Skip to content

Commit b2a4c95

Browse files
author
awstools
committed
feat(client-guardduty): Add new Multi Domain Correlation findings.
1 parent 9f110aa commit b2a4c95

11 files changed

+4372
-1618
lines changed

clients/client-guardduty/src/commands/GetFindingsCommand.ts

+172
Original file line numberDiff line numberDiff line change
@@ -813,6 +813,177 @@ export interface GetFindingsCommandOutput extends GetFindingsResponse, __Metadat
813813
* // },
814814
* // },
815815
* // },
816+
* // Sequence: { // Sequence
817+
* // Uid: "STRING_VALUE", // required
818+
* // Description: "STRING_VALUE", // required
819+
* // Actors: [ // Actors
820+
* // { // Actor
821+
* // Id: "STRING_VALUE", // required
822+
* // User: { // User
823+
* // Name: "STRING_VALUE", // required
824+
* // Uid: "STRING_VALUE", // required
825+
* // Type: "STRING_VALUE", // required
826+
* // CredentialUid: "STRING_VALUE",
827+
* // Account: { // Account
828+
* // Uid: "STRING_VALUE", // required
829+
* // Name: "STRING_VALUE",
830+
* // },
831+
* // },
832+
* // Session: { // Session
833+
* // Uid: "STRING_VALUE",
834+
* // MfaStatus: "ENABLED" || "DISABLED",
835+
* // CreatedTime: new Date("TIMESTAMP"),
836+
* // Issuer: "STRING_VALUE",
837+
* // },
838+
* // },
839+
* // ],
840+
* // Resources: [ // Resources
841+
* // { // ResourceV2
842+
* // Uid: "STRING_VALUE", // required
843+
* // Name: "STRING_VALUE",
844+
* // AccountId: "STRING_VALUE",
845+
* // ResourceType: "EC2_INSTANCE" || "EC2_NETWORK_INTERFACE" || "S3_BUCKET" || "S3_OBJECT" || "ACCESS_KEY", // required
846+
* // Region: "STRING_VALUE",
847+
* // Service: "STRING_VALUE",
848+
* // CloudPartition: "STRING_VALUE",
849+
* // Tags: "<Tags>",
850+
* // Data: { // ResourceData
851+
* // S3Bucket: { // S3Bucket
852+
* // OwnerId: "STRING_VALUE",
853+
* // CreatedAt: new Date("TIMESTAMP"),
854+
* // EncryptionType: "STRING_VALUE",
855+
* // EncryptionKeyArn: "STRING_VALUE",
856+
* // EffectivePermission: "STRING_VALUE",
857+
* // PublicReadAccess: "BLOCKED" || "ALLOWED",
858+
* // PublicWriteAccess: "BLOCKED" || "ALLOWED",
859+
* // AccountPublicAccess: { // PublicAccessConfiguration
860+
* // PublicAclAccess: "BLOCKED" || "ALLOWED",
861+
* // PublicPolicyAccess: "BLOCKED" || "ALLOWED",
862+
* // PublicAclIgnoreBehavior: "IGNORED" || "NOT_IGNORED",
863+
* // PublicBucketRestrictBehavior: "RESTRICTED" || "NOT_RESTRICTED",
864+
* // },
865+
* // BucketPublicAccess: {
866+
* // PublicAclAccess: "BLOCKED" || "ALLOWED",
867+
* // PublicPolicyAccess: "BLOCKED" || "ALLOWED",
868+
* // PublicAclIgnoreBehavior: "IGNORED" || "NOT_IGNORED",
869+
* // PublicBucketRestrictBehavior: "RESTRICTED" || "NOT_RESTRICTED",
870+
* // },
871+
* // S3ObjectUids: [ // S3ObjectUids
872+
* // "STRING_VALUE",
873+
* // ],
874+
* // },
875+
* // Ec2Instance: { // Ec2Instance
876+
* // AvailabilityZone: "STRING_VALUE",
877+
* // ImageDescription: "STRING_VALUE",
878+
* // InstanceState: "STRING_VALUE",
879+
* // IamInstanceProfile: {
880+
* // Arn: "STRING_VALUE",
881+
* // Id: "STRING_VALUE",
882+
* // },
883+
* // InstanceType: "STRING_VALUE",
884+
* // OutpostArn: "STRING_VALUE",
885+
* // Platform: "STRING_VALUE",
886+
* // ProductCodes: [
887+
* // {
888+
* // Code: "STRING_VALUE",
889+
* // ProductType: "STRING_VALUE",
890+
* // },
891+
* // ],
892+
* // Ec2NetworkInterfaceUids: [ // Ec2NetworkInterfaceUids
893+
* // "STRING_VALUE",
894+
* // ],
895+
* // },
896+
* // AccessKey: { // AccessKey
897+
* // PrincipalId: "STRING_VALUE",
898+
* // UserName: "STRING_VALUE",
899+
* // UserType: "STRING_VALUE",
