Package com.google.cloud.securitycenter.v1 (2.32.0)

A client to Security Command Center API

The interfaces provided are listed below, along with usage samples.

SecurityCenterClient

Service Description: V1 APIs for Security Center service.

Sample for SecurityCenterClient:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (SecurityCenterClient securityCenterClient = SecurityCenterClient.create()) {
   SecurityHealthAnalyticsSettingsName parent =
       SecurityHealthAnalyticsSettingsName.ofOrganizationName("[ORGANIZATION]");
   SecurityHealthAnalyticsCustomModule securityHealthAnalyticsCustomModule =
       SecurityHealthAnalyticsCustomModule.newBuilder().build();
   SecurityHealthAnalyticsCustomModule response =
       securityCenterClient.createSecurityHealthAnalyticsCustomModule(
           parent, securityHealthAnalyticsCustomModule);
 }
 

Classes

Access

Represents an access event.

Protobuf type google.cloud.securitycenter.v1.Access

Access.Builder

Represents an access event.

Protobuf type google.cloud.securitycenter.v1.Access

AccessProto

Asset

Security Command Center representation of a Google Cloud resource.

The Asset is a Security Command Center resource that captures information about a single Google Cloud resource. All modifications to an Asset are only within the context of Security Command Center and don't affect the referenced Google Cloud resource.

Protobuf type google.cloud.securitycenter.v1.Asset

Asset.Builder

Security Command Center representation of a Google Cloud resource.

The Asset is a Security Command Center resource that captures information about a single Google Cloud resource. All modifications to an Asset are only within the context of Security Command Center and don't affect the referenced Google Cloud resource.

Protobuf type google.cloud.securitycenter.v1.Asset

Asset.IamPolicy

Cloud IAM Policy information associated with the Google Cloud resource described by the Security Command Center asset. This information is managed and defined by the Google Cloud resource and cannot be modified by the user.

Protobuf type google.cloud.securitycenter.v1.Asset.IamPolicy

Asset.IamPolicy.Builder

Cloud IAM Policy information associated with the Google Cloud resource described by the Security Command Center asset. This information is managed and defined by the Google Cloud resource and cannot be modified by the user.

Protobuf type google.cloud.securitycenter.v1.Asset.IamPolicy

Asset.SecurityCenterProperties

Security Command Center managed properties. These properties are managed by Security Command Center and cannot be modified by the user.

Protobuf type google.cloud.securitycenter.v1.Asset.SecurityCenterProperties

Asset.SecurityCenterProperties.Builder

Security Command Center managed properties. These properties are managed by Security Command Center and cannot be modified by the user.

Protobuf type google.cloud.securitycenter.v1.Asset.SecurityCenterProperties

AssetName

AssetName.Builder

Builder for organizations/{organization}/assets/{asset}.

AssetName.FolderAssetBuilder

Builder for folders/{folder}/assets/{asset}.

AssetName.ProjectAssetBuilder

Builder for projects/{project}/assets/{asset}.

AssetOuterClass

BigQueryExport

Configures how to deliver Findings to BigQuery Instance.

Protobuf type google.cloud.securitycenter.v1.BigQueryExport

BigQueryExport.Builder

Configures how to deliver Findings to BigQuery Instance.

Protobuf type google.cloud.securitycenter.v1.BigQueryExport

BigQueryExportName

BigQueryExportName.Builder

Builder for organizations/{organization}/bigQueryExports/{export}.

BigQueryExportName.FolderExportBuilder

Builder for folders/{folder}/bigQueryExports/{export}.

BigQueryExportName.ProjectExportBuilder

Builder for projects/{project}/bigQueryExports/{export}.

BigQueryExportProto

BulkMuteFindingsRequest

Request message for bulk findings update.

Note:

  1. If multiple bulk update requests match the same resource, the order in which they get executed is not defined.
  2. Once a bulk operation is started, there is no way to stop it.

Protobuf type google.cloud.securitycenter.v1.BulkMuteFindingsRequest

BulkMuteFindingsRequest.Builder

Request message for bulk findings update.

Note:

  1. If multiple bulk update requests match the same resource, the order in which they get executed is not defined.
  2. Once a bulk operation is started, there is no way to stop it.

Protobuf type google.cloud.securitycenter.v1.BulkMuteFindingsRequest

BulkMuteFindingsResponse

The response to a BulkMute request. Contains the LRO information.

Protobuf type google.cloud.securitycenter.v1.BulkMuteFindingsResponse

BulkMuteFindingsResponse.Builder

The response to a BulkMute request. Contains the LRO information.

Protobuf type google.cloud.securitycenter.v1.BulkMuteFindingsResponse

CloudDlpDataProfile

The data profile associated with the finding.

