a filter using the specified finding criteria. The maximum number of saved filters per Amazon Web Services account per Region is 100. For more information, see Quotas for GuardDuty.
2126 2127 2128 2129 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2126 def create_filter(params = {}, = {}) req = build_request(:create_filter, params) req.send_request() end |
#create_investigation(params = {}) ⇒ Types::CreateInvestigationResponse
This API is currently available as a preview. During the preview, you can initiate up to 10 investigations per account per day, with a total limit of 100 investigations per account. This feature is available in the following Amazon Web Services Regions: US East (N. Virginia), US East (Ohio), US West (Oregon), Canada (Central), Europe (Frankfurt), Europe (Ireland), Europe (London), Europe (Paris), Europe (Stockholm), and Asia Pacific (Tokyo).
Initiates a GuardDuty investigation that automatically analyzes security findings, correlates related activity, performs account-level analysis, and produces a structured investigation summary with recommended next steps.
Only the administrator account can create an investigation. Member accounts don't have permission to create investigations from their accounts.
To use this operation, the AI_ANALYST feature must be enabled on
your detector.
This feature uses Amazon Bedrock models that leverage Cross-Region Inference (CRIS), which automatically selects the optimal Amazon Web Services Region within your geography to process the investigation analysis and generate the investigation report. This maximizes available compute resources, model availability, and delivers the best customer experience. Your data remains stored only in the Region where the investigation request originates, however, investigation data and summary results may be processed outside that Region. All data is transmitted encrypted across Amazon's secure network. For more information, see GuardDuty Investigation.
2292 2293 2294 2295 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2292 def create_investigation(params = {}, = {}) req = build_request(:create_investigation, params) req.send_request() end |
#create_ip_set(params = {}) ⇒ Types::CreateIPSetResponse
Creates a new IPSet, which is called a trusted IP list in the console user interface. An IPSet is a list of IP addresses that are trusted for secure communication with Amazon Web Services infrastructure and applications. GuardDuty doesn't generate findings for IP addresses that are included in IPSets. Only users from the administrator account can use this operation.
2205 2206 2207 2208 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2205 def create_ip_set(params = {}, = {}) req = build_request(:create_ip_set, params) req.send_request() end |
#create_malware_protection_plan(params = {}) ⇒ Types::CreateMalwareProtectionPlanResponse
Creates a new Malware Protection plan for the protected resource.
When you create a Malware Protection plan, the Amazon Web Services service terms for GuardDuty Malware Protection apply. For more information, see Amazon Web Services service terms for GuardDuty Malware Protection.
2363 2364 2365 2366 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2363 def create_malware_protection_plan(params = {}, = {}) req = build_request(:create_malware_protection_plan, params) req.send_request() end |
#create_members(params = {}) ⇒ Types::CreateMembersResponse
Creates member accounts of the current Amazon Web Services account by specifying a list of Amazon Web Services account IDs. This step is a prerequisite for managing the associated member accounts either by invitation or through an organization.
As a delegated administrator, using CreateMembers will enable
GuardDuty in the added member accounts, with the exception of the
organization delegated administrator account. A delegated
administrator must enable GuardDuty prior to being added as a member.
When you use CreateMembers as an Organizations delegated administrator, GuardDuty applies your organization's auto-enable settings to the member accounts in this request, irrespective of the accounts being new or existing members. For more information about the existing auto-enable settings for your organization, see DescribeOrganizationConfiguration.
If you disassociate a member account that was added by invitation, the member account details obtained from this API, including the associated email addresses, will be retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
When the member accounts added through Organizations are later disassociated, you (administrator) can't invite them by calling the InviteMembers API. You can create an association with these member accounts again only by calling the CreateMembers API.
2445 2446 2447 2448 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2445 def create_members(params = {}, = {}) req = build_request(:create_members, params) req.send_request() end |
#create_publishing_destination(params = {}) ⇒ Types::CreatePublishingDestinationResponse
Creates a publishing destination where you can export your GuardDuty findings. Before you start exporting the findings, the destination resource must exist.
2509 2510 2511 2512 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2509 def create_publishing_destination(params = {}, = {}) req = build_request(:create_publishing_destination, params) req.send_request() end |
#create_sample_findings(params = {}) ⇒ Struct
Generates sample findings of types specified by the list of finding
types. If 'NULL' is specified for findingTypes, the API generates
sample findings of all supported finding types.
