ENUM
IndicatorOfCompromiseKind
Description
Supported Indicators Of Compromise are Yara, File Hash, and File Pattern.
link GraphQL Schema definition
- enum IndicatorOfCompromiseKind {
- # Matching file patterns.
- # Match for files with specified hash.
- # Unused default.
- # Matching Yara rules.
- }
link Require by
- FileMatchData for a matched file.
- IndicatorOfCompromiseIndicator of Compromise.
- IndicatorOfCompromiseInputThe data which represents indicator of compromise: a file path/pattern, hash, or YARA rule.
- IndicatorOfCompromiseInputTypeIndicator of Compromise.
- IOCDetailsDetails of IOC for a matched file.
- Query
- ThreatHuntIocDetailsIOC details for a matched file.
- ThreatHuntSummaryFiltersInputFilters to specify the threat hunt summary.
- ThreatMonitoringFileMatchDetailsReplyResponse to ThreatMonitoringFileMatchDetails.
- ThreatMonitoringMatchedObjectDetails about the scanned object.