| Package | Description |
|---|---|
| com.amazonaws.services.securityhub |
Security Hub provides you with a comprehensive view of the security state of your Amazon Web Services environment and
resources.
|
| com.amazonaws.services.securityhub.model |
| Class and Description |
|---|
| AcceptAdministratorInvitationRequest |
| AcceptAdministratorInvitationResult |
| AcceptInvitationRequest |
| AcceptInvitationResult |
| AccessDeniedException
You don't have permission to perform the action specified in the request.
|
| AccountDetails
The details of an Amazon Web Services account.
|
| Action
Provides details about one of the following actions that affects or that was taken on a resource:
|
| ActionLocalIpDetails
Provides information about the IP address where the scanned port is located.
|
| ActionLocalPortDetails
For
NetworkConnectionAction and PortProbeDetails, LocalPortDetails provides
information about the local port that was involved in the action. |
| ActionRemoteIpDetails
For
AwsApiAction, NetworkConnectionAction, and PortProbeAction,
RemoteIpDetails provides information about the remote IP address that was involved in the action. |
| ActionRemotePortDetails
Provides information about the remote port that was involved in an attempted network connection.
|
| ActionTarget
An
ActionTarget object. |
| Adjustment
An adjustment to the CVSS metric.
|
| AdminAccount
Represents a Security Hub administrator account designated by an organization management account.
|
| AdminStatus |
| AvailabilityZone
Information about an Availability Zone.
|
| AwsApiCallAction
Provided if
ActionType is AWS_API_CALL. |
| AwsApiCallActionDomainDetails
Provided if
CallerType is domain. |
| AwsApiGatewayAccessLogSettings
Contains information about settings for logging access for the stage.
|
| AwsApiGatewayCanarySettings
Contains information about settings for canary deployment in the stage.
|
| AwsApiGatewayEndpointConfiguration
Contains information about the endpoints for the API.
|
| AwsApiGatewayMethodSettings
Defines settings for a method for the stage.
|
| AwsApiGatewayRestApiDetails
Contains information about a REST API in version 1 of Amazon API Gateway.
|
| AwsApiGatewayStageDetails
Provides information about a version 1 Amazon API Gateway stage.
|
| AwsApiGatewayV2ApiDetails
Contains information about a version 2 API in Amazon API Gateway.
|
| AwsApiGatewayV2RouteSettings
Contains route settings for a stage.
|
| AwsApiGatewayV2StageDetails
Contains information about a version 2 stage for Amazon API Gateway.
|
| AwsAutoScalingAutoScalingGroupAvailabilityZonesListDetails
An Availability Zone for the automatic scaling group.
|
| AwsAutoScalingAutoScalingGroupDetails
Provides details about an auto scaling group.
|
| AwsAutoScalingAutoScalingGroupMixedInstancesPolicyDetails
The mixed instances policy for the automatic scaling group.
|
| AwsAutoScalingAutoScalingGroupMixedInstancesPolicyInstancesDistributionDetails
Information about the instances distribution.
|
| AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateDetails
Describes a launch template and overrides for a mixed instances policy.
|
| AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateLaunchTemplateSpecification
Details about the launch template to use.
|
| AwsAutoScalingAutoScalingGroupMixedInstancesPolicyLaunchTemplateOverridesListDetails
Property values to use to override the values in the launch template.
|
| AwsAutoScalingLaunchConfigurationBlockDeviceMappingsDetails
A block device for the instance.
|
| AwsAutoScalingLaunchConfigurationBlockDeviceMappingsEbsDetails
Parameters that are used to automatically set up EBS volumes when an instance is launched.
|
| AwsAutoScalingLaunchConfigurationDetails
Details about a launch configuration.
|
| AwsAutoScalingLaunchConfigurationInstanceMonitoringDetails
Information about the type of monitoring for instances in the group.
|
| AwsAutoScalingLaunchConfigurationMetadataOptions
The metadata options for the instances.
|
| AwsCertificateManagerCertificateDetails
Provides details about an Certificate Manager certificate.
|
| AwsCertificateManagerCertificateDomainValidationOption
Contains information about one of the following:
|
| AwsCertificateManagerCertificateExtendedKeyUsage
Contains information about an extended key usage X.509 v3 extension object.
|
| AwsCertificateManagerCertificateKeyUsage
Contains information about a key usage X.509 v3 extension object.
|
| AwsCertificateManagerCertificateOptions
Contains other options for the certificate.
|
| AwsCertificateManagerCertificateRenewalSummary
Contains information about the Certificate Manager managed renewal for an
AMAZON_ISSUED certificate. |
| AwsCertificateManagerCertificateResourceRecord
Provides details about the CNAME record that is added to the DNS database for domain validation.
|
| AwsCloudFrontDistributionCacheBehavior
Information about a cache behavior for the distribution.
|
| AwsCloudFrontDistributionCacheBehaviors
Provides information about caching for the distribution.
|
| AwsCloudFrontDistributionDefaultCacheBehavior
Contains information about the default cache configuration for the distribution.
|
| AwsCloudFrontDistributionDetails
A distribution configuration.
|
| AwsCloudFrontDistributionLogging
A complex type that controls whether access logs are written for the distribution.
|
| AwsCloudFrontDistributionOriginGroup
Information about an origin group for the distribution.
|
| AwsCloudFrontDistributionOriginGroupFailover
Provides information about when an origin group fails over.
|
| AwsCloudFrontDistributionOriginGroupFailoverStatusCodes
The status codes that cause an origin group to fail over.
|
| AwsCloudFrontDistributionOriginGroups
Provides information about origin groups that are associated with the distribution.
|
| AwsCloudFrontDistributionOriginItem
A complex type that describes the S3 bucket, HTTP server (for example, a web server), AWS Elemental MediaStore, or
other server from which CloudFront gets your files.