2544 2545 2546 2547 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2544 def create_sample_findings(params = {}, = {}) req = build_request(:create_sample_findings, params) req.send_request() end |
#create_threat_entity_set(params = {}) ⇒ Types::CreateThreatEntitySetResponse
Creates a new threat entity set. In a threat entity set, you can provide known malicious threat entities for your Amazon Web Services environment. GuardDuty generates findings based on the entries in the threat entity sets. Only users of the administrator account can manage entity sets, which automatically apply to member accounts.
2632 2633 2634 2635 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2632 def create_threat_entity_set(params = {}, = {}) req = build_request(:create_threat_entity_set, params) req.send_request() end |
#create_threat_intel_set(params = {}) ⇒ Types::CreateThreatIntelSetResponse
Creates a new ThreatIntelSet. ThreatIntelSets consist of known malicious IP addresses. GuardDuty generates findings based on ThreatIntelSets. Only users of the administrator account can use this operation.
2708 2709 2710 2711 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2708 def create_threat_intel_set(params = {}, = {}) req = build_request(:create_threat_intel_set, params) req.send_request() end |
#create_trusted_entity_set(params = {}) ⇒ Types::CreateTrustedEntitySetResponse
Creates a new trusted entity set. In the trusted entity set, you can provide IP addresses and domains that you believe are secure for communication in your Amazon Web Services environment. GuardDuty will not generate findings for the entries that are specified in a trusted entity set. At any given time, you can have only one trusted entity set.
Only users of the administrator account can manage the entity sets, which automatically apply to member accounts.
2800 2801 2802 2803 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2800 def create_trusted_entity_set(params = {}, = {}) req = build_request(:create_trusted_entity_set, params) req.send_request() end |
#decline_invitations(params = {}) ⇒ Types::DeclineInvitationsResponse
Declines invitations sent to the current member account by Amazon Web Services accounts specified by their account IDs.
2833 2834 2835 2836 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2833 def decline_invitations(params = {}, = {}) req = build_request(:decline_invitations, params) req.send_request() end |
#delete_detector(params = {}) ⇒ Struct
Deletes an Amazon GuardDuty detector that is specified by the detector ID.
2863 2864 2865 2866 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2863 def delete_detector(params = {}, = {}) req = build_request(:delete_detector, params) req.send_request() end |
#delete_filter(params = {}) ⇒ Struct
Deletes the filter specified by the filter name.
2896 2897 2898 2899 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2896 def delete_filter(params = {}, = {}) req = build_request(:delete_filter, params) req.send_request() end |
#delete_invitations(params = {}) ⇒ Types::DeleteInvitationsResponse
Deletes invitations sent to the current member account by Amazon Web Services accounts specified by their account IDs.
2963 2964 2965 2966 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2963 def delete_invitations(params = {}, = {}) req = build_request(:delete_invitations, params) req.send_request() end |
#delete_ip_set(params = {}) ⇒ Struct
Deletes the IPSet specified by the ipSetId. IPSets are called
trusted IP lists in the console user interface.
2930 2931 2932 2933 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2930 def delete_ip_set(params = {}, = {}) req = build_request(:delete_ip_set, params) req.send_request() end |
#delete_malware_protection_plan(params = {}) ⇒ Struct
Deletes the Malware Protection plan ID associated with the Malware Protection plan resource. Use this API only when you no longer want to protect the resource associated with this Malware Protection plan ID.
2987 2988 2989 2990 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 2987 def delete_malware_protection_plan(params = {}, = {}) req = build_request(:delete_malware_protection_plan, params) req.send_request() end |
#delete_members(params = {}) ⇒ Types::DeleteMembersResponse
Deletes GuardDuty member accounts (to the current GuardDuty administrator account) specified by the account IDs.
With autoEnableOrganizationMembers configuration for your
organization set to ALL, you'll receive an error if you attempt to
disable GuardDuty for a member account in your organization.
3035 3036 3037 3038 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3035 def delete_members(params = {}, = {}) req = build_request(:delete_members, params) req.send_request() end |
#delete_publishing_destination(params = {}) ⇒ Struct
Deletes the publishing definition with the specified destinationId.
3069 3070 3071 3072 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3069 def delete_publishing_destination(params = {}, = {}) req = build_request(:delete_publishing_destination, params) req.send_request() end |
#delete_threat_entity_set(params = {}) ⇒ Struct
Deletes the threat entity set that is associated with the specified
threatEntitySetId.
3105 3106 3107 3108 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3105 def delete_threat_entity_set(params = {}, = {}) req = build_request(:delete_threat_entity_set, params) req.send_request() end |
#delete_threat_intel_set(params = {}) ⇒ Struct
Deletes the ThreatIntelSet specified by the ThreatIntelSet ID.