900+
* // },
901+
* // Ec2NetworkInterface: { // Ec2NetworkInterface
902+
* // Ipv6Addresses: [
903+
* // "STRING_VALUE",
904+
* // ],
905+
* // PrivateIpAddresses: [
906+
* // {
907+
* // PrivateDnsName: "STRING_VALUE",
908+
* // PrivateIpAddress: "STRING_VALUE",
909+
* // },
910+
* // ],
911+
* // PublicIp: "STRING_VALUE",
912+
* // SecurityGroups: "<SecurityGroups>",
913+
* // SubNetId: "STRING_VALUE",
914+
* // VpcId: "STRING_VALUE",
915+
* // },
916+
* // S3Object: { // S3Object
917+
* // ETag: "STRING_VALUE",
918+
* // Key: "STRING_VALUE",
919+
* // VersionId: "STRING_VALUE",
920+
* // },
921+
* // },
922+
* // },
923+
* // ],
924+
* // Endpoints: [ // NetworkEndpoints
925+
* // { // NetworkEndpoint
926+
* // Id: "STRING_VALUE", // required
927+
* // Ip: "STRING_VALUE",
928+
* // Domain: "STRING_VALUE",
929+
* // Port: Number("int"),
930+
* // Location: { // NetworkGeoLocation
931+
* // City: "STRING_VALUE", // required
932+
* // Country: "STRING_VALUE", // required
933+
* // Latitude: Number("double"), // required
934+
* // Longitude: Number("double"), // required
935+
* // },
936+
* // AutonomousSystem: { // AutonomousSystem
937+
* // Name: "STRING_VALUE", // required
938+
* // Number: Number("int"), // required
939+
* // },
940+
* // Connection: { // NetworkConnection
941+
* // Direction: "INBOUND" || "OUTBOUND", // required
942+
* // },
943+
* // },
944+
* // ],
945+
* // Signals: [ // Signals // required
946+
* // { // Signal
947+
* // Uid: "STRING_VALUE", // required
948+
* // Type: "FINDING" || "CLOUD_TRAIL" || "S3_DATA_EVENTS", // required
949+
* // Description: "STRING_VALUE",
950+
* // Name: "STRING_VALUE", // required
951+
* // CreatedAt: new Date("TIMESTAMP"), // required
952+
* // UpdatedAt: new Date("TIMESTAMP"), // required
953+
* // FirstSeenAt: new Date("TIMESTAMP"), // required
954+
* // LastSeenAt: new Date("TIMESTAMP"), // required
955+
* // Severity: Number("double"),
956+
* // Count: Number("int"), // required
957+
* // ResourceUids: [ // ResourceUids
958+
* // "STRING_VALUE",
959+
* // ],
960+
* // ActorIds: [ // ActorIds
961+
* // "STRING_VALUE",
962+
* // ],
963+
* // EndpointIds: [ // EndpointIds
964+
* // "STRING_VALUE",
965+
* // ],
966+
* // SignalIndicators: [ // Indicators
967+
* // { // Indicator
968+
* // Key: "SUSPICIOUS_USER_AGENT" || "SUSPICIOUS_NETWORK" || "MALICIOUS_IP" || "TOR_IP" || "ATTACK_TACTIC" || "HIGH_RISK_API" || "ATTACK_TECHNIQUE" || "UNUSUAL_API_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_USER", // required
969+
* // Values: [ // IndicatorValues
970+
* // "STRING_VALUE",
971+
* // ],
972+
* // Title: "STRING_VALUE",
973+
* // },
974+
* // ],
975+
* // },
976+
* // ],
977+
* // SequenceIndicators: [
978+
* // {
979+
* // Key: "SUSPICIOUS_USER_AGENT" || "SUSPICIOUS_NETWORK" || "MALICIOUS_IP" || "TOR_IP" || "ATTACK_TACTIC" || "HIGH_RISK_API" || "ATTACK_TECHNIQUE" || "UNUSUAL_API_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_ACCOUNT" || "UNUSUAL_ASN_FOR_USER", // required
980+
* // Values: [
981+
* // "STRING_VALUE",
982+
* // ],
983+
* // Title: "STRING_VALUE",
984+
* // },
985+
* // ],
986+
* // },
816987
* // },
817988
* // MalwareScanDetails: { // MalwareScanDetails
818989
* // Threats: [ // Threats
@@ -833,6 +1004,7 @@ export interface GetFindingsCommandOutput extends GetFindingsResponse, __Metadat
8331004
* // Title: "STRING_VALUE",
8341005
* // Type: "STRING_VALUE", // required
8351006
* // UpdatedAt: "STRING_VALUE", // required
1007+
* // AssociatedAttackSequenceArn: "STRING_VALUE",
8361008
* // },
8371009
* // ],
8381010
* // };