|
| AwsCloudFrontDistributionOrigins
A complex type that contains information about origins and origin groups for this distribution.
|
| AwsCloudFrontDistributionOriginS3OriginConfig
Information about an origin that is an S3 bucket that is not configured with static website hosting.
|
| AwsCloudFrontDistributionViewerCertificate
Provides information about the TLS/SSL configuration that the distribution uses to communicate with viewers.
|
| AwsCloudTrailTrailDetails
Provides details about a CloudTrail trail.
|
| AwsCodeBuildProjectArtifactsDetails
Information about the build artifacts for the CodeBuild project.
|
| AwsCodeBuildProjectDetails
Information about an CodeBuild project.
|
| AwsCodeBuildProjectEnvironment
Information about the build environment for this build project.
|
| AwsCodeBuildProjectEnvironmentEnvironmentVariablesDetails
Information about an environment variable that is available to builds for the build project.
|
| AwsCodeBuildProjectEnvironmentRegistryCredential
The credentials for access to a private registry.
|
| AwsCodeBuildProjectLogsConfigCloudWatchLogsDetails
Information about CloudWatch Logs for the build project.
|
| AwsCodeBuildProjectLogsConfigDetails
Information about logs for the build project.
|
| AwsCodeBuildProjectLogsConfigS3LogsDetails
Information about logs built to an S3 bucket for a build project.
|
| AwsCodeBuildProjectSource
Information about the build input source code for this build project.
|
| AwsCodeBuildProjectVpcConfig
Information about the VPC configuration that CodeBuild accesses.
|
| AwsCorsConfiguration
Contains the cross-origin resource sharing (CORS) configuration for the API.
|
| AwsDynamoDbTableAttributeDefinition
Contains a definition of an attribute for the table.
|
| AwsDynamoDbTableBillingModeSummary
Provides information about the billing for read/write capacity on the table.
|
| AwsDynamoDbTableDetails
Provides details about a DynamoDB table.
|
| AwsDynamoDbTableGlobalSecondaryIndex
Information abut a global secondary index for the table.
|
| AwsDynamoDbTableKeySchema
A component of the key schema for the DynamoDB table, a global secondary index, or a local secondary index.
|
| AwsDynamoDbTableLocalSecondaryIndex
Information about a local secondary index for a DynamoDB table.
|
| AwsDynamoDbTableProjection
For global and local secondary indexes, identifies the attributes that are copied from the table into the index.
|
| AwsDynamoDbTableProvisionedThroughput
Information about the provisioned throughput for the table or for a global secondary index.
|
| AwsDynamoDbTableProvisionedThroughputOverride
Replica-specific configuration for the provisioned throughput.
|
| AwsDynamoDbTableReplica
Information about a replica of a DynamoDB table.
|
| AwsDynamoDbTableReplicaGlobalSecondaryIndex
Information about a global secondary index for a DynamoDB table replica.
|
| AwsDynamoDbTableRestoreSummary
Information about the restore for the table.
|
| AwsDynamoDbTableSseDescription
Information about the server-side encryption for the table.
|
| AwsDynamoDbTableStreamSpecification
The current DynamoDB Streams configuration for the table.
|
| AwsEc2EipDetails
Information about an Elastic IP address.
|
| AwsEc2InstanceDetails
The details of an EC2 instance.
|
| AwsEc2InstanceNetworkInterfacesDetails
Identifies a network interface for the EC2 instance.
|
| AwsEc2NetworkAclAssociation
An association between the network ACL and a subnet.
|
| AwsEc2NetworkAclDetails
Contains details about an EC2 network access control list (ACL).
|
| AwsEc2NetworkAclEntry
A rule for the network ACL.
|
| AwsEc2NetworkInterfaceAttachment
Information about the network interface attachment.
|
| AwsEc2NetworkInterfaceDetails
Details about the network interface
|
| AwsEc2NetworkInterfaceIpV6AddressDetail
Provides information about an IPV6 address that is associated with the network interface.
|
| AwsEc2NetworkInterfacePrivateIpAddressDetail
Provides information about a private IPv4 address that is with the network interface.
|
| AwsEc2NetworkInterfaceSecurityGroup
A security group associated with the network interface.
|
| AwsEc2SecurityGroupDetails
Details about an EC2 security group.
|
| AwsEc2SecurityGroupIpPermission
An IP permission for an EC2 security group.
|
| AwsEc2SecurityGroupIpRange
A range of IPv4 addresses.
|
| AwsEc2SecurityGroupIpv6Range
A range of IPv6 addresses.
|
| AwsEc2SecurityGroupPrefixListId
A prefix list ID.
|
| AwsEc2SecurityGroupUserIdGroupPair
A relationship between a security group and a user.
|
| AwsEc2SubnetDetails
Contains information about a subnet in Amazon EC2.
|
| AwsEc2VolumeAttachment
An attachment to an Amazon EC2 volume.
|
| AwsEc2VolumeDetails
Details about an EC2 volume.
|
| AwsEc2VpcDetails
Details about an EC2 VPC.
|
| AwsEc2VpcEndpointServiceDetails
Contains details about the service configuration for a VPC endpoint service.
|
| AwsEc2VpcEndpointServiceServiceTypeDetails
The service type information for a VPC endpoint service.
|
| AwsEc2VpnConnectionDetails
Details about an Amazon EC2 VPN connection.
|
| AwsEc2VpnConnectionOptionsDetails
VPN connection options.
|
| AwsEc2VpnConnectionOptionsTunnelOptionsDetails
The VPN tunnel options.
|
| AwsEc2VpnConnectionRoutesDetails
A static routes associated with the VPN connection.
|
| AwsEc2VpnConnectionVgwTelemetryDetails
Information about the VPN tunnel.
|
| AwsEcrContainerImageDetails
Information about an Amazon ECR image.