3139 3140 3141 3142 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3139 def delete_threat_intel_set(params = {}, = {}) req = build_request(:delete_threat_intel_set, params) req.send_request() end |
#delete_trusted_entity_set(params = {}) ⇒ Struct
Deletes the trusted entity set that is associated with the specified
trustedEntitySetId.
3175 3176 3177 3178 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3175 def delete_trusted_entity_set(params = {}, = {}) req = build_request(:delete_trusted_entity_set, params) req.send_request() end |
#describe_malware_scans(params = {}) ⇒ Types::DescribeMalwareScansResponse
Returns a list of malware scans. Each member account can view the malware scans for their own accounts. An administrator can view the malware scans for all the member accounts.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
3291 3292 3293 3294 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3291 def describe_malware_scans(params = {}, = {}) req = build_request(:describe_malware_scans, params) req.send_request() end |
#describe_organization_configuration(params = {}) ⇒ Types::DescribeOrganizationConfigurationResponse
Returns information about the account selected as the delegated administrator for GuardDuty.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
3369 3370 3371 3372 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3369 def describe_organization_configuration(params = {}, = {}) req = build_request(:describe_organization_configuration, params) req.send_request() end |
#describe_publishing_destination(params = {}) ⇒ Types::DescribePublishingDestinationResponse
Returns information about the publishing destination specified by the
provided destinationId.
3422 3423 3424 3425 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3422 def describe_publishing_destination(params = {}, = {}) req = build_request(:describe_publishing_destination, params) req.send_request() end |
#disable_organization_admin_account(params = {}) ⇒ Struct
Removes the existing GuardDuty delegated administrator of the organization. Only the organization's management account can run this API operation.
3447 3448 3449 3450 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3447 def disable_organization_admin_account(params = {}, = {}) req = build_request(:disable_organization_admin_account, params) req.send_request() end |
#disassociate_from_administrator_account(params = {}) ⇒ Struct
Disassociates the current GuardDuty member account from its administrator account.
When you disassociate an invited member from a GuardDuty delegated administrator, the member account details obtained from the CreateMembers API, including the associated email addresses, are retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
With autoEnableOrganizationMembers configuration for your
organization set to ALL, you'll receive an error if you attempt to
disable GuardDuty in a member account.
3489 3490 3491 3492 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3489 def disassociate_from_administrator_account(params = {}, = {}) req = build_request(:disassociate_from_administrator_account, params) req.send_request() end |
#disassociate_from_master_account(params = {}) ⇒ Struct
Disassociates the current GuardDuty member account from its administrator account.
When you disassociate an invited member from a GuardDuty delegated administrator, the member account details obtained from the CreateMembers API, including the associated email addresses, are retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
3527 3528 3529 3530 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3527 def disassociate_from_master_account(params = {}, = {}) req = build_request(:disassociate_from_master_account, params) req.send_request() end |
#disassociate_members(params = {}) ⇒ Types::DisassociateMembersResponse
Disassociates GuardDuty member accounts (from the current administrator account) specified by the account IDs.
When you disassociate an invited member from a GuardDuty delegated administrator, the member account details obtained from the CreateMembers API, including the associated email addresses, are retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
With autoEnableOrganizationMembers configuration for your
organization set to ALL, you'll receive an error if you attempt to
disassociate a member account before removing them from your
organization.
If you disassociate a member account that was added by invitation, the member account details obtained from this API, including the associated email addresses, will be retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
When the member accounts added through Organizations are later disassociated, you (administrator) can't invite them by calling the InviteMembers API. You can create an association with these member accounts again only by calling the CreateMembers API.
3597 3598 3599 3600 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3597 def disassociate_members(params = {}, = {}) req = build_request(:disassociate_members, params) req.send_request() end |
#enable_organization_admin_account(params = {}) ⇒ Struct
Designates an Amazon Web Services account within the organization as your GuardDuty delegated administrator. Only the organization's management account can run this API operation.
3622 3623 3624 3625 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3622 def enable_organization_admin_account(params = {}, = {}) req = build_request(:enable_organization_admin_account, params) req.send_request() end |
#get_administrator_account(params = {}) ⇒ Types::GetAdministratorAccountResponse
Provides the details of the GuardDuty administrator account associated with the current GuardDuty member account.
Based on the type of account that runs this API, the following list shows how the API behavior varies:
When the GuardDuty administrator account runs this API, it will return success (
HTTP 200) but no content.When a member account runs this API, it will return the details of the GuardDuty administrator account that is associated with this calling member account.
