Class: Aws::Detective::Types::GetInvestigationResponse
- Inherits:
-
Struct
- Object
- Struct
- Aws::Detective::Types::GetInvestigationResponse
- Defined in:
- gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb
Overview
Constant Summary collapse
- SENSITIVE =
[]
Instance Attribute Summary collapse
-
#created_time ⇒ Time
The creation time of the investigation report in UTC time stamp format.
-
#entity_arn ⇒ String
The unique Amazon Resource Name (ARN).
-
#entity_type ⇒ String
Type of entity.
-
#graph_arn ⇒ String
The Amazon Resource Name (ARN) of the behavior graph.
-
#investigation_id ⇒ String
The investigation ID of the investigation report.
-
#scope_end_time ⇒ Time
The data and time when the investigation began.
-
#scope_start_time ⇒ Time
The start date and time used to set the scope time within which you want to generate the investigation report.
-
#severity ⇒ String
The severity assigned is based on the likelihood and impact of the indicators of compromise discovered in the investigation.
-
#state ⇒ String
The current state of the investigation.
-
#status ⇒ String
The status based on the completion status of the investigation.
Instance Attribute Details
#created_time ⇒ Time
The creation time of the investigation report in UTC time stamp format.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |
#entity_arn ⇒ String
The unique Amazon Resource Name (ARN). Detective supports IAM user ARNs and IAM role ARNs.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |
#entity_type ⇒ String
Type of entity. For example, Amazon Web Services accounts, such as an IAM user and/or IAM role.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |
#graph_arn ⇒ String
The Amazon Resource Name (ARN) of the behavior graph.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |
#investigation_id ⇒ String
The investigation ID of the investigation report.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |
#scope_end_time ⇒ Time
The data and time when the investigation began. The value is an UTC
ISO8601 formatted string. For example, 2021-08-18T16:35:56.284Z
.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |
#scope_start_time ⇒ Time
The start date and time used to set the scope time within which you
want to generate the investigation report. The value is an UTC
ISO8601 formatted string. For example, 2021-08-18T16:35:56.284Z
.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |
#severity ⇒ String
The severity assigned is based on the likelihood and impact of the indicators of compromise discovered in the investigation.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |
#state ⇒ String
The current state of the investigation. An archived investigation indicates that you have completed reviewing the investigation.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |
#status ⇒ String
The status based on the completion status of the investigation.
578 579 580 581 582 583 584 585 586 587 588 589 590 591 |
# File 'gems/aws-sdk-detective/lib/aws-sdk-detective/types.rb', line 578 class GetInvestigationResponse < Struct.new( :graph_arn, :investigation_id, :entity_arn, :entity_type, :created_time, :scope_start_time, :scope_end_time, :status, :severity, :state) SENSITIVE = [] include Aws::Structure end |