Class Indicator
- All Implemented Interfaces:
Serializable,SdkPojo,ToCopyableBuilder<Indicator.Builder,Indicator>
Detective investigations triages indicators of compromises such as a finding and surfaces only the most critical and
suspicious issues, so you can focus on high-level investigations. An Indicator lets you determine if an
Amazon Web Services resource is involved in unusual activity that could indicate malicious behavior and its impact.
- See Also:
-
Nested Class Summary
Nested Classes -
Method Summary
Modifier and TypeMethodDescriptionstatic Indicator.Builderbuilder()final booleanfinal booleanequalsBySdkFields(Object obj) Indicates whether some other object is "equal to" this one by SDK fields.final <T> Optional<T> getValueForField(String fieldName, Class<T> clazz) final inthashCode()final IndicatorDetailDetails about the indicators of compromise that are used to determine if a resource is involved in a security incident.final IndicatorTypeThe type of indicator.final StringThe type of indicator.static Class<? extends Indicator.Builder> Take this object and create a builder that contains all of the current property values of this object.final StringtoString()Returns a string representation of this object.Methods inherited from interface software.amazon.awssdk.utils.builder.ToCopyableBuilder
copy
-
Method Details
-
indicatorType
The type of indicator.
If the service returns an enum value that is not available in the current SDK version,
indicatorTypewill returnIndicatorType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available fromindicatorTypeAsString().- Returns:
- The type of indicator.
- See Also:
-
indicatorTypeAsString
The type of indicator.
If the service returns an enum value that is not available in the current SDK version,
indicatorTypewill returnIndicatorType.UNKNOWN_TO_SDK_VERSION. The raw value returned by the service is available fromindicatorTypeAsString().- Returns:
- The type of indicator.
- See Also:
-
indicatorDetail
Details about the indicators of compromise that are used to determine if a resource is involved in a security incident. An indicator of compromise (IOC) is an artifact observed in or on a network, system, or environment that can (with a high level of confidence) identify malicious activity or a security incident.
- Returns:
- Details about the indicators of compromise that are used to determine if a resource is involved in a security incident. An indicator of compromise (IOC) is an artifact observed in or on a network, system, or environment that can (with a high level of confidence) identify malicious activity or a security incident.
-
toBuilder
Description copied from interface:ToCopyableBuilderTake this object and create a builder that contains all of the current property values of this object.- Specified by:
toBuilderin interfaceToCopyableBuilder<Indicator.Builder,Indicator> - Returns:
- a builder for type T
-
builder
-
serializableBuilderClass
-
hashCode
public final int hashCode() -
equals
-
equalsBySdkFields
Description copied from interface:SdkPojoIndicates whether some other object is "equal to" this one by SDK fields. An SDK field is a modeled, non-inherited field in anSdkPojoclass, and is generated based on a service model.If an
SdkPojoclass does not have any inherited fields,equalsBySdkFieldsandequalsare essentially the same.- Specified by:
equalsBySdkFieldsin interfaceSdkPojo- Parameters:
obj- the object to be compared with- Returns:
- true if the other object equals to this object by sdk fields, false otherwise.
-
toString
Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value. -
getValueForField
-
sdkFields
-