When an individual account (not associated with an organization) runs this API, it will return success (
HTTP 200) but no content.
3667 3668 3669 3670 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3667 def get_administrator_account(params = {}, = {}) req = build_request(:get_administrator_account, params) req.send_request() end |
#get_coverage_statistics(params = {}) ⇒ Types::GetCoverageStatisticsResponse
Retrieves aggregated statistics for your account. If you are a GuardDuty administrator, you can retrieve the statistics for all the resources associated with the active member accounts in your organization who have enabled Runtime Monitoring and have the GuardDuty security agent running on their resources.
3727 3728 3729 3730 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3727 def get_coverage_statistics(params = {}, = {}) req = build_request(:get_coverage_statistics, params) req.send_request() end |
#get_detector(params = {}) ⇒ Types::GetDetectorResponse
Retrieves a GuardDuty detector specified by the detectorId.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
3800 3801 3802 3803 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3800 def get_detector(params = {}, = {}) req = build_request(:get_detector, params) req.send_request() end |
#get_filter(params = {}) ⇒ Types::GetFilterResponse
Returns the details of the filter specified by the filter name.
3870 3871 3872 3873 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 3870 def get_filter(params = {}, = {}) req = build_request(:get_filter, params) req.send_request() end |
#get_findings(params = {}) ⇒ Types::GetFindingsResponse
Describes Amazon GuardDuty findings specified by finding IDs.
4594 4595 4596 4597 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 4594 def get_findings(params = {}, = {}) req = build_request(:get_findings, params) req.send_request() end |
#get_findings_statistics(params = {}) ⇒ Types::GetFindingsStatisticsResponse
Lists GuardDuty findings statistics for the specified detector ID.
You must provide either findingStatisticTypes or groupBy
parameter, and not both. You can use the maxResults and orderBy
parameters only when using groupBy.
There might be regional differences because some flags might not be available in all the Regions where GuardDuty is currently supported. For more information, see Regions and endpoints.
4713 4714 4715 4716 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 4713 def get_findings_statistics(params = {}, = {}) req = build_request(:get_findings_statistics, params) req.send_request() end |
#get_investigation(params = {}) ⇒ Types::GetInvestigationResponse
This API is currently available as a preview. This feature is available in the following Amazon Web Services Regions: US East (N. Virginia), US East (Ohio), US West (Oregon), Canada (Central), Europe (Frankfurt), Europe (Ireland), Europe (London), Europe (Paris), Europe (Stockholm), and Asia Pacific (Tokyo).
Retrieves the results and status of a specific GuardDuty investigation.
An administrator account can retrieve any investigation within the organization. Member accounts can only retrieve investigations that belong to them.
4830 4831 4832 4833 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 4830 def get_investigation(params = {}, = {}) req = build_request(:get_investigation, params) req.send_request() end |
#get_invitations_count(params = {}) ⇒ Types::GetInvitationsCountResponse
Returns the count of all GuardDuty membership invitations that were sent to the current member account except the currently accepted invitation.
4851 4852 4853 4854 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 4851 def get_invitations_count(params = {}, = {}) req = build_request(:get_invitations_count, params) req.send_request() end |
#get_ip_set(params = {}) ⇒ Types::GetIPSetResponse
Retrieves the IPSet specified by the ipSetId.
4763 4764 4765 4766 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 4763 def get_ip_set(params = {}, = {}) req = build_request(:get_ip_set, params) req.send_request() end |
#get_malware_protection_plan(params = {}) ⇒ Types::GetMalwareProtectionPlanResponse
Retrieves the Malware Protection plan details associated with a Malware Protection plan ID.
4899 4900 4901 4902 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 4899 def get_malware_protection_plan(params = {}, = {}) req = build_request(:get_malware_protection_plan, params) req.send_request() end |
#get_malware_scan(params = {}) ⇒ Types::GetMalwareScanResponse
Retrieves the detailed information for a specific malware scan. Each member account can view the malware scan details for their own account. An administrator can view malware scan details for all accounts in the organization.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
5009 5010 5011 5012 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5009 def get_malware_scan(params = {}, = {}) req = build_request(:get_malware_scan, params) req.send_request() end |
#get_malware_scan_settings(params = {}) ⇒ Types::GetMalwareScanSettingsResponse
Returns the details of the malware scan settings.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
5062 5063 5064 5065 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5062 def get_malware_scan_settings(params = {}, = {}) req = build_request(:get_malware_scan_settings, params) req.send_request() end |
#get_master_account(params = {}) ⇒ Types::GetMasterAccountResponse
Provides the details for the GuardDuty administrator account associated with the current GuardDuty member account.