|
| AwsEcrRepositoryDetails
Provides information about an Amazon Elastic Container Registry repository.
|
| AwsEcrRepositoryImageScanningConfigurationDetails
The image scanning configuration for a repository.
|
| AwsEcrRepositoryLifecyclePolicyDetails
Information about the lifecycle policy for the repository.
|
| AwsEcsClusterClusterSettingsDetails
Indicates whether to enable CloudWatch Container Insights for the ECS cluster.
|
| AwsEcsClusterConfigurationDetails
The run command configuration for the cluster.
|
| AwsEcsClusterConfigurationExecuteCommandConfigurationDetails
Contains the run command configuration for the cluster.
|
| AwsEcsClusterConfigurationExecuteCommandConfigurationLogConfigurationDetails
The log configuration for the results of the run command actions.
|
| AwsEcsClusterDefaultCapacityProviderStrategyDetails
The default capacity provider strategy for the cluster.
|
| AwsEcsClusterDetails
provides details about an ECS cluster.
|
| AwsEcsServiceCapacityProviderStrategyDetails
Strategy item for the capacity provider strategy that the service uses.
|
| AwsEcsServiceDeploymentConfigurationDeploymentCircuitBreakerDetails
Determines whether a service deployment fails if a service cannot reach a steady state.
|
| AwsEcsServiceDeploymentConfigurationDetails
Optional deployment parameters for the service.
|
| AwsEcsServiceDeploymentControllerDetails
Information about the deployment controller type that the service uses.
|
| AwsEcsServiceDetails
Provides details about a service within an ECS cluster.
|
| AwsEcsServiceLoadBalancersDetails
Information about a load balancer that the service uses.
|
| AwsEcsServiceNetworkConfigurationAwsVpcConfigurationDetails
For tasks that use the
awsvpc networking mode, the VPC subnet and security group configuration. |
| AwsEcsServiceNetworkConfigurationDetails
For tasks that use the
awsvpc networking mode, the VPC subnet and security group configuration. |
| AwsEcsServicePlacementConstraintsDetails
A placement constraint for the tasks in the service.
|
| AwsEcsServicePlacementStrategiesDetails
A placement strategy that determines how to place the tasks for the service.
|
| AwsEcsServiceServiceRegistriesDetails
Information about a service discovery registry to assign to the service.
|
| AwsEcsTaskDefinitionContainerDefinitionsDependsOnDetails
A dependency that is defined for container startup and shutdown.
|
| AwsEcsTaskDefinitionContainerDefinitionsDetails
A container definition that describes a container in the task.
|
| AwsEcsTaskDefinitionContainerDefinitionsEnvironmentDetails
An environment variable to pass to the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsEnvironmentFilesDetails
A file that contain environment variables to pass to a container.
|
| AwsEcsTaskDefinitionContainerDefinitionsExtraHostsDetails
A hostname and IP address mapping to append to the /etc/hosts file on the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsFirelensConfigurationDetails
The FireLens configuration for the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsHealthCheckDetails
The container health check command and associated configuration parameters for the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersCapabilitiesDetails
The Linux capabilities for the container that are added to or dropped from the default configuration provided by
Docker.
|
| AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDetails
>Linux-specific modifications that are applied to the container, such as Linux kernel capabilities.
|
| AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersDevicesDetails
A host device to expose to the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsLinuxParametersTmpfsDetails
The container path, mount options, and size (in MiB) of a tmpfs mount.
|
| AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationDetails
The log configuration specification for the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsLogConfigurationSecretOptionsDetails
A secret to pass to the log configuration.
|
| AwsEcsTaskDefinitionContainerDefinitionsMountPointsDetails
A mount point for the data volumes in the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsPortMappingsDetails
A port mapping for the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsRepositoryCredentialsDetails
The private repository authentication credentials to use.
|
| AwsEcsTaskDefinitionContainerDefinitionsResourceRequirementsDetails
A resource to assign to a container.
|
| AwsEcsTaskDefinitionContainerDefinitionsSecretsDetails
A secret to pass to the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsSystemControlsDetails
A namespaced kernel parameter to set in the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsUlimitsDetails
A ulimit to set in the container.
|
| AwsEcsTaskDefinitionContainerDefinitionsVolumesFromDetails
A data volume to mount from another container.
|
| AwsEcsTaskDefinitionDetails
details about a task definition.
|
| AwsEcsTaskDefinitionInferenceAcceleratorsDetails
An Elastic Inference accelerator to use for the containers in the task.
|
| AwsEcsTaskDefinitionPlacementConstraintsDetails
A placement constraint object to use for tasks.
|
| AwsEcsTaskDefinitionProxyConfigurationDetails
The configuration details for the App Mesh proxy.
|
| AwsEcsTaskDefinitionProxyConfigurationProxyConfigurationPropertiesDetails
A network configuration parameter to provide to the Container Network Interface (CNI) plugin.
|
| AwsEcsTaskDefinitionVolumesDetails
A data volume to mount from another container.
|
| AwsEcsTaskDefinitionVolumesDockerVolumeConfigurationDetails
Information about a Docker volume.
|
| AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationAuthorizationConfigDetails
|
| AwsEcsTaskDefinitionVolumesEfsVolumeConfigurationDetails
Information about the Amazon Elastic File System file system that is used for task storage.
|
| AwsEcsTaskDefinitionVolumesHostDetails
Information about a bind mount host volume.
|
| AwsEksClusterDetails
Provides details about an Amazon EKS cluster.
|
| AwsEksClusterLoggingClusterLoggingDetails
Details for a cluster logging configuration.
|
| AwsEksClusterLoggingDetails
The logging configuration for an Amazon EKS cluster.
|
| AwsEksClusterResourcesVpcConfigDetails
Information about the VPC configuration used by the cluster control plane.