Protobuf type google.cloud.securitycenter.v1.CloudDlpDataProfile

CloudDlpDataProfile.Builder

The data profile associated with the finding.

Protobuf type google.cloud.securitycenter.v1.CloudDlpDataProfile

CloudDlpDataProfileProto

CloudDlpInspection

Details about the Cloud Data Loss Prevention (Cloud DLP) inspection job that produced the finding.

Protobuf type google.cloud.securitycenter.v1.CloudDlpInspection

CloudDlpInspection.Builder

Details about the Cloud Data Loss Prevention (Cloud DLP) inspection job that produced the finding.

Protobuf type google.cloud.securitycenter.v1.CloudDlpInspection

CloudDlpInspectionProto

Compliance

Contains compliance information about a security standard indicating unmet recommendations.

Protobuf type google.cloud.securitycenter.v1.Compliance

Compliance.Builder

Contains compliance information about a security standard indicating unmet recommendations.

Protobuf type google.cloud.securitycenter.v1.Compliance

ComplianceProto

Connection

Contains information about the IP connection associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Connection

Connection.Builder

Contains information about the IP connection associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Connection

ConnectionProto

Contact

The email address of a contact.

Protobuf type google.cloud.securitycenter.v1.Contact

Contact.Builder

The email address of a contact.

Protobuf type google.cloud.securitycenter.v1.Contact

ContactDetails

Details about specific contacts

Protobuf type google.cloud.securitycenter.v1.ContactDetails

ContactDetails.Builder

Details about specific contacts

Protobuf type google.cloud.securitycenter.v1.ContactDetails

ContactDetailsProto

Container

Container associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Container

Container.Builder

Container associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Container

ContainerProto

CreateBigQueryExportRequest

Request message for creating a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.CreateBigQueryExportRequest

CreateBigQueryExportRequest.Builder

Request message for creating a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.CreateBigQueryExportRequest

CreateFindingRequest

Request message for creating a finding.

Protobuf type google.cloud.securitycenter.v1.CreateFindingRequest

CreateFindingRequest.Builder

Request message for creating a finding.

Protobuf type google.cloud.securitycenter.v1.CreateFindingRequest

CreateMuteConfigRequest

Request message for creating a mute config.

Protobuf type google.cloud.securitycenter.v1.CreateMuteConfigRequest

CreateMuteConfigRequest.Builder

Request message for creating a mute config.

Protobuf type google.cloud.securitycenter.v1.CreateMuteConfigRequest

CreateNotificationConfigRequest

Request message for creating a notification config.

Protobuf type google.cloud.securitycenter.v1.CreateNotificationConfigRequest

CreateNotificationConfigRequest.Builder

Request message for creating a notification config.

Protobuf type google.cloud.securitycenter.v1.CreateNotificationConfigRequest

CreateSecurityHealthAnalyticsCustomModuleRequest

Request message for creating Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.CreateSecurityHealthAnalyticsCustomModuleRequest

CreateSecurityHealthAnalyticsCustomModuleRequest.Builder

Request message for creating Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.CreateSecurityHealthAnalyticsCustomModuleRequest

CreateSourceRequest

Request message for creating a source.

Protobuf type google.cloud.securitycenter.v1.CreateSourceRequest

CreateSourceRequest.Builder

Request message for creating a source.

Protobuf type google.cloud.securitycenter.v1.CreateSourceRequest

CustomConfig

Defines the properties in a custom module configuration for Security Health Analytics. Use the custom module configuration to create custom detectors that generate custom findings for resources that you specify.

Protobuf type google.cloud.securitycenter.v1.CustomConfig

CustomConfig.Builder

Defines the properties in a custom module configuration for Security Health Analytics. Use the custom module configuration to create custom detectors that generate custom findings for resources that you specify.

Protobuf type google.cloud.securitycenter.v1.CustomConfig

CustomConfig.CustomOutputSpec

A set of optional name-value pairs that define custom source properties to return with each finding that is generated by the custom module. The custom source properties that are defined here are included in the finding JSON under sourceProperties.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.CustomOutputSpec

CustomConfig.CustomOutputSpec.Builder

A set of optional name-value pairs that define custom source properties to return with each finding that is generated by the custom module. The custom source properties that are defined here are included in the finding JSON under sourceProperties.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.CustomOutputSpec

CustomConfig.CustomOutputSpec.Property

An individual name-value pair that defines a custom source property.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.CustomOutputSpec.Property

CustomConfig.CustomOutputSpec.Property.Builder

An individual name-value pair that defines a custom source property.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.CustomOutputSpec.Property

CustomConfig.ResourceSelector

Resource for selecting resource type.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.ResourceSelector

CustomConfig.ResourceSelector.Builder

Resource for selecting resource type.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.ResourceSelector

Cve

CVE stands for Common Vulnerabilities and Exposures. More information: https://cve.mitre.org

Protobuf type google.cloud.securitycenter.v1.Cve

Cve.Builder

CVE stands for Common Vulnerabilities and Exposures. More information: https://cve.mitre.org

Protobuf type google.cloud.securitycenter.v1.Cve

Cvssv3

Common Vulnerability Scoring System version 3.