5101 5102 5103 5104 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5101 def get_master_account(params = {}, = {}) req = build_request(:get_master_account, params) req.send_request() end |
#get_member_detectors(params = {}) ⇒ Types::GetMemberDetectorsResponse
Describes which data sources are enabled for the member account's detector.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
5171 5172 5173 5174 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5171 def get_member_detectors(params = {}, = {}) req = build_request(:get_member_detectors, params) req.send_request() end |
#get_members(params = {}) ⇒ Types::GetMembersResponse
Retrieves GuardDuty member accounts (of the current GuardDuty administrator account) specified by the account IDs.
5225 5226 5227 5228 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5225 def get_members(params = {}, = {}) req = build_request(:get_members, params) req.send_request() end |
#get_organization_statistics(params = {}) ⇒ Types::GetOrganizationStatisticsResponse
Retrieves how many active member accounts have each feature enabled within GuardDuty. Only a delegated GuardDuty administrator of an organization can run this API.
When you create a new organization, it might take up to 24 hours to generate the statistics for the entire organization.
5259 5260 5261 5262 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5259 def get_organization_statistics(params = {}, = {}) req = build_request(:get_organization_statistics, params) req.send_request() end |
#get_remaining_free_trial_days(params = {}) ⇒ Types::GetRemainingFreeTrialDaysResponse
Provides the number of days left for each data source used in the free trial period.
5313 5314 5315 5316 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5313 def get_remaining_free_trial_days(params = {}, = {}) req = build_request(:get_remaining_free_trial_days, params) req.send_request() end |
#get_threat_entity_set(params = {}) ⇒ Types::GetThreatEntitySetResponse
Retrieves the threat entity set associated with the specified
threatEntitySetId.
5371 5372 5373 5374 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5371 def get_threat_entity_set(params = {}, = {}) req = build_request(:get_threat_entity_set, params) req.send_request() end |
#get_threat_intel_set(params = {}) ⇒ Types::GetThreatIntelSetResponse
Retrieves the ThreatIntelSet that is specified by the ThreatIntelSet ID.
5423 5424 5425 5426 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5423 def get_threat_intel_set(params = {}, = {}) req = build_request(:get_threat_intel_set, params) req.send_request() end |
#get_trusted_entity_set(params = {}) ⇒ Types::GetTrustedEntitySetResponse
Retrieves the trusted entity set associated with the specified
trustedEntitySetId.
5474 5475 5476 5477 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5474 def get_trusted_entity_set(params = {}, = {}) req = build_request(:get_trusted_entity_set, params) req.send_request() end |
#get_usage_statistics(params = {}) ⇒ Types::GetUsageStatisticsResponse
Lists Amazon GuardDuty usage statistics over the last 30 days for the specified detector ID. For newly enabled detectors or data sources, the cost returned will include only the usage so far under 30 days. This may differ from the cost metrics in the console, which project usage over 30 days to provide a monthly cost estimate. For more information, see Understanding How Usage Costs are Calculated.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
5578 5579 5580 5581 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5578 def get_usage_statistics(params = {}, = {}) req = build_request(:get_usage_statistics, params) req.send_request() end |
#invite_members(params = {}) ⇒ Types::InviteMembersResponse
Invites Amazon Web Services accounts to become members of an organization administered by the Amazon Web Services account that invokes this API. If you are using Amazon Web Services Organizations to manage your GuardDuty environment, this step is not needed. For more information, see Managing accounts with organizations.
To invite Amazon Web Services accounts, the first step is to ensure that GuardDuty has been enabled in the potential member accounts. You can now invoke this API to add accounts by invitation. The invited accounts can either accept or decline the invitation from their GuardDuty accounts. Each invited Amazon Web Services account can choose to accept the invitation from only one Amazon Web Services account. For more information, see Managing GuardDuty accounts by invitation.
After the invite has been accepted and you choose to disassociate a member account (by using DisassociateMembers) from your account, the details of the member account obtained by invoking CreateMembers, including the associated email addresses, will be retained. This is done so that you can invoke InviteMembers without the need to invoke CreateMembers again. To remove the details associated with a member account, you must also invoke DeleteMembers.
If you disassociate a member account that was added by invitation, the member account details obtained from this API, including the associated email addresses, will be retained. This is done so that the delegated administrator can invoke the InviteMembers API without the need to invoke the CreateMembers API again. To remove the details associated with a member account, the delegated administrator must invoke the DeleteMembers API.