|
| AwsElasticBeanstalkEnvironmentDetails
Contains details about an Elastic Beanstalk environment.
|
| AwsElasticBeanstalkEnvironmentEnvironmentLink
Contains information about a link to another environment that is in the same group.
|
| AwsElasticBeanstalkEnvironmentOptionSetting
A configuration option setting for the environment.
|
| AwsElasticBeanstalkEnvironmentTier
Contains information about the tier of the environment.
|
| AwsElasticsearchDomainDetails
Information about an Elasticsearch domain.
|
| AwsElasticsearchDomainDomainEndpointOptions
Additional options for the domain endpoint, such as whether to require HTTPS for all traffic.
|
| AwsElasticsearchDomainElasticsearchClusterConfigDetails
details about the configuration of an OpenSearch cluster.
|
| AwsElasticsearchDomainElasticsearchClusterConfigZoneAwarenessConfigDetails
Configuration options for zone awareness.
|
| AwsElasticsearchDomainEncryptionAtRestOptions
Details about the configuration for encryption at rest.
|
| AwsElasticsearchDomainLogPublishingOptions
configures the CloudWatch Logs to publish for the Elasticsearch domain.
|
| AwsElasticsearchDomainLogPublishingOptionsLogConfig
The log configuration.
|
| AwsElasticsearchDomainNodeToNodeEncryptionOptions
Details about the configuration for node-to-node encryption.
|
| AwsElasticsearchDomainServiceSoftwareOptions
Information about the state of the domain relative to the latest service software.
|
| AwsElasticsearchDomainVPCOptions
Information that OpenSearch derives based on
VPCOptions for the domain. |
| AwsElbAppCookieStickinessPolicy
Contains information about a stickiness policy that was created using
CreateAppCookieStickinessPolicy. |
| AwsElbLbCookieStickinessPolicy
Contains information about a stickiness policy that was created using
CreateLBCookieStickinessPolicy. |
| AwsElbLoadBalancerAccessLog
Contains information about the access log configuration for the load balancer.
|
| AwsElbLoadBalancerAttributes
Contains attributes for the load balancer.
|
| AwsElbLoadBalancerBackendServerDescription
Provides information about the configuration of an EC2 instance for the load balancer.
|
| AwsElbLoadBalancerConnectionDraining
Contains information about the connection draining configuration for the load balancer.
|
| AwsElbLoadBalancerConnectionSettings
Contains connection settings for the load balancer.
|
| AwsElbLoadBalancerCrossZoneLoadBalancing
Contains cross-zone load balancing settings for the load balancer.
|
| AwsElbLoadBalancerDetails
Contains details about a Classic Load Balancer.
|
| AwsElbLoadBalancerHealthCheck
Contains information about the health checks that are conducted on the load balancer.
|
| AwsElbLoadBalancerInstance
Provides information about an EC2 instance for a load balancer.
|
| AwsElbLoadBalancerListener
Information about a load balancer listener.
|
| AwsElbLoadBalancerListenerDescription
Lists the policies that are enabled for a load balancer listener.
|
| AwsElbLoadBalancerPolicies
Contains information about the policies for a load balancer.
|
| AwsElbLoadBalancerSourceSecurityGroup
Contains information about the security group for the load balancer.
|
| AwsElbv2LoadBalancerAttribute
A load balancer attribute.
|
| AwsElbv2LoadBalancerDetails
Information about a load balancer.
|
| AwsIamAccessKeyDetails
IAM access key details related to a finding.
|
| AwsIamAccessKeySessionContext
Provides information about the session that the key was used for.
|
| AwsIamAccessKeySessionContextAttributes
Attributes of the session that the key was used for.
|
| AwsIamAccessKeySessionContextSessionIssuer
Information about the entity that created the session.
|
| AwsIamAccessKeyStatus |
| AwsIamAttachedManagedPolicy
A managed policy that is attached to an IAM principal.
|
| AwsIamGroupDetails
Contains details about an IAM group.
|
| AwsIamGroupPolicy
A managed policy that is attached to the IAM group.
|
| AwsIamInstanceProfile
Information about an instance profile.
|
| AwsIamInstanceProfileRole
Information about a role associated with an instance profile.
|
| AwsIamPermissionsBoundary
Information about the policy used to set the permissions boundary for an IAM principal.
|
| AwsIamPolicyDetails
Represents an IAM permissions policy.
|
| AwsIamPolicyVersion
A version of an IAM policy.
|
| AwsIamRoleDetails
Contains information about an IAM role, including all of the role's policies.
|
| AwsIamRolePolicy
An inline policy that is embedded in the role.
|
| AwsIamUserDetails
Information about an IAM user.
|
| AwsIamUserPolicy
Information about an inline policy that is embedded in the user.
|
| AwsKmsKeyDetails
Contains metadata about an KMS key.
|
| AwsLambdaFunctionCode
The code for the Lambda function.
|
| AwsLambdaFunctionDeadLetterConfig
The dead-letter queue for failed asynchronous invocations.
|
| AwsLambdaFunctionDetails
Details about a function's configuration.
|
| AwsLambdaFunctionEnvironment
A function's environment variable settings.
|
| AwsLambdaFunctionEnvironmentError
Error messages for environment variables that could not be applied.
|
| AwsLambdaFunctionLayer
An Lambda layer.
|
| AwsLambdaFunctionTracingConfig
The function's X-Ray tracing configuration.
|
| AwsLambdaFunctionVpcConfig
The VPC security groups and subnets that are attached to a Lambda function.
|
| AwsLambdaLayerVersionDetails
Details about a Lambda layer version.
|
| AwsNetworkFirewallFirewallDetails
Details about an Network Firewall firewall.
|
| AwsNetworkFirewallFirewallPolicyDetails
Details about a firewall policy.
|
| AwsNetworkFirewallFirewallSubnetMappingsDetails
A public subnet that Network Firewall uses for the firewall.
