REST Resource: projects.locations.instances.curatedRules

Resource: CuratedRule
- JSON representation
Methods

Resource: CuratedRule

Represents a rule authored by Chronicle's Google Cloud Threat Intelligence (GCTI).

JSON representation

JSON representation
{ "name": string, "displayName": string, "severity": { object (`Severity`) }, "metadata": { string: string, ... }, "type": enum (`RuleType`), "precision": enum (`CuratedRulePrecision`), "tactics": [ { object (`MitreTactic`) } ], "techniques": [ { object (`MitreTechnique`) } ], "updateTime": string, "curatedRuleSet": string, "description": string }

{
  "name": string,
  "displayName": string,
  "severity": {
    object (Severity)
  },
  "metadata": {
    string: string,
    ...
  },
  "type": enum (RuleType),
  "precision": enum (CuratedRulePrecision),
  "tactics": [
    {
      object (MitreTactic)
    }
  ],
  "techniques": [
    {
      object (MitreTechnique)
    }
  ],
  "updateTime": string,
  "curatedRuleSet": string,
  "description": string
}

Fields
`name`	`string` Required. Full resource name for the curated rule. Format: projects/{project}/locations/{location}/instances/{instance}/curatedrules/{rule}
`displayName`	`string` Output only. Unique display name of the curated rule.
`severity`	`object (Severity)` Output only. The severity of the curated rule.
`metadata`	`map (key: string, value: string)` Output only. Additional unstructured metadata. An object containing a list of `"key": value` pairs. Example: `{ "name": "wrench", "mass": "1.3kg", "count": "3" }`.
`type`	`enum (RuleType)` Output only. User-facing type of the curated rule.
`precision`	`enum (CuratedRulePrecision)` Output only. Precision level of the curated rule.
`tactics[]`	`object (MitreTactic)` Output only. Mitre tactics covered by the curated rule.
`techniques[]`	`object (MitreTechnique)` Output only. Mitre techniques covered by the curated rule.
`updateTime`	`string (Timestamp format)` Output only. The timestamp of when the curated rule was last updated. Uses RFC 3339, where generated output will always be Z-normalized and use 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: `"2014-10-02T15:01:23Z"`, `"2014-10-02T15:01:23.045123456Z"` or `"2014-10-02T15:01:23+05:30"`.
`curatedRuleSet`	`string` Output only. The parent CuratedRuleSet that the rule is listed under. Format: projects/{project}/locations/{location}/instances/{instance}/curatedRuleSetCategories/{category}/curatedRuleSets/{ruleSet}
`description`	`string` Output only. The description of the curated rule.

Methods
`get`	Gets a CuratedRule.
`list`	Lists CuratedRules.

REST Resource: projects.locations.instances.curatedRules

Resource: CuratedRule

Methods

`get`

`list`