INPUT_OBJECT

ThreatHuntBaseConfigInputType

Description

Base config for a threat hunt.

link GraphQL Schema definition

  • input ThreatHuntBaseConfigInputType {
  • # File criteria for scan of objects.
  • fileScanCriteria: HuntScanFileCriteriaInputType
  • # IOC input of threat hunt. Can be either the list of IOCs or a provider ID.
  • ioc: IocInputType!
  • # Indicator Of Compromise within a snapshot terminates once this number
  • # of matches have been detected.
  • maxMatchesPerSnapshot: Int
  • # Name of the threat hunt.
  • name: String!
  • # Notes to describe this threat hunt.
  • notes: String
  • # Scan scope of each object with respect to its snapshots.
  • snapshotScanLimit: ScanLimitInputType
  • # Threat hunt type.
  • threatHuntType: ThreatHuntType!
  • }

link Require by