|
| AwsNetworkFirewallRuleGroupDetails
Details about an Network Firewall rule group.
|
| AwsOpenSearchServiceDomainClusterConfigDetails
Details about the configuration of an OpenSearch cluster.
|
| AwsOpenSearchServiceDomainClusterConfigZoneAwarenessConfigDetails
Configuration options for zone awareness.
|
| AwsOpenSearchServiceDomainDetails
Information about an Amazon OpenSearch Service domain.
|
| AwsOpenSearchServiceDomainDomainEndpointOptionsDetails
Information about additional options for the domain endpoint.
|
| AwsOpenSearchServiceDomainEncryptionAtRestOptionsDetails
Details about the configuration for encryption at rest for the OpenSearch domain.
|
| AwsOpenSearchServiceDomainLogPublishingOption
Configuration details for a log publishing option.
|
| AwsOpenSearchServiceDomainLogPublishingOptionsDetails
Configures the CloudWatch Logs to publish for the OpenSearch domain.
|
| AwsOpenSearchServiceDomainNodeToNodeEncryptionOptionsDetails
Provides details about the configuration for node-to-node encryption.
|
| AwsOpenSearchServiceDomainServiceSoftwareOptionsDetails
Provides information about the state of the domain relative to the latest service software.
|
| AwsOpenSearchServiceDomainVpcOptionsDetails
Contains information that OpenSearch Service derives based on the
VPCOptions for the domain. |
| AwsRdsDbClusterAssociatedRole
An IAM role that is associated with the Amazon RDS DB cluster.
|
| AwsRdsDbClusterDetails
Information about an Amazon RDS DB cluster.
|
| AwsRdsDbClusterMember
Information about an instance in the DB cluster.
|
| AwsRdsDbClusterOptionGroupMembership
Information about an option group membership for a DB cluster.
|
| AwsRdsDbClusterSnapshotDetails
Information about an Amazon RDS DB cluster snapshot.
|
| AwsRdsDbDomainMembership
Information about an Active Directory domain membership record associated with the DB instance.
|
| AwsRdsDbInstanceAssociatedRole
An IAM role associated with the DB instance.
|
| AwsRdsDbInstanceDetails
Contains the details of an Amazon RDS DB instance.
|
| AwsRdsDbInstanceEndpoint
Specifies the connection endpoint.
|
| AwsRdsDbInstanceVpcSecurityGroup
A VPC security groups that the DB instance belongs to.
|
| AwsRdsDbOptionGroupMembership
An option group membership.
|
| AwsRdsDbParameterGroup
Provides information about a parameter group for a DB instance.
|
| AwsRdsDbPendingModifiedValues
Changes to a DB instance that are currently pending.
|
| AwsRdsDbProcessorFeature
A processor feature.
|
| AwsRdsDbSnapshotDetails
Provides details about an Amazon RDS DB cluster snapshot.
|
| AwsRdsDbStatusInfo
Information about the status of a read replica.
|
| AwsRdsDbSubnetGroup
Information about the subnet group for the database instance.
|
| AwsRdsDbSubnetGroupSubnet
Information about a subnet in a subnet group.
|
| AwsRdsDbSubnetGroupSubnetAvailabilityZone
An Availability Zone for a subnet in a subnet group.
|
| AwsRdsEventSubscriptionDetails
Details about an Amazon RDS event notification subscription.
|
| AwsRdsPendingCloudWatchLogsExports
Identifies the log types to enable and disable.
|
| AwsRedshiftClusterClusterNode
A node in an Amazon Redshift cluster.
|
| AwsRedshiftClusterClusterParameterGroup
A cluster parameter group that is associated with an Amazon Redshift cluster.
|
| AwsRedshiftClusterClusterParameterStatus
The status of a parameter in a cluster parameter group for an Amazon Redshift cluster.
|
| AwsRedshiftClusterClusterSecurityGroup
A security group that is associated with the cluster.
|
| AwsRedshiftClusterClusterSnapshotCopyStatus
Information about a cross-Region snapshot copy.
|
| AwsRedshiftClusterDeferredMaintenanceWindow
A time windows during which maintenance was deferred for an Amazon Redshift cluster.
|
| AwsRedshiftClusterDetails
Details about an Amazon Redshift cluster.
|
| AwsRedshiftClusterElasticIpStatus
The status of the elastic IP (EIP) address for an Amazon Redshift cluster.
|
| AwsRedshiftClusterEndpoint
The connection endpoint for an Amazon Redshift cluster.
|
| AwsRedshiftClusterHsmStatus
Information about whether an Amazon Redshift cluster finished applying any hardware changes to security module (HSM)
settings that were specified in a modify cluster command.
|
| AwsRedshiftClusterIamRole
An IAM role that the cluster can use to access other Amazon Web Services services.
|
| AwsRedshiftClusterPendingModifiedValues
Changes to the Amazon Redshift cluster that are currently pending.
|
| AwsRedshiftClusterResizeInfo
Information about the resize operation for the cluster.
|
| AwsRedshiftClusterRestoreStatus
Information about the status of a cluster restore action.
|
| AwsRedshiftClusterVpcSecurityGroup
A VPC security group that the cluster belongs to, if the cluster is in a VPC.
|
| AwsS3AccountPublicAccessBlockDetails
provides information about the Amazon S3 Public Access Block configuration for accounts.
|
| AwsS3BucketBucketLifecycleConfigurationDetails
The lifecycle configuration for the objects in the S3 bucket.
|
| AwsS3BucketBucketLifecycleConfigurationRulesAbortIncompleteMultipartUploadDetails
Information about what Amazon S3 does when a multipart upload is incomplete.
|
| AwsS3BucketBucketLifecycleConfigurationRulesDetails
Configuration for a lifecycle rule.