Protobuf type google.cloud.securitycenter.v1.Cvssv3

Cvssv3.Builder

Common Vulnerability Scoring System version 3.

Protobuf type google.cloud.securitycenter.v1.Cvssv3

Database

Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the full resource name populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. Some database resources may not have the full resource name populated because these resource types are not yet supported by Cloud Asset Inventory (e.g. Cloud SQL databases). In these cases only the display name will be provided.

Protobuf type google.cloud.securitycenter.v1.Database

Database.Builder

Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the full resource name populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. Some database resources may not have the full resource name populated because these resource types are not yet supported by Cloud Asset Inventory (e.g. Cloud SQL databases). In these cases only the display name will be provided.

Protobuf type google.cloud.securitycenter.v1.Database

DatabaseProto

DeleteBigQueryExportRequest

Request message for deleting a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.DeleteBigQueryExportRequest

DeleteBigQueryExportRequest.Builder

Request message for deleting a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.DeleteBigQueryExportRequest

DeleteMuteConfigRequest

Request message for deleting a mute config.

Protobuf type google.cloud.securitycenter.v1.DeleteMuteConfigRequest

DeleteMuteConfigRequest.Builder

Request message for deleting a mute config.

Protobuf type google.cloud.securitycenter.v1.DeleteMuteConfigRequest

DeleteNotificationConfigRequest

Request message for deleting a notification config.

Protobuf type google.cloud.securitycenter.v1.DeleteNotificationConfigRequest

DeleteNotificationConfigRequest.Builder

Request message for deleting a notification config.

Protobuf type google.cloud.securitycenter.v1.DeleteNotificationConfigRequest

DeleteSecurityHealthAnalyticsCustomModuleRequest

Request message for deleting Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.DeleteSecurityHealthAnalyticsCustomModuleRequest

DeleteSecurityHealthAnalyticsCustomModuleRequest.Builder

Request message for deleting Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.DeleteSecurityHealthAnalyticsCustomModuleRequest

EffectiveSecurityHealthAnalyticsCustomModule

An EffectiveSecurityHealthAnalyticsCustomModule is the representation of a Security Health Analytics custom module at a specified level of the resource hierarchy: organization, folder, or project. If a custom module is inherited from a parent organization or folder, the value of the enablementState property in EffectiveSecurityHealthAnalyticsCustomModule is set to the value that is effective in the parent, instead of INHERITED. For example, if the module is enabled in a parent organization or folder, the effective enablement_state for the module in all child folders or projects is also enabled. EffectiveSecurityHealthAnalyticsCustomModule is read-only.

Protobuf type google.cloud.securitycenter.v1.EffectiveSecurityHealthAnalyticsCustomModule

EffectiveSecurityHealthAnalyticsCustomModule.Builder

An EffectiveSecurityHealthAnalyticsCustomModule is the representation of a Security Health Analytics custom module at a specified level of the resource hierarchy: organization, folder, or project. If a custom module is inherited from a parent organization or folder, the value of the enablementState property in EffectiveSecurityHealthAnalyticsCustomModule is set to the value that is effective in the parent, instead of INHERITED. For example, if the module is enabled in a parent organization or folder, the effective enablement_state for the module in all child folders or projects is also enabled. EffectiveSecurityHealthAnalyticsCustomModule is read-only.

Protobuf type google.cloud.securitycenter.v1.EffectiveSecurityHealthAnalyticsCustomModule

EffectiveSecurityHealthAnalyticsCustomModuleName

EffectiveSecurityHealthAnalyticsCustomModuleName.Builder

Builder for organizations/{organization}/securityHealthAnalyticsSettings/effectiveCustomModules/{effective_custom_module}.

EffectiveSecurityHealthAnalyticsCustomModuleName.FolderEffectiveCustomModuleBuilder

Builder for folders/{folder}/securityHealthAnalyticsSettings/effectiveCustomModules/{effective_custom_module}.

EffectiveSecurityHealthAnalyticsCustomModuleName.ProjectEffectiveCustomModuleBuilder

Builder for projects/{project}/securityHealthAnalyticsSettings/effectiveCustomModules/{effective_custom_module}.

