NetworkEndpoint

Contains information about network endpoints involved in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in Security Hub, you must have GuardDuty enabled. For more information, see GuardDuty Extended Threat Detection in the Amazon GuardDuty User Guide.

This field can provide information about the network endpoints associated with the resource in the attack sequence finding, or about a specific network endpoint used for the attack.

Types

Link copied to clipboard
class Builder
Link copied to clipboard
object Companion

Properties

Link copied to clipboard

The Autonomous System Number (ASN) of the network endpoint.

Link copied to clipboard

Information about the network connection.

Link copied to clipboard

The domain information for the network endpoint.

Link copied to clipboard
val id: String?

The identifier of the network endpoint involved in the attack sequence.

Link copied to clipboard
val ip: String?

The IP address used in the network endpoint.

Link copied to clipboard

Information about the location of the network endpoint.

Link copied to clipboard
val port: Int?

The port number associated with the network endpoint.

Functions

Link copied to clipboard
inline fun copy(block: NetworkEndpoint.Builder.() -> Unit = {}): NetworkEndpoint
Link copied to clipboard
open operator override fun equals(other: Any?): Boolean
Link copied to clipboard
open override fun hashCode(): Int
Link copied to clipboard
open override fun toString(): String