When the member accounts added through Organizations are later disassociated, you (administrator) can't invite them by calling the InviteMembers API. You can create an association with these member accounts again only by calling the CreateMembers API.
5676 5677 5678 5679 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5676 def invite_members(params = {}, = {}) req = build_request(:invite_members, params) req.send_request() end |
#list_coverage(params = {}) ⇒ Types::ListCoverageResponse
Lists coverage details for your GuardDuty account. If you're a GuardDuty administrator, you can retrieve all resources associated with the active member accounts in your organization.
Make sure the accounts have Runtime Monitoring enabled and GuardDuty agent running on their resources.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
5778 5779 5780 5781 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5778 def list_coverage(params = {}, = {}) req = build_request(:list_coverage, params) req.send_request() end |
#list_detectors(params = {}) ⇒ Types::ListDetectorsResponse
Lists detectorIds of all the existing Amazon GuardDuty detector resources.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
5822 5823 5824 5825 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5822 def list_detectors(params = {}, = {}) req = build_request(:list_detectors, params) req.send_request() end |
#list_filters(params = {}) ⇒ Types::ListFiltersResponse
Returns a paginated list of the current filters.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
5876 5877 5878 5879 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 5876 def list_filters(params = {}, = {}) req = build_request(:list_filters, params) req.send_request() end |
#list_findings(params = {}) ⇒ Types::ListFindingsResponse
Lists GuardDuty findings for the specified detector ID.
There might be regional differences because some flags might not be available in all the Regions where GuardDuty is currently supported. For more information, see Regions and endpoints.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6077 6078 6079 6080 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6077 def list_findings(params = {}, = {}) req = build_request(:list_findings, params) req.send_request() end |
#list_investigations(params = {}) ⇒ Types::ListInvestigationsResponse
This API is currently available as a preview. This feature is available in the following Amazon Web Services Regions: US East (N. Virginia), US East (Ohio), US West (Oregon), Canada (Central), Europe (Frankfurt), Europe (Ireland), Europe (London), Europe (Paris), Europe (Stockholm), and Asia Pacific (Tokyo).
Returns a list of investigations associated with the specified GuardDuty detector.
An administrator account sees all investigations across the organization. Member accounts see only the investigations that belong to them.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6213 6214 6215 6216 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6213 def list_investigations(params = {}, = {}) req = build_request(:list_investigations, params) req.send_request() end |
#list_invitations(params = {}) ⇒ Types::ListInvitationsResponse
Lists all GuardDuty membership invitations that were sent to the current Amazon Web Services account.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6260 6261 6262 6263 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6260 def list_invitations(params = {}, = {}) req = build_request(:list_invitations, params) req.send_request() end |
#list_ip_sets(params = {}) ⇒ Types::ListIPSetsResponse
Lists the IPSets of the GuardDuty service specified by the detector ID. If you use this operation from a member account, the IPSets returned are the IPSets from the associated administrator account.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6133 6134 6135 6136 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6133 def list_ip_sets(params = {}, = {}) req = build_request(:list_ip_sets, params) req.send_request() end |
#list_malware_protection_plans(params = {}) ⇒ Types::ListMalwareProtectionPlansResponse
Lists the Malware Protection plan IDs associated with the protected resources in your Amazon Web Services account.
6296 6297 6298 6299 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6296 def list_malware_protection_plans(params = {}, = {}) req = build_request(:list_malware_protection_plans, params) req.send_request() end |
#list_malware_scans(params = {}) ⇒ Types::ListMalwareScansResponse
Returns a list of malware scans. Each member account can view the malware scans for their own accounts. An administrator can view the malware scans for all of its members' accounts.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6370 6371 6372 6373 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6370 def list_malware_scans(params = {}, = {}) req = build_request(:list_malware_scans, params) req.send_request() end |
#list_members(params = {}) ⇒ Types::ListMembersResponse
Lists details about all member accounts for the current GuardDuty administrator account.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6444 6445 6446 6447 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6444 def list_members(params = {}, = {}) req = build_request(:list_members, params) req.send_request() end |
#list_organization_admin_accounts(params = {}) ⇒ Types::ListOrganizationAdminAccountsResponse
Lists the accounts designated as GuardDuty delegated administrators. Only the organization's management account can run this API operation.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6488 6489 6490 6491 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6488 def list_organization_admin_accounts(params = {}, = {}) req = build_request(:list_organization_admin_accounts, params) req.send_request() end |
#list_publishing_destinations(params = {}) ⇒ Types::ListPublishingDestinationsResponse
Returns a list of publishing destinations associated with the
specified detectorId.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6544 6545 6546 6547 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6544 def list_publishing_destinations(params = {}, = {}) req = build_request(:list_publishing_destinations, params) req.send_request() end |
#list_tags_for_resource(params = {}) ⇒ Types::ListTagsForResourceResponse
Lists tags for a resource. Tagging is currently supported for detectors, finding filters, IP sets, threat intel sets, and publishing destination, with a limit of 50 tags per resource. When invoked, this operation returns all assigned tags for a given resource.