EffectiveSecurityHealthAnalyticsCustomModuleProto

EnvironmentVariable

A name-value pair representing an environment variable used in an operating system process.

Protobuf type google.cloud.securitycenter.v1.EnvironmentVariable

EnvironmentVariable.Builder

A name-value pair representing an environment variable used in an operating system process.

Protobuf type google.cloud.securitycenter.v1.EnvironmentVariable

ExfilResource

Resource where data was exfiltrated from or exfiltrated to.

Protobuf type google.cloud.securitycenter.v1.ExfilResource

ExfilResource.Builder

Resource where data was exfiltrated from or exfiltrated to.

Protobuf type google.cloud.securitycenter.v1.ExfilResource

Exfiltration

Exfiltration represents a data exfiltration attempt from one or more sources to one or more targets. The sources attribute lists the sources of the exfiltrated data. The targets attribute lists the destinations the data was copied to.

Protobuf type google.cloud.securitycenter.v1.Exfiltration

Exfiltration.Builder

Exfiltration represents a data exfiltration attempt from one or more sources to one or more targets. The sources attribute lists the sources of the exfiltrated data. The targets attribute lists the destinations the data was copied to.

Protobuf type google.cloud.securitycenter.v1.Exfiltration

ExfiltrationProto

ExternalSystem

Representation of third party SIEM/SOAR fields within SCC.

Protobuf type google.cloud.securitycenter.v1.ExternalSystem

ExternalSystem.Builder

Representation of third party SIEM/SOAR fields within SCC.

Protobuf type google.cloud.securitycenter.v1.ExternalSystem

ExternalSystemProto

File

File information about the related binary/library used by an executable, or the script used by a script interpreter

Protobuf type google.cloud.securitycenter.v1.File

File.Builder

File information about the related binary/library used by an executable, or the script used by a script interpreter

Protobuf type google.cloud.securitycenter.v1.File

FileProto

Finding

Security Command Center finding.

A finding is a record of assessment data like security, risk, health, or privacy, that is ingested into Security Command Center for presentation, notification, analysis, policy testing, and enforcement. For example, a cross-site scripting (XSS) vulnerability in an App Engine application is a finding.

Protobuf type google.cloud.securitycenter.v1.Finding

Finding.Builder

Security Command Center finding.

A finding is a record of assessment data like security, risk, health, or privacy, that is ingested into Security Command Center for presentation, notification, analysis, policy testing, and enforcement. For example, a cross-site scripting (XSS) vulnerability in an App Engine application is a finding.

Protobuf type google.cloud.securitycenter.v1.Finding

FindingName

FindingName.Builder

Builder for organizations/{organization}/sources/{source}/findings/{finding}.

FindingName.FolderSourceFindingBuilder

Builder for folders/{folder}/sources/{source}/findings/{finding}.

FindingName.ProjectSourceFindingBuilder

Builder for projects/{project}/sources/{source}/findings/{finding}.

FindingOuterClass

Folder

Message that contains the resource name and display name of a folder resource.

Protobuf type google.cloud.securitycenter.v1.Folder

Folder.Builder

Message that contains the resource name and display name of a folder resource.

Protobuf type google.cloud.securitycenter.v1.Folder

FolderName

FolderName.Builder

Builder for folders/{folder}.

FolderProto

Geolocation

Represents a geographical location for a given access.

Protobuf type google.cloud.securitycenter.v1.Geolocation

Geolocation.Builder

Represents a geographical location for a given access.

Protobuf type google.cloud.securitycenter.v1.Geolocation

GetBigQueryExportRequest

Request message for retrieving a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.GetBigQueryExportRequest

GetBigQueryExportRequest.Builder

Request message for retrieving a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.GetBigQueryExportRequest

GetEffectiveSecurityHealthAnalyticsCustomModuleRequest

Request message for getting effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.GetEffectiveSecurityHealthAnalyticsCustomModuleRequest

GetEffectiveSecurityHealthAnalyticsCustomModuleRequest.Builder

Request message for getting effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.GetEffectiveSecurityHealthAnalyticsCustomModuleRequest

GetMuteConfigRequest

Request message for retrieving a mute config.

Protobuf type google.cloud.securitycenter.v1.GetMuteConfigRequest

GetMuteConfigRequest.Builder

Request message for retrieving a mute config.

Protobuf type google.cloud.securitycenter.v1.GetMuteConfigRequest

GetNotificationConfigRequest

Request message for getting a notification config.

Protobuf type google.cloud.securitycenter.v1.GetNotificationConfigRequest

GetNotificationConfigRequest.Builder

Request message for getting a notification config.