|
| AwsS3BucketBucketLifecycleConfigurationRulesFilterDetails
Identifies the objects that a rule applies to.
|
| AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateDetails
The configuration for the filter.
|
| AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsDetails
A value to use for the filter.
|
| AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateOperandsTagDetails
A tag that is assigned to matching objects.
|
| AwsS3BucketBucketLifecycleConfigurationRulesFilterPredicateTagDetails
A tag filter.
|
| AwsS3BucketBucketLifecycleConfigurationRulesNoncurrentVersionTransitionsDetails
A transition rule that describes when noncurrent objects transition to a specified storage class.
|
| AwsS3BucketBucketLifecycleConfigurationRulesTransitionsDetails
A rule for when objects transition to specific storage classes.
|
| AwsS3BucketBucketVersioningConfiguration
Describes the versioning state of an S3 bucket.
|
| AwsS3BucketDetails
The details of an Amazon S3 bucket.
|
| AwsS3BucketLoggingConfiguration
Information about logging for the S3 bucket
|
| AwsS3BucketNotificationConfiguration
The notification configuration for the S3 bucket.
|
| AwsS3BucketNotificationConfigurationDetail
Details for an S3 bucket notification configuration.
|
| AwsS3BucketNotificationConfigurationFilter
Filtering information for the notifications.
|
| AwsS3BucketNotificationConfigurationS3KeyFilter
Details for an Amazon S3 filter.
|
| AwsS3BucketNotificationConfigurationS3KeyFilterRule
Details for a filter rule.
|
| AwsS3BucketNotificationConfigurationS3KeyFilterRuleName |
| AwsS3BucketServerSideEncryptionByDefault
Specifies the default server-side encryption to apply to new objects in the bucket.
|
| AwsS3BucketServerSideEncryptionConfiguration
The encryption configuration for the S3 bucket.
|
| AwsS3BucketServerSideEncryptionRule
An encryption rule to apply to the S3 bucket.
|
| AwsS3BucketWebsiteConfiguration
Website parameters for the S3 bucket.
|
| AwsS3BucketWebsiteConfigurationRedirectTo
The redirect behavior for requests to the website.
|
| AwsS3BucketWebsiteConfigurationRoutingRule
A rule for redirecting requests to the website.
|
| AwsS3BucketWebsiteConfigurationRoutingRuleCondition
The condition that must be met in order to apply the routing rule.
|
| AwsS3BucketWebsiteConfigurationRoutingRuleRedirect
The rules to redirect the request if the condition in
Condition is met. |
| AwsS3ObjectDetails
Details about an Amazon S3 object.
|
| AwsSecretsManagerSecretDetails
Details about an Secrets Manager secret.
|
| AwsSecretsManagerSecretRotationRules
Defines the rotation schedule for the secret.
|
| AwsSecurityFinding
Provides consistent format for the contents of the Security Hub-aggregated findings.
|
| AwsSecurityFindingFilters
A collection of attributes that are applied to all active Security Hub-aggregated findings and that result in a
subset of findings that are included in this insight.
|
| AwsSecurityFindingIdentifier
Identifies a finding to update using
BatchUpdateFindings. |
| AWSSecurityHubException
Base exception for all service exceptions thrown by AWS SecurityHub
|
| AwsSnsTopicDetails
A wrapper type for the topic's ARN.
|
| AwsSnsTopicSubscription
A wrapper type for the attributes of an Amazon SNS subscription.
|
| AwsSqsQueueDetails
Data about a queue.
|
| AwsSsmComplianceSummary
Provides the details about the compliance status for a patch.
|
| AwsSsmPatch
Provides details about the compliance for a patch.
|
| AwsSsmPatchComplianceDetails
Provides information about the state of a patch on an instance based on the patch baseline that was used to patch the
instance.
|
| AwsWafRateBasedRuleDetails
Details about a rate-based rule for global resources.
|
| AwsWafRateBasedRuleMatchPredicate
A match predicate.
|
| AwsWafRegionalRateBasedRuleDetails
contains details about a rate-based rule for Regional resources.
|
| AwsWafRegionalRateBasedRuleMatchPredicate
Details for a match predicate.
|
| AwsWafWebAclDetails
Details about an WAF WebACL.
|
| AwsWafWebAclRule
Details for a rule in an WAF WebACL.
|
| AwsXrayEncryptionConfigDetails
Information about the encryption configuration for X-Ray.
|
| BatchDisableStandardsRequest |
| BatchDisableStandardsResult |
| BatchEnableStandardsRequest |
| BatchEnableStandardsResult |
| BatchImportFindingsRequest |
| BatchImportFindingsResult |
| BatchUpdateFindingsRequest |
| BatchUpdateFindingsResult |
| BatchUpdateFindingsUnprocessedFinding
A finding from a
BatchUpdateFindings request that Security Hub was unable to update. |
| BooleanFilter
Boolean filter for querying findings.
|
| Cell
An occurrence of sensitive data detected in a Microsoft Excel workbook, comma-separated value (CSV) file, or
tab-separated value (TSV) file.
|
| CidrBlockAssociation
An IPv4 CIDR block association.
|
| City
Information about a city.
|
| ClassificationResult
Details about the sensitive data that was detected on the resource.
|
| ClassificationStatus
Provides details about the current status of the sensitive data detection.
|
| Compliance
Contains finding details that are specific to control-based findings.
|
| ComplianceStatus |
| ContainerDetails
Container details related to a finding.
|
| ControlStatus |
| Country
Information about a country.
|
| CreateActionTargetRequest |
| CreateActionTargetResult |
| CreateFindingAggregatorRequest |
| CreateFindingAggregatorResult |
| CreateInsightRequest |
| CreateInsightResult |
| CreateMembersRequest |
| CreateMembersResult |
| CustomDataIdentifiersDetections
The list of detected instances of sensitive data.