6576 6577 6578 6579 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6576 def (params = {}, = {}) req = build_request(:list_tags_for_resource, params) req.send_request() end |
#list_threat_entity_sets(params = {}) ⇒ Types::ListThreatEntitySetsResponse
Lists the threat entity sets associated with the specified GuardDuty detector ID. If you use this operation from a member account, the threat entity sets that are returned as a response, belong to the administrator account.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6633 6634 6635 6636 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6633 def list_threat_entity_sets(params = {}, = {}) req = build_request(:list_threat_entity_sets, params) req.send_request() end |
#list_threat_intel_sets(params = {}) ⇒ Types::ListThreatIntelSetsResponse
Lists the ThreatIntelSets of the GuardDuty service specified by the detector ID. If you use this operation from a member account, the ThreatIntelSets associated with the administrator account are returned.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6691 6692 6693 6694 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6691 def list_threat_intel_sets(params = {}, = {}) req = build_request(:list_threat_intel_sets, params) req.send_request() end |
#list_trusted_entity_sets(params = {}) ⇒ Types::ListTrustedEntitySetsResponse
Lists the trusted entity sets associated with the specified GuardDuty detector ID. If you use this operation from a member account, the trusted entity sets that are returned as a response, belong to the administrator account.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
6748 6749 6750 6751 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6748 def list_trusted_entity_sets(params = {}, = {}) req = build_request(:list_trusted_entity_sets, params) req.send_request() end |
#send_object_malware_scan(params = {}) ⇒ Struct
Initiates a malware scan for a specific S3 object. This API allows you to perform on-demand malware scanning of individual objects in S3 buckets that have Malware Protection for S3 enabled.
When you use this API, the Amazon Web Services service terms for GuardDuty Malware Protection apply. For more information, see Amazon Web Services service terms for GuardDuty Malware Protection.
6785 6786 6787 6788 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6785 def send_object_malware_scan(params = {}, = {}) req = build_request(:send_object_malware_scan, params) req.send_request() end |
#start_malware_scan(params = {}) ⇒ Types::StartMalwareScanResponse
Initiates the malware scan. Invoking this API will automatically create the Service-linked role in the corresponding account if the resourceArn belongs to an EC2 instance.
When the malware scan starts, you can use the associated scan ID to track the status of the scan. For more information, see ListMalwareScans and GetMalwareScan.
When you use this API, the Amazon Web Services service terms for GuardDuty Malware Protection apply. For more information, see Amazon Web Services service terms for GuardDuty Malware Protection.
6855 6856 6857 6858 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6855 def start_malware_scan(params = {}, = {}) req = build_request(:start_malware_scan, params) req.send_request() end |
#start_monitoring_members(params = {}) ⇒ Types::StartMonitoringMembersResponse
Turns on GuardDuty monitoring of the specified member accounts. Use this operation to restart monitoring of accounts that you stopped monitoring with the StopMonitoringMembers operation.
6904 6905 6906 6907 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6904 def start_monitoring_members(params = {}, = {}) req = build_request(:start_monitoring_members, params) req.send_request() end |
#stop_monitoring_members(params = {}) ⇒ Types::StopMonitoringMembersResponse
Stops GuardDuty monitoring for the specified member accounts. Use the
StartMonitoringMembers operation to restart monitoring for those
accounts.
With autoEnableOrganizationMembers configuration for your
organization set to ALL, you'll receive an error if you attempt to
stop monitoring the member accounts in your organization.
6952 6953 6954 6955 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6952 def stop_monitoring_members(params = {}, = {}) req = build_request(:stop_monitoring_members, params) req.send_request() end |
#tag_resource(params = {}) ⇒ Struct
Adds tags to a resource.
6981 6982 6983 6984 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 6981 def tag_resource(params = {}, = {}) req = build_request(:tag_resource, params) req.send_request() end |
#unarchive_findings(params = {}) ⇒ Struct
Unarchives GuardDuty findings specified by the findingIds.
7014 7015 7016 7017 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 7014 def unarchive_findings(params = {}, = {}) req = build_request(:unarchive_findings, params) req.send_request() end |
#untag_resource(params = {}) ⇒ Struct
Removes tags from a resource.
