ENUM

IndicatorOfCompromiseKind

Description

Supported Indicators Of Compromise are Yara, File Hash, and File Pattern.

GraphQL Schema definition

enum IndicatorOfCompromiseKind {
#   Matching file patterns.
IOC_FILE_PATTERN
#   Match for files with specified hash.
IOC_HASH
#   Unused default.
IOC_UNSPECIFIED
#   Matching Yara rules.
IOC_YARA
}

Require by

IndicatorOfCompromiseIndicator of Compromise.
IndicatorOfCompromiseInputThe data which represents indicator of compromise: a file path/pattern, hash, or YARA rule.