OBJECT
ThreatHuntResultObjectsSummary
Description
Summary of a threat hunt for an object.
link GraphQL Schema definition
- type ThreatHuntResultObjectsSummary {
- # Cluster information.
- : Cluster
- # Earliest snapshot date containing a match.
- : DateTime
- # Specifies whether the object has quarantined matches.
- : Boolean!
- # Latest snapshot date containing a match.
- : DateTime
- # Latest snapshot date not containing a match.
- : DateTime
- # The object location.
- : String!
- # List of indicators of compromise (IOCs) found in all the matches.
- : [IndicatorOfCompromise!]!
- # The scanned object, if it is a CDM object.
- : CdmHierarchySnappableNew
- # Scan status of the object.
- : ThreatHuntObjectStatus!
- # The scanned object.
- : HierarchySnappable
- # Threat hunt summaries for each snapshot.
- : [ThreatHuntResultSnapshotStats!]!
- # Total paths for which malware was found.
- : Long!
- # Total snapshots where a match was found.
- : Int!
- # Total unique paths for which malware was found.
- : Long!
- }
link Require by
- ThreatHuntResultObjectsSummaryConnectionPaginated list of ThreatHuntResultObjectsSummary objects. Each page of the results includes at most 1000 entries. Query the `pageInfo.hasNextPage` field to know whether all objects were returned.
- ThreatHuntResultObjectsSummaryEdgeWrapper around the ThreatHuntResultObjectsSummary object. This wrapper is used for pagination.
- ThreatHuntSummaryReplyResponse to the threat hunt summary request.