[][src]Crate rusoto_guardduty

Amazon GuardDuty is a continuous security monitoring service that analyzes and processes the following data sources: VPC Flow Logs, AWS CloudTrail event logs, and DNS logs. It uses threat intelligence feeds, such as lists of malicious IPs and domains, and machine learning to identify unexpected and potentially unauthorized and malicious activity within your AWS environment. This can include issues like escalations of privileges, uses of exposed credentials, or communication with malicious IPs, URLs, or domains. For example, GuardDuty can detect compromised EC2 instances serving malware or mining bitcoin. It also monitors AWS account access behavior for signs of compromise, such as unauthorized infrastructure deployments, like instances deployed in a region that has never been used, or unusual API calls, like a password policy change to reduce password strength. GuardDuty informs you of the status of your AWS environment by producing security findings that you can view in the GuardDuty console or through Amazon CloudWatch events. For more information, see Amazon GuardDuty User Guide.

If you're using the service, you're probably looking for GuardDutyClient and GuardDuty.

Structs

AcceptInvitationRequest
AcceptInvitationResponse
AccessKeyDetails

Contains information about the access keys.

AccountDetail

Contains information about the account.

Action

Contains information about action.

ArchiveFindingsRequest
ArchiveFindingsResponse
AwsApiCallAction

Contains information about the API operation.

City

Contains information about the city associated with the IP address.

Condition

Contains information about the condition.

Country

Contains information about the country.

CreateDetectorRequest
CreateDetectorResponse
CreateFilterRequest
CreateFilterResponse
CreateIPSetRequest
CreateIPSetResponse
CreateMembersRequest
CreateMembersResponse
CreateSampleFindingsRequest
CreateSampleFindingsResponse
CreateThreatIntelSetRequest
CreateThreatIntelSetResponse
DeclineInvitationsRequest
DeclineInvitationsResponse
DeleteDetectorRequest
DeleteDetectorResponse
DeleteFilterRequest
DeleteFilterResponse
DeleteIPSetRequest
DeleteIPSetResponse
DeleteInvitationsRequest
DeleteInvitationsResponse
DeleteMembersRequest
DeleteMembersResponse
DeleteThreatIntelSetRequest
DeleteThreatIntelSetResponse
DisassociateFromMasterAccountRequest
DisassociateFromMasterAccountResponse
DisassociateMembersRequest
DisassociateMembersResponse
DnsRequestAction

Contains information about the DNS request.

DomainDetails

Contains information about the domain.

Evidence

Contains information about the reason that the finding was generated.

Finding

Contains information about the finding.

FindingCriteria

Contains finding criteria information.

FindingStatistics

Contains information about finding statistics.

GeoLocation

Contains information about the

GetDetectorRequest
GetDetectorResponse
GetFilterRequest
GetFilterResponse
GetFindingsRequest
GetFindingsResponse
GetFindingsStatisticsRequest
GetFindingsStatisticsResponse
GetIPSetRequest
GetIPSetResponse
GetInvitationsCountRequest
GetInvitationsCountResponse
GetMasterAccountRequest
GetMasterAccountResponse
GetMembersRequest
GetMembersResponse
GetThreatIntelSetRequest
GetThreatIntelSetResponse
GuardDutyClient

A client for the Amazon GuardDuty API.

IamInstanceProfile

Contains information about the instance profile.

InstanceDetails

Contains information about the details of an instance.

Invitation

Contains information about the invitation.

InviteMembersRequest
InviteMembersResponse
ListDetectorsRequest
ListDetectorsResponse
ListFiltersRequest
ListFiltersResponse
ListFindingsRequest
ListFindingsResponse
ListIPSetsRequest
ListIPSetsResponse
ListInvitationsRequest
ListInvitationsResponse
ListMembersRequest
ListMembersResponse
ListTagsForResourceRequest
ListTagsForResourceResponse
ListThreatIntelSetsRequest
ListThreatIntelSetsResponse
LocalPortDetails

Contains information about the port for the local connection.

Master

Contains information about the Master account and invitation.

Member

Continas information about the member account

NetworkConnectionAction

Contains information about the network connection.

NetworkInterface

Contains information about the network interface.

Organization

Continas information about the organization.

PortProbeAction

Contains information about the port probe.