Protobuf type google.cloud.securitycenter.v1.GetNotificationConfigRequest

GetOrganizationSettingsRequest

Request message for getting organization settings.

Protobuf type google.cloud.securitycenter.v1.GetOrganizationSettingsRequest

GetOrganizationSettingsRequest.Builder

Request message for getting organization settings.

Protobuf type google.cloud.securitycenter.v1.GetOrganizationSettingsRequest

GetSecurityHealthAnalyticsCustomModuleRequest

Request message for getting Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.GetSecurityHealthAnalyticsCustomModuleRequest

GetSecurityHealthAnalyticsCustomModuleRequest.Builder

Request message for getting Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.GetSecurityHealthAnalyticsCustomModuleRequest

GetSourceRequest

Request message for getting a source.

Protobuf type google.cloud.securitycenter.v1.GetSourceRequest

GetSourceRequest.Builder

Request message for getting a source.

Protobuf type google.cloud.securitycenter.v1.GetSourceRequest

GroupAssetsRequest

Request message for grouping by assets.

Protobuf type google.cloud.securitycenter.v1.GroupAssetsRequest

GroupAssetsRequest.Builder

Request message for grouping by assets.

Protobuf type google.cloud.securitycenter.v1.GroupAssetsRequest

GroupAssetsResponse

Response message for grouping by assets.

Protobuf type google.cloud.securitycenter.v1.GroupAssetsResponse

GroupAssetsResponse.Builder

Response message for grouping by assets.

Protobuf type google.cloud.securitycenter.v1.GroupAssetsResponse

GroupFindingsRequest

Request message for grouping by findings.

Protobuf type google.cloud.securitycenter.v1.GroupFindingsRequest

GroupFindingsRequest.Builder

Request message for grouping by findings.

Protobuf type google.cloud.securitycenter.v1.GroupFindingsRequest

GroupFindingsResponse

Response message for group by findings.

Protobuf type google.cloud.securitycenter.v1.GroupFindingsResponse

GroupFindingsResponse.Builder

Response message for group by findings.

Protobuf type google.cloud.securitycenter.v1.GroupFindingsResponse

GroupResult

Result containing the properties and count of a groupBy request.

Protobuf type google.cloud.securitycenter.v1.GroupResult

GroupResult.Builder

Result containing the properties and count of a groupBy request.

Protobuf type google.cloud.securitycenter.v1.GroupResult

IamBinding

Represents a particular IAM binding, which captures a member's role addition, removal, or state.

Protobuf type google.cloud.securitycenter.v1.IamBinding

IamBinding.Builder

Represents a particular IAM binding, which captures a member's role addition, removal, or state.

Protobuf type google.cloud.securitycenter.v1.IamBinding

IamBindingProto

Indicator

Represents what's commonly known as an indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. For more information, see Indicator of compromise.

Protobuf type google.cloud.securitycenter.v1.Indicator

Indicator.Builder

Represents what's commonly known as an indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. For more information, see Indicator of compromise.

Protobuf type google.cloud.securitycenter.v1.Indicator

Indicator.ProcessSignature

Indicates what signature matched this process.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature

Indicator.ProcessSignature.Builder

Indicates what signature matched this process.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature

Indicator.ProcessSignature.MemoryHashSignature

A signature corresponding to memory page hashes.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.MemoryHashSignature

Indicator.ProcessSignature.MemoryHashSignature.Builder

A signature corresponding to memory page hashes.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.MemoryHashSignature

Indicator.ProcessSignature.MemoryHashSignature.Detection

Memory hash detection contributing to the binary family match.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.MemoryHashSignature.Detection

Indicator.ProcessSignature.MemoryHashSignature.Detection.Builder

Memory hash detection contributing to the binary family match.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.MemoryHashSignature.Detection

Indicator.ProcessSignature.YaraRuleSignature

A signature corresponding to a YARA rule.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.YaraRuleSignature

Indicator.ProcessSignature.YaraRuleSignature.Builder

A signature corresponding to a YARA rule.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.YaraRuleSignature

IndicatorProto

KernelRootkit

Kernel mode rootkit signatures.

Protobuf type google.cloud.securitycenter.v1.KernelRootkit

KernelRootkit.Builder

Kernel mode rootkit signatures.

Protobuf type google.cloud.securitycenter.v1.KernelRootkit

KernelRootkitProto

Kubernetes

Kubernetes-related attributes.