|
| CustomDataIdentifiersResult
Contains an instance of sensitive data that was detected by a customer-defined identifier.
|
| Cvss
CVSS scores from the advisory related to the vulnerability.
|
| DataClassificationDetails
Provides details about sensitive data that was detected on a resource.
|
| DateFilter
A date filter for querying findings.
|
| DateRange
A date range for the date filter.
|
| DateRangeUnit |
| DeclineInvitationsRequest |
| DeclineInvitationsResult |
| DeleteActionTargetRequest |
| DeleteActionTargetResult |
| DeleteFindingAggregatorRequest |
| DeleteFindingAggregatorResult |
| DeleteInsightRequest |
| DeleteInsightResult |
| DeleteInvitationsRequest |
| DeleteInvitationsResult |
| DeleteMembersRequest |
| DeleteMembersResult |
| DescribeActionTargetsRequest |
| DescribeActionTargetsResult |
| DescribeHubRequest |
| DescribeHubResult |
| DescribeOrganizationConfigurationRequest |
| DescribeOrganizationConfigurationResult |
| DescribeProductsRequest |
| DescribeProductsResult |
| DescribeStandardsControlsRequest |
| DescribeStandardsControlsResult |
| DescribeStandardsRequest |
| DescribeStandardsResult |
| DisableImportFindingsForProductRequest |
| DisableImportFindingsForProductResult |
| DisableOrganizationAdminAccountRequest |
| DisableOrganizationAdminAccountResult |
| DisableSecurityHubRequest |
| DisableSecurityHubResult |
| DisassociateFromAdministratorAccountRequest |
| DisassociateFromAdministratorAccountResult |
| DisassociateFromMasterAccountRequest |
| DisassociateFromMasterAccountResult |
| DisassociateMembersRequest |
| DisassociateMembersResult |
| DnsRequestAction
Provided if
ActionType is DNS_REQUEST. |
| EnableImportFindingsForProductRequest |
| EnableImportFindingsForProductResult |
| EnableOrganizationAdminAccountRequest |
| EnableOrganizationAdminAccountResult |
| EnableSecurityHubRequest |
| EnableSecurityHubResult |
| FindingAggregator
A finding aggregator.
|
| FindingProviderFields
In a
BatchImportFindings request, finding providers use FindingProviderFields to provide
and update values for confidence, criticality, related findings, severity, and types. |
| FindingProviderSeverity
The severity assigned to the finding by the finding provider.
|
| FirewallPolicyDetails
Defines the behavior of the firewall.
|
| FirewallPolicyStatefulRuleGroupReferencesDetails
A stateful rule group that is used by the firewall policy.
|
| FirewallPolicyStatelessCustomActionsDetails
A custom action that can be used for stateless packet handling.
|
| FirewallPolicyStatelessRuleGroupReferencesDetails
A stateless rule group that is used by the firewall policy.
|
| GeoLocation
Provides the latitude and longitude coordinates of a location.
|
| GetAdministratorAccountRequest |
| GetAdministratorAccountResult |
| GetEnabledStandardsRequest |
| GetEnabledStandardsResult |
| GetFindingAggregatorRequest |
| GetFindingAggregatorResult |
| GetFindingsRequest |
| GetFindingsResult |
| GetInsightResultsRequest |
| GetInsightResultsResult |
| GetInsightsRequest |
| GetInsightsResult |
| GetInvitationsCountRequest |
| GetInvitationsCountResult |
| GetMasterAccountRequest |
| GetMasterAccountResult |
| GetMembersRequest |
| GetMembersResult |
| IcmpTypeCode
An Internet Control Message Protocol (ICMP) type and code.
|
| ImportFindingsError
The list of the findings that cannot be imported.
|
| Insight
Contains information about a Security Hub insight.
|
| InsightResults
The insight results returned by the
GetInsightResults operation. |
| InsightResultValue
The insight result values returned by the
GetInsightResults operation. |
| IntegrationType |
| InternalException
Internal server error.
|
| InvalidAccessException
There is an issue with the account used to make the request.
|
| InvalidInputException
The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
|
| Invitation
Details about an invitation.
|
| InviteMembersRequest |
| InviteMembersResult |
| IpFilter
The IP filter for querying findings.
|
| IpOrganizationDetails
Provides information about an internet provider.
|
| Ipv6CidrBlockAssociation
An IPV6 CIDR block association.
|
| KeywordFilter
A keyword filter for querying findings.
|
| LimitExceededException
The request was rejected because it attempted to create resources beyond the current Amazon Web Services account or
throttling limits.
|
| ListEnabledProductsForImportRequest |
| ListEnabledProductsForImportResult |
| ListFindingAggregatorsRequest |
| ListFindingAggregatorsResult |
| ListInvitationsRequest |
| ListInvitationsResult |
| ListMembersRequest |
| ListMembersResult |
| ListOrganizationAdminAccountsRequest |
| ListOrganizationAdminAccountsResult |
| ListTagsForResourceRequest |
| ListTagsForResourceResult |
| LoadBalancerState
Information about the state of the load balancer.
|
| Malware
A list of malware related to a finding.
|
| MalwareState |
| MalwareType |
| MapFilter
A map filter for querying findings.
|
| MapFilterComparison |
| Member
The details about a member account.
|
| Network
The details of network-related information about a finding.
|
| NetworkConnectionAction
Provided if
ActionType is NETWORK_CONNECTION. |
| NetworkDirection |
| NetworkHeader
Details about a network path component that occurs before or after the current component.
|
| NetworkPathComponent
Information about a network path component.
|
| NetworkPathComponentDetails
Information about the destination of the next component in the network path.
|
| Note
A user-defined note added to a finding.
|
| NoteUpdate
The updated note.
|
| NumberFilter
A number filter for querying findings.
|
| Occurrences
The detected occurrences of sensitive data.