PortProbeDetail

Contains information about the port probe details.

PrivateIpAddressDetails

Contains information about the private IP address.

ProductCode

Contains information about the product code.

RemoteIpDetails

Continas information about the remote IP address.

RemotePortDetails

Contains information about the remote port.

Resource

Contains information about the resource.

SecurityGroup

Contains information about the security group.

Service

Contains information about the service.

SortCriteria

Contains information about the criteria for sorting.

StartMonitoringMembersRequest
StartMonitoringMembersResponse
StopMonitoringMembersRequest
StopMonitoringMembersResponse
Tag

Contains information about the tag associated with the resource.

TagResourceRequest
TagResourceResponse
ThreatIntelligenceDetail

An instance of a threat intelligence detail that constitutes evidence for the finding.

UnarchiveFindingsRequest
UnarchiveFindingsResponse
UnprocessedAccount

Contains information about the accounts that were not processed.

UntagResourceRequest
UntagResourceResponse
UpdateDetectorRequest
UpdateDetectorResponse
UpdateFilterRequest
UpdateFilterResponse
UpdateFindingsFeedbackRequest
UpdateFindingsFeedbackResponse
UpdateIPSetRequest
UpdateIPSetResponse
UpdateThreatIntelSetRequest
UpdateThreatIntelSetResponse

Enums

AcceptInvitationError

Errors returned by AcceptInvitation

ArchiveFindingsError

Errors returned by ArchiveFindings

CreateDetectorError

Errors returned by CreateDetector

CreateFilterError

Errors returned by CreateFilter

CreateIPSetError

Errors returned by CreateIPSet

CreateMembersError

Errors returned by CreateMembers

CreateSampleFindingsError

Errors returned by CreateSampleFindings

CreateThreatIntelSetError

Errors returned by CreateThreatIntelSet

DeclineInvitationsError

Errors returned by DeclineInvitations

DeleteDetectorError

Errors returned by DeleteDetector

DeleteFilterError

Errors returned by DeleteFilter

DeleteIPSetError

Errors returned by DeleteIPSet

DeleteInvitationsError

Errors returned by DeleteInvitations

DeleteMembersError

Errors returned by DeleteMembers

DeleteThreatIntelSetError

Errors returned by DeleteThreatIntelSet

DisassociateFromMasterAccountError

Errors returned by DisassociateFromMasterAccount

DisassociateMembersError

Errors returned by DisassociateMembers

GetDetectorError

Errors returned by GetDetector

GetFilterError

Errors returned by GetFilter

GetFindingsError

Errors returned by GetFindings

GetFindingsStatisticsError

Errors returned by GetFindingsStatistics

GetIPSetError

Errors returned by GetIPSet

GetInvitationsCountError

Errors returned by GetInvitationsCount

GetMasterAccountError

Errors returned by GetMasterAccount

GetMembersError

Errors returned by GetMembers

GetThreatIntelSetError

Errors returned by GetThreatIntelSet

InviteMembersError

Errors returned by InviteMembers

ListDetectorsError

Errors returned by ListDetectors

ListFiltersError

Errors returned by ListFilters

ListFindingsError

Errors returned by ListFindings

ListIPSetsError

Errors returned by ListIPSets

ListInvitationsError

Errors returned by ListInvitations

ListMembersError

Errors returned by ListMembers

ListTagsForResourceError

Errors returned by ListTagsForResource

ListThreatIntelSetsError

Errors returned by ListThreatIntelSets

StartMonitoringMembersError

Errors returned by StartMonitoringMembers

StopMonitoringMembersError

Errors returned by StopMonitoringMembers

TagResourceError

Errors returned by TagResource

UnarchiveFindingsError

Errors returned by UnarchiveFindings

UntagResourceError

Errors returned by UntagResource

UpdateDetectorError

Errors returned by UpdateDetector

UpdateFilterError

Errors returned by UpdateFilter

UpdateFindingsFeedbackError

Errors returned by UpdateFindingsFeedback

UpdateIPSetError

Errors returned by UpdateIPSet

UpdateThreatIntelSetError

Errors returned by UpdateThreatIntelSet

Traits

GuardDuty

Trait representing the capabilities of the Amazon GuardDuty API. Amazon GuardDuty clients implement this trait.