Protobuf type google.cloud.securitycenter.v1.Kubernetes

Kubernetes.AccessReview

Conveys information about a Kubernetes access review (such as one returned by a kubectl auth can-i command) that was involved in a finding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.AccessReview

Kubernetes.AccessReview.Builder

Conveys information about a Kubernetes access review (such as one returned by a kubectl auth can-i command) that was involved in a finding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.AccessReview

Kubernetes.Binding

Represents a Kubernetes RoleBinding or ClusterRoleBinding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Binding

Kubernetes.Binding.Builder

Represents a Kubernetes RoleBinding or ClusterRoleBinding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Binding

Kubernetes.Builder

Kubernetes-related attributes.

Protobuf type google.cloud.securitycenter.v1.Kubernetes

Kubernetes.Node

Kubernetes nodes associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Node

Kubernetes.Node.Builder

Kubernetes nodes associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Node

Kubernetes.NodePool

Provides GKE node pool information.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.NodePool

Kubernetes.NodePool.Builder

Provides GKE node pool information.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.NodePool

Kubernetes.Pod

A Kubernetes Pod.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Pod

Kubernetes.Pod.Builder

A Kubernetes Pod.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Pod

Kubernetes.Role

Kubernetes Role or ClusterRole.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Role

Kubernetes.Role.Builder

Kubernetes Role or ClusterRole.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Role

Kubernetes.Subject

Represents a Kubernetes subject.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Subject

Kubernetes.Subject.Builder

Represents a Kubernetes subject.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Subject

KubernetesProto

Label

Represents a generic name-value label. A label has separate name and value fields to support filtering with the contains() function. For more information, see Filtering on array-type fields.

Protobuf type google.cloud.securitycenter.v1.Label

Label.Builder

Represents a generic name-value label. A label has separate name and value fields to support filtering with the contains() function. For more information, see Filtering on array-type fields.

Protobuf type google.cloud.securitycenter.v1.Label

LabelProto

ListAssetsRequest

Request message for listing assets.

Protobuf type google.cloud.securitycenter.v1.ListAssetsRequest

ListAssetsRequest.Builder

Request message for listing assets.

Protobuf type google.cloud.securitycenter.v1.ListAssetsRequest

ListAssetsResponse

Response message for listing assets.

Protobuf type google.cloud.securitycenter.v1.ListAssetsResponse

ListAssetsResponse.Builder

Response message for listing assets.

Protobuf type google.cloud.securitycenter.v1.ListAssetsResponse

ListAssetsResponse.ListAssetsResult

Result containing the Asset and its State.

Protobuf type google.cloud.securitycenter.v1.ListAssetsResponse.ListAssetsResult

ListAssetsResponse.ListAssetsResult.Builder

Result containing the Asset and its State.

Protobuf type google.cloud.securitycenter.v1.ListAssetsResponse.ListAssetsResult

ListBigQueryExportsRequest

Request message for listing BigQuery exports at a given scope e.g. organization, folder or project.

Protobuf type google.cloud.securitycenter.v1.ListBigQueryExportsRequest

ListBigQueryExportsRequest.Builder

Request message for listing BigQuery exports at a given scope e.g. organization, folder or project.

Protobuf type google.cloud.securitycenter.v1.ListBigQueryExportsRequest

ListBigQueryExportsResponse

Response message for listing BigQuery exports.

Protobuf type google.cloud.securitycenter.v1.ListBigQueryExportsResponse

ListBigQueryExportsResponse.Builder

Response message for listing BigQuery exports.

Protobuf type google.cloud.securitycenter.v1.ListBigQueryExportsResponse

ListDescendantSecurityHealthAnalyticsCustomModulesRequest

Request message for listing descendant Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListDescendantSecurityHealthAnalyticsCustomModulesRequest

ListDescendantSecurityHealthAnalyticsCustomModulesRequest.Builder

Request message for listing descendant Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListDescendantSecurityHealthAnalyticsCustomModulesRequest

ListDescendantSecurityHealthAnalyticsCustomModulesResponse

Response message for listing descendant Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListDescendantSecurityHealthAnalyticsCustomModulesResponse

ListDescendantSecurityHealthAnalyticsCustomModulesResponse.Builder

Response message for listing descendant Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListDescendantSecurityHealthAnalyticsCustomModulesResponse

ListEffectiveSecurityHealthAnalyticsCustomModulesRequest

Request message for listing effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListEffectiveSecurityHealthAnalyticsCustomModulesRequest

ListEffectiveSecurityHealthAnalyticsCustomModulesRequest.Builder

Request message for listing effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListEffectiveSecurityHealthAnalyticsCustomModulesRequest

ListEffectiveSecurityHealthAnalyticsCustomModulesResponse

Response message for listing effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListEffectiveSecurityHealthAnalyticsCustomModulesResponse

ListEffectiveSecurityHealthAnalyticsCustomModulesResponse.Builder

Response message for listing effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListEffectiveSecurityHealthAnalyticsCustomModulesResponse

ListFindingsRequest

Request message for listing findings.

