/AWS1/CL_GDYRESOURCE¶
Contains information about the Amazon Web Services resource associated with the activity that prompted GuardDuty to generate a finding.
CONSTRUCTOR¶
IMPORTING¶
Optional arguments:¶
io_accesskeydetails TYPE REF TO /AWS1/CL_GDYACCESSKEYDETAILS /AWS1/CL_GDYACCESSKEYDETAILS¶
The IAM access key details (user information) of a user that engaged in the activity that prompted GuardDuty to generate a finding.
it_s3bucketdetails TYPE /AWS1/CL_GDYS3BUCKETDETAIL=>TT_S3BUCKETDETAILS TT_S3BUCKETDETAILS¶
Contains information on the S3 bucket.
io_instancedetails TYPE REF TO /AWS1/CL_GDYINSTANCEDETAILS /AWS1/CL_GDYINSTANCEDETAILS¶
The information about the EC2 instance associated with the activity that prompted GuardDuty to generate a finding.
io_eksclusterdetails TYPE REF TO /AWS1/CL_GDYEKSCLUSTERDETAILS /AWS1/CL_GDYEKSCLUSTERDETAILS¶
Details about the EKS cluster involved in a Kubernetes finding.
io_kubernetesdetails TYPE REF TO /AWS1/CL_GDYKUBERNETESDETAILS /AWS1/CL_GDYKUBERNETESDETAILS¶
Details about the Kubernetes user and workload involved in a Kubernetes finding.
iv_resourcetype TYPE /AWS1/GDYSTRING /AWS1/GDYSTRING¶
The type of Amazon Web Services resource.
io_ebsvolumedetails TYPE REF TO /AWS1/CL_GDYEBSVOLUMEDETAILS /AWS1/CL_GDYEBSVOLUMEDETAILS¶
Contains list of scanned and skipped EBS volumes with details.
io_ecsclusterdetails TYPE REF TO /AWS1/CL_GDYECSCLUSTERDETAILS /AWS1/CL_GDYECSCLUSTERDETAILS¶
Contains information about the details of the ECS Cluster.
io_containerdetails TYPE REF TO /AWS1/CL_GDYCONTAINER /AWS1/CL_GDYCONTAINER¶
ContainerDetails
io_rdsdbinstancedetails TYPE REF TO /AWS1/CL_GDYRDSDBINSTDETAILS /AWS1/CL_GDYRDSDBINSTDETAILS¶
Contains information about the database instance to which an anomalous login attempt was made.
io_rdslimitlessdbdetails TYPE REF TO /AWS1/CL_GDYRDSLIMITLESSDBDETS /AWS1/CL_GDYRDSLIMITLESSDBDETS¶
Contains information about the RDS Limitless database that was involved in a GuardDuty finding.
io_rdsdbuserdetails TYPE REF TO /AWS1/CL_GDYRDSDBUSERDETAILS /AWS1/CL_GDYRDSDBUSERDETAILS¶
Contains information about the user details through which anomalous login attempt was made.
io_lambdadetails TYPE REF TO /AWS1/CL_GDYLAMBDADETAILS /AWS1/CL_GDYLAMBDADETAILS¶
Contains information about the Lambda function that was involved in a finding.
io_ebssnapshotdetails TYPE REF TO /AWS1/CL_GDYEBSSNAPSHOTDETAILS /AWS1/CL_GDYEBSSNAPSHOTDETAILS¶
Contains details about the EBS snapshot that was scanned.
io_ec2imagedetails TYPE REF TO /AWS1/CL_GDYEC2IMAGEDETAILS /AWS1/CL_GDYEC2IMAGEDETAILS¶
Contains details about the EC2 image that was scanned.
io_recoverypointdetails TYPE REF TO /AWS1/CL_GDYRECPOINTDETAILS /AWS1/CL_GDYRECPOINTDETAILS¶
Contains details about the backup recovery point that was scanned.
Queryable Attributes¶
AccessKeyDetails¶
The IAM access key details (user information) of a user that engaged in the activity that prompted GuardDuty to generate a finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_ACCESSKEYDETAILS() |
Getter for ACCESSKEYDETAILS |
S3BucketDetails¶
Contains information on the S3 bucket.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_S3BUCKETDETAILS() |
Getter for S3BUCKETDETAILS, with configurable default |
ASK_S3BUCKETDETAILS() |
Getter for S3BUCKETDETAILS w/ exceptions if field has no val |
HAS_S3BUCKETDETAILS() |
Determine if S3BUCKETDETAILS has a value |
InstanceDetails¶
The information about the EC2 instance associated with the activity that prompted GuardDuty to generate a finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_INSTANCEDETAILS() |
Getter for INSTANCEDETAILS |
EksClusterDetails¶
Details about the EKS cluster involved in a Kubernetes finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_EKSCLUSTERDETAILS() |
Getter for EKSCLUSTERDETAILS |
KubernetesDetails¶
Details about the Kubernetes user and workload involved in a Kubernetes finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_KUBERNETESDETAILS() |
Getter for KUBERNETESDETAILS |
ResourceType¶
The type of Amazon Web Services resource.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_RESOURCETYPE() |
Getter for RESOURCETYPE, with configurable default |
ASK_RESOURCETYPE() |
Getter for RESOURCETYPE w/ exceptions if field has no value |
HAS_RESOURCETYPE() |
Determine if RESOURCETYPE has a value |
EbsVolumeDetails¶
Contains list of scanned and skipped EBS volumes with details.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_EBSVOLUMEDETAILS() |
Getter for EBSVOLUMEDETAILS |
EcsClusterDetails¶
Contains information about the details of the ECS Cluster.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_ECSCLUSTERDETAILS() |
Getter for ECSCLUSTERDETAILS |
ContainerDetails¶
ContainerDetails
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CONTAINERDETAILS() |
Getter for CONTAINERDETAILS |
RdsDbInstanceDetails¶
Contains information about the database instance to which an anomalous login attempt was made.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_RDSDBINSTANCEDETAILS() |
Getter for RDSDBINSTANCEDETAILS |
RdsLimitlessDbDetails¶
Contains information about the RDS Limitless database that was involved in a GuardDuty finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_RDSLIMITLESSDBDETAILS() |
Getter for RDSLIMITLESSDBDETAILS |
RdsDbUserDetails¶
Contains information about the user details through which anomalous login attempt was made.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_RDSDBUSERDETAILS() |
Getter for RDSDBUSERDETAILS |
LambdaDetails¶
Contains information about the Lambda function that was involved in a finding.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_LAMBDADETAILS() |
Getter for LAMBDADETAILS |
EbsSnapshotDetails¶
Contains details about the EBS snapshot that was scanned.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_EBSSNAPSHOTDETAILS() |
Getter for EBSSNAPSHOTDETAILS |
Ec2ImageDetails¶
Contains details about the EC2 image that was scanned.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_EC2IMAGEDETAILS() |
Getter for EC2IMAGEDETAILS |
RecoveryPointDetails¶
Contains details about the backup recovery point that was scanned.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_RECOVERYPOINTDETAILS() |
Getter for RECOVERYPOINTDETAILS |