clients/client-guardduty/src/commands/GetIPSetCommand.ts

+1-1
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ import { MetadataBearer as __MetadataBearer } from "@smithy/types";
66

77
import { commonParams } from "../endpoint/EndpointParameters";
88
import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
9-
import { GetIPSetRequest, GetIPSetResponse } from "../models/models_0";
9+
import { GetIPSetRequest, GetIPSetResponse } from "../models/models_1";
1010
import { de_GetIPSetCommand, se_GetIPSetCommand } from "../protocols/Aws_restJson1";
1111

1212
/**

clients/client-guardduty/src/commands/GetMalwareProtectionPlanCommand.ts

+1-1
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ import { MetadataBearer as __MetadataBearer } from "@smithy/types";
66

77
import { commonParams } from "../endpoint/EndpointParameters";
88
import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
9-
import { GetMalwareProtectionPlanRequest, GetMalwareProtectionPlanResponse } from "../models/models_0";
9+
import { GetMalwareProtectionPlanRequest, GetMalwareProtectionPlanResponse } from "../models/models_1";
1010
import { de_GetMalwareProtectionPlanCommand, se_GetMalwareProtectionPlanCommand } from "../protocols/Aws_restJson1";
1111

1212
/**

clients/client-guardduty/src/commands/GetMalwareScanSettingsCommand.ts

+1-1
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ import { MetadataBearer as __MetadataBearer } from "@smithy/types";
66

77
import { commonParams } from "../endpoint/EndpointParameters";
88
import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
9-
import { GetMalwareScanSettingsRequest, GetMalwareScanSettingsResponse } from "../models/models_0";
9+
import { GetMalwareScanSettingsRequest, GetMalwareScanSettingsResponse } from "../models/models_1";
1010
import { de_GetMalwareScanSettingsCommand, se_GetMalwareScanSettingsCommand } from "../protocols/Aws_restJson1";
1111

1212
/**

clients/client-guardduty/src/commands/GetMasterAccountCommand.ts

+1-1
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ import { MetadataBearer as __MetadataBearer } from "@smithy/types";
66

77
import { commonParams } from "../endpoint/EndpointParameters";
88
import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
9-
import { GetMasterAccountRequest, GetMasterAccountResponse } from "../models/models_0";
9+
import { GetMasterAccountRequest, GetMasterAccountResponse } from "../models/models_1";
1010
import { de_GetMasterAccountCommand, se_GetMasterAccountCommand } from "../protocols/Aws_restJson1";
1111

1212
/**

clients/client-guardduty/src/commands/GetMemberDetectorsCommand.ts

+1-1
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ import { MetadataBearer as __MetadataBearer } from "@smithy/types";
66

77
import { commonParams } from "../endpoint/EndpointParameters";
88
import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
9-
import { GetMemberDetectorsRequest, GetMemberDetectorsResponse } from "../models/models_0";
9+
import { GetMemberDetectorsRequest, GetMemberDetectorsResponse } from "../models/models_1";
1010
import { de_GetMemberDetectorsCommand, se_GetMemberDetectorsCommand } from "../protocols/Aws_restJson1";
1111

1212
/**

clients/client-guardduty/src/commands/GetMembersCommand.ts

+1-1
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ import { MetadataBearer as __MetadataBearer } from "@smithy/types";
66

77
import { commonParams } from "../endpoint/EndpointParameters";
88
import { GuardDutyClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../GuardDutyClient";
9-
import { GetMembersRequest, GetMembersResponse, GetMembersResponseFilterSensitiveLog } from "../models/models_0";
9+
import { GetMembersRequest, GetMembersResponse, GetMembersResponseFilterSensitiveLog } from "../models/models_1";
1010
import { de_GetMembersCommand, se_GetMembersCommand } from "../protocols/Aws_restJson1";
1111

1212
/**

0 commit comments

Comments
 (0)