Protobuf type google.cloud.securitycenter.v1.ListFindingsRequest

ListFindingsRequest.Builder

Request message for listing findings.

Protobuf type google.cloud.securitycenter.v1.ListFindingsRequest

ListFindingsResponse

Response message for listing findings.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse

ListFindingsResponse.Builder

Response message for listing findings.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse

ListFindingsResponse.ListFindingsResult

Result containing the Finding and its StateChange.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult

ListFindingsResponse.ListFindingsResult.Builder

Result containing the Finding and its StateChange.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult

ListFindingsResponse.ListFindingsResult.Resource

Information related to the Google Cloud resource that is associated with this finding.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.Resource

ListFindingsResponse.ListFindingsResult.Resource.Builder

Information related to the Google Cloud resource that is associated with this finding.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.Resource

ListMuteConfigsRequest

Request message for listing mute configs at a given scope e.g. organization, folder or project.

Protobuf type google.cloud.securitycenter.v1.ListMuteConfigsRequest

ListMuteConfigsRequest.Builder

Request message for listing mute configs at a given scope e.g. organization, folder or project.

Protobuf type google.cloud.securitycenter.v1.ListMuteConfigsRequest

ListMuteConfigsResponse

Response message for listing mute configs.

Protobuf type google.cloud.securitycenter.v1.ListMuteConfigsResponse

ListMuteConfigsResponse.Builder

Response message for listing mute configs.

Protobuf type google.cloud.securitycenter.v1.ListMuteConfigsResponse

ListNotificationConfigsRequest

Request message for listing notification configs.

Protobuf type google.cloud.securitycenter.v1.ListNotificationConfigsRequest

ListNotificationConfigsRequest.Builder

Request message for listing notification configs.

Protobuf type google.cloud.securitycenter.v1.ListNotificationConfigsRequest

ListNotificationConfigsResponse

Response message for listing notification configs.

Protobuf type google.cloud.securitycenter.v1.ListNotificationConfigsResponse

ListNotificationConfigsResponse.Builder

Response message for listing notification configs.

Protobuf type google.cloud.securitycenter.v1.ListNotificationConfigsResponse

ListSecurityHealthAnalyticsCustomModulesRequest

Request message for listing Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListSecurityHealthAnalyticsCustomModulesRequest

ListSecurityHealthAnalyticsCustomModulesRequest.Builder

Request message for listing Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListSecurityHealthAnalyticsCustomModulesRequest

ListSecurityHealthAnalyticsCustomModulesResponse

Response message for listing Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListSecurityHealthAnalyticsCustomModulesResponse

ListSecurityHealthAnalyticsCustomModulesResponse.Builder

Response message for listing Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListSecurityHealthAnalyticsCustomModulesResponse

ListSourcesRequest

Request message for listing sources.

Protobuf type google.cloud.securitycenter.v1.ListSourcesRequest

ListSourcesRequest.Builder

Request message for listing sources.

Protobuf type google.cloud.securitycenter.v1.ListSourcesRequest

ListSourcesResponse

Response message for listing sources.

Protobuf type google.cloud.securitycenter.v1.ListSourcesResponse

ListSourcesResponse.Builder

Response message for listing sources.

Protobuf type google.cloud.securitycenter.v1.ListSourcesResponse

MitreAttack

MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org

Protobuf type google.cloud.securitycenter.v1.MitreAttack

MitreAttack.Builder

MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org

Protobuf type google.cloud.securitycenter.v1.MitreAttack

MitreAttackProto

MuteConfig

A mute config is a Cloud SCC resource that contains the configuration to mute create/update events of findings.

Protobuf type google.cloud.securitycenter.v1.MuteConfig

MuteConfig.Builder

A mute config is a Cloud SCC resource that contains the configuration to mute create/update events of findings.

Protobuf type google.cloud.securitycenter.v1.MuteConfig

MuteConfigName

MuteConfigName.Builder

Builder for organizations/{organization}/muteConfigs/{mute_config}.

MuteConfigName.FolderMuteConfigBuilder

Builder for folders/{folder}/muteConfigs/{mute_config}.

MuteConfigName.ProjectMuteConfigBuilder

Builder for projects/{project}/muteConfigs/{mute_config}.

MuteConfigProto

NotificationConfig

Cloud Security Command Center (Cloud SCC) notification configs.

A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.

