Security Command Center v2 API - Class Indicator (1.0.0-beta05)

public sealed class Indicator : IMessage<Indicator>, IEquatable<Indicator>, IDeepCloneable<Indicator>, IBufferMessage, IMessage

Reference documentation and code samples for the Security Command Center v2 API class Indicator.

Represents what's commonly known as an indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. For more information, see Indicator of compromise.

Inheritance

object > Indicator

Namespace

Google.Cloud.SecurityCenter.V2

Assembly

Google.Cloud.SecurityCenter.V2.dll

Constructors

Indicator()

public Indicator()

Indicator(Indicator)

public Indicator(Indicator other)
Parameter
Name Description
other Indicator

Properties

Domains

public RepeatedField<string> Domains { get; }

List of domains associated to the Finding.

Property Value
Type Description
RepeatedFieldstring

IpAddresses

public RepeatedField<string> IpAddresses { get; }

The list of IP addresses that are associated with the finding.

Property Value
Type Description
RepeatedFieldstring

Signatures

public RepeatedField<Indicator.Types.ProcessSignature> Signatures { get; }

The list of matched signatures indicating that the given process is present in the environment.

Property Value
Type Description
RepeatedFieldIndicatorTypesProcessSignature

Uris

public RepeatedField<string> Uris { get; }

The list of URIs associated to the Findings.

Property Value
Type Description
RepeatedFieldstring