|
| Page
An occurrence of sensitive data in an Adobe Portable Document Format (PDF) file.
|
| Partition |
| PatchSummary
Provides an overview of the patch compliance status for an instance against a selected compliance standard.
|
| PortProbeAction
Provided if
ActionType is PORT_PROBE. |
| PortProbeDetail
A port scan that was part of the port probe.
|
| PortRange
A range of ports.
|
| PortRangeFromTo
A range of ports.
|
| ProcessDetails
The details of process-related information about a finding.
|
| Product
Contains details about a product.
|
| Range
Identifies where the sensitive data begins and ends.
|
| Recommendation
A recommendation on how to remediate the issue identified in a finding.
|
| Record
An occurrence of sensitive data in an Apache Avro object container or an Apache Parquet file.
|
| RecordState |
| RelatedFinding
Details about a related finding.
|
| Remediation
Details about the remediation steps for a finding.
|
| Resource
A resource related to a finding.
|
| ResourceConflictException
The resource specified in the request conflicts with an existing resource.
|
| ResourceDetails
Additional details about a resource related to a finding.
|
| ResourceNotFoundException
The request was rejected because we can't find the specified resource.
|
| Result
Details about the account that was not processed.
|
| RuleGroupDetails
Details about the rule group.
|
| RuleGroupSource
The rules and actions for the rule group.
|
| RuleGroupSourceCustomActionsDetails
A custom action definition.
|
| RuleGroupSourceListDetails
Stateful inspection criteria for a domain list rule group.
|
| RuleGroupSourceStatefulRulesDetails
A Suricata rule specification.
|
| RuleGroupSourceStatefulRulesHeaderDetails
The inspection criteria for a stateful rule.
|
| RuleGroupSourceStatefulRulesOptionsDetails
A rule option for a stateful rule.
|
| RuleGroupSourceStatelessRuleDefinition
The definition of the stateless rule.
|
| RuleGroupSourceStatelessRuleMatchAttributes
Criteria for the stateless rule.
|
| RuleGroupSourceStatelessRuleMatchAttributesDestinationPorts
A port range to specify the destination ports to inspect for.
|
| RuleGroupSourceStatelessRuleMatchAttributesDestinations
A destination IP address or range.
|
| RuleGroupSourceStatelessRuleMatchAttributesSourcePorts
A port range to specify the source ports to inspect for.
|
| RuleGroupSourceStatelessRuleMatchAttributesSources
A source IP addresses and address range to inspect for.
|
| RuleGroupSourceStatelessRuleMatchAttributesTcpFlags
A set of TCP flags and masks to inspect for.
|
| RuleGroupSourceStatelessRulesAndCustomActionsDetails
Stateless rules and custom actions for a stateless rule group.
|
| RuleGroupSourceStatelessRulesDetails
A stateless rule in the rule group.
|
| RuleGroupVariables
Additional settings to use in the specified rules.
|
| RuleGroupVariablesIpSetsDetails
A list of IP addresses and address ranges, in CIDR notation.
|
| RuleGroupVariablesPortSetsDetails
A list of port ranges.
|
| SensitiveDataDetections
The list of detected instances of sensitive data.
|
| SensitiveDataResult
Contains a detected instance of sensitive data that are based on built-in identifiers.
|
| Severity
The severity of the finding.
|
| SeverityLabel |
| SeverityRating |
| SeverityUpdate
Updates to the severity information for a finding.
|
| SoftwarePackage
Information about a software package.
|
| SortCriterion
A collection of finding attributes used to sort findings.
|
| SortOrder |
| Standard
Provides information about a specific standard.
|
| StandardsControl
Details for an individual security standard control.
|
| StandardsStatus |
| StandardsStatusReason
The reason for the current status of a standard subscription.
|
| StandardsSubscription
A resource that represents your subscription to a supported standard.
|
| StandardsSubscriptionRequest
The standard that you want to enable.
|
| StatelessCustomActionDefinition
The definition of a custom action that can be used for stateless packet handling.
|
| StatelessCustomPublishMetricAction
Information about metrics to publish to CloudWatch.
|
| StatelessCustomPublishMetricActionDimension
Defines a CloudWatch dimension value to publish.
|
| StatusReason
Provides additional context for the value of
Compliance.Status. |
| StatusReasonCode |
| StringFilter
A string filter for querying findings.
|
| StringFilterComparison |
| TagResourceRequest |
| TagResourceResult |
| ThreatIntelIndicator
Details about the threat intelligence related to a finding.
|
| ThreatIntelIndicatorCategory |
| ThreatIntelIndicatorType |
| UntagResourceRequest |
| UntagResourceResult |
| UpdateActionTargetRequest |
| UpdateActionTargetResult |
| UpdateFindingAggregatorRequest |
| UpdateFindingAggregatorResult |
| UpdateFindingsRequest |
| UpdateFindingsResult |
| UpdateInsightRequest |
| UpdateInsightResult |
| UpdateOrganizationConfigurationRequest |
| UpdateOrganizationConfigurationResult |
| UpdateSecurityHubConfigurationRequest |
| UpdateSecurityHubConfigurationResult |
| UpdateStandardsControlRequest |
| UpdateStandardsControlResult |
| VerificationState |
| Vulnerability
A vulnerability associated with a finding.
|
| VulnerabilityVendor
A vendor that generates a vulnerability report.
|
| WafAction
Details about the action that CloudFront or WAF takes when a web request matches the conditions in the rule.
|
| WafExcludedRule
Details about a rule to exclude from a rule group.
|
| WafOverrideAction
Details about an override action for a rule.
|
| Workflow
Provides information about the status of the investigation into a finding.
|
| WorkflowState
Deprecated.
|
| WorkflowStatus |
| WorkflowUpdate
Used to update information about the investigation into the finding.
|
Copyright © 2022. All rights reserved.