7040 7041 7042 7043 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 7040 def untag_resource(params = {}, = {}) req = build_request(:untag_resource, params) req.send_request() end |
#update_detector(params = {}) ⇒ Struct
Updates the GuardDuty detector specified by the detector ID.
Specifying both EKS Runtime Monitoring (EKS_RUNTIME_MONITORING) and
Runtime Monitoring (RUNTIME_MONITORING) will cause an error. You can
add only one of these two features because Runtime Monitoring already
includes the threat detection for Amazon EKS resources. For more
information, see Runtime Monitoring.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
7136 7137 7138 7139 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 7136 def update_detector(params = {}, = {}) req = build_request(:update_detector, params) req.send_request() end |
#update_filter(params = {}) ⇒ Types::UpdateFilterResponse
Updates the filter specified by the filter name.
8537 8538 8539 8540 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 8537 def update_filter(params = {}, = {}) req = build_request(:update_filter, params) req.send_request() end |
#update_findings_feedback(params = {}) ⇒ Struct
Marks the specified GuardDuty findings as useful or not useful.
8579 8580 8581 8582 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 8579 def update_findings_feedback(params = {}, = {}) req = build_request(:update_findings_feedback, params) req.send_request() end |
#update_ip_set(params = {}) ⇒ Struct
Updates the IPSet specified by the IPSet ID.
8631 8632 8633 8634 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 8631 def update_ip_set(params = {}, = {}) req = build_request(:update_ip_set, params) req.send_request() end |
#update_malware_protection_plan(params = {}) ⇒ Struct
Updates an existing Malware Protection plan resource.
8677 8678 8679 8680 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 8677 def update_malware_protection_plan(params = {}, = {}) req = build_request(:update_malware_protection_plan, params) req.send_request() end |
#update_malware_scan_settings(params = {}) ⇒ Struct
Updates the malware scan settings.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
8746 8747 8748 8749 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 8746 def update_malware_scan_settings(params = {}, = {}) req = build_request(:update_malware_scan_settings, params) req.send_request() end |
#update_member_detectors(params = {}) ⇒ Types::UpdateMemberDetectorsResponse
Contains information on member accounts to be updated.
Specifying both EKS Runtime Monitoring (EKS_RUNTIME_MONITORING) and
Runtime Monitoring (RUNTIME_MONITORING) will cause an error. You can
add only one of these two features because Runtime Monitoring already
includes the threat detection for Amazon EKS resources. For more
information, see Runtime Monitoring.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
8837 8838 8839 8840 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 8837 def update_member_detectors(params = {}, = {}) req = build_request(:update_member_detectors, params) req.send_request() end |
#update_organization_configuration(params = {}) ⇒ Struct
Configures the delegated administrator account with the provided
values. You must provide a value for either
autoEnableOrganizationMembers or autoEnable, but not both.
Specifying both EKS Runtime Monitoring (EKS_RUNTIME_MONITORING) and
Runtime Monitoring (RUNTIME_MONITORING) will cause an error. You can
add only one of these two features because Runtime Monitoring already
includes the threat detection for Amazon EKS resources. For more
information, see Runtime Monitoring.
There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.
8962 8963 8964 8965 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 8962 def update_organization_configuration(params = {}, = {}) req = build_request(:update_organization_configuration, params) req.send_request() end |
#update_publishing_destination(params = {}) ⇒ Struct
Updates information about the publishing destination specified by the
destinationId.
9005 9006 9007 9008 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 9005 def update_publishing_destination(params = {}, = {}) req = build_request(:update_publishing_destination, params) req.send_request() end |
#update_threat_entity_set(params = {}) ⇒ Struct
Updates the threat entity set associated with the specified
threatEntitySetId.
9064 9065 9066 9067 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 9064 def update_threat_entity_set(params = {}, = {}) req = build_request(:update_threat_entity_set, params) req.send_request() end |
#update_threat_intel_set(params = {}) ⇒ Struct
Updates the ThreatIntelSet specified by the ThreatIntelSet ID.
9118 9119 9120 9121 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 9118 def update_threat_intel_set(params = {}, = {}) req = build_request(:update_threat_intel_set, params) req.send_request() end |
#update_trusted_entity_set(params = {}) ⇒ Struct
Updates the trusted entity set associated with the specified
trustedEntitySetId.
9177 9178 9179 9180 |
# File 'gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb', line 9177 def update_trusted_entity_set(params = {}, = {}) req = build_request(:update_trusted_entity_set, params) req.send_request() end |