Protobuf type google.cloud.securitycenter.v1.NotificationConfig

NotificationConfig.Builder

Cloud Security Command Center (Cloud SCC) notification configs.

A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.

Protobuf type google.cloud.securitycenter.v1.NotificationConfig

NotificationConfig.StreamingConfig

The config for streaming-based notifications, which send each event as soon as it is detected.

Protobuf type google.cloud.securitycenter.v1.NotificationConfig.StreamingConfig

NotificationConfig.StreamingConfig.Builder

The config for streaming-based notifications, which send each event as soon as it is detected.

Protobuf type google.cloud.securitycenter.v1.NotificationConfig.StreamingConfig

NotificationConfigName

NotificationConfigName.Builder

Builder for organizations/{organization}/notificationConfigs/{notification_config}.

NotificationConfigName.FolderNotificationConfigBuilder

Builder for folders/{folder}/notificationConfigs/{notification_config}.

NotificationConfigName.ProjectNotificationConfigBuilder

Builder for projects/{project}/notificationConfigs/{notification_config}.

NotificationConfigProto

NotificationMessage

Cloud SCC's Notification

Protobuf type google.cloud.securitycenter.v1.NotificationMessage

NotificationMessage.Builder

Cloud SCC's Notification

Protobuf type google.cloud.securitycenter.v1.NotificationMessage

NotificationMessageProto

OrganizationName

OrganizationName.Builder

Builder for organizations/{organization}.

OrganizationSettings

User specified settings that are attached to the Security Command Center organization.

Protobuf type google.cloud.securitycenter.v1.OrganizationSettings

OrganizationSettings.AssetDiscoveryConfig

The configuration used for Asset Discovery runs.

Protobuf type google.cloud.securitycenter.v1.OrganizationSettings.AssetDiscoveryConfig

OrganizationSettings.AssetDiscoveryConfig.Builder

The configuration used for Asset Discovery runs.

Protobuf type google.cloud.securitycenter.v1.OrganizationSettings.AssetDiscoveryConfig

OrganizationSettings.Builder

User specified settings that are attached to the Security Command Center organization.

Protobuf type google.cloud.securitycenter.v1.OrganizationSettings

OrganizationSettingsName

OrganizationSettingsName.Builder

Builder for organizations/{organization}/organizationSettings.

OrganizationSettingsOuterClass

Process

Represents an operating system process.

Protobuf type google.cloud.securitycenter.v1.Process

Process.Builder

Represents an operating system process.

Protobuf type google.cloud.securitycenter.v1.Process

ProcessProto

ProjectName

ProjectName.Builder

Builder for projects/{project}.

Reference

Additional Links

Protobuf type google.cloud.securitycenter.v1.Reference

Reference.Builder

Additional Links

Protobuf type google.cloud.securitycenter.v1.Reference

Resource

Information related to the Google Cloud resource.

Protobuf type google.cloud.securitycenter.v1.Resource

Resource.Builder

Information related to the Google Cloud resource.

Protobuf type google.cloud.securitycenter.v1.Resource

ResourceProto

RunAssetDiscoveryRequest

Request message for running asset discovery for an organization.

Protobuf type google.cloud.securitycenter.v1.RunAssetDiscoveryRequest

RunAssetDiscoveryRequest.Builder

Request message for running asset discovery for an organization.

Protobuf type google.cloud.securitycenter.v1.RunAssetDiscoveryRequest

RunAssetDiscoveryResponse

Response of asset discovery run

Protobuf type google.cloud.securitycenter.v1.RunAssetDiscoveryResponse

RunAssetDiscoveryResponse.Builder

Response of asset discovery run

Protobuf type google.cloud.securitycenter.v1.RunAssetDiscoveryResponse

RunAssetDiscoveryResponseOuterClass

SecurityCenterClient

Service Description: V1 APIs for Security Center service.

This class provides the ability to make remote calls to the backing service through method calls that map to API methods. Sample code to get started:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (SecurityCenterClient securityCenterClient = SecurityCenterClient.create()) {
   SecurityHealthAnalyticsSettingsName parent =
       SecurityHealthAnalyticsSettingsName.ofOrganizationName("[ORGANIZATION]");
   SecurityHealthAnalyticsCustomModule securityHealthAnalyticsCustomModule =
       SecurityHealthAnalyticsCustomModule.newBuilder().build();
   SecurityHealthAnalyticsCustomModule response =
       securityCenterClient.createSecurityHealthAnalyticsCustomModule(
           parent, securityHealthAnalyticsCustomModule);
 }
 

Note: close() needs to be called on the SecurityCenterClient object to clean up resources such as threads. In the example above, try-with-resources is used, which automatically calls close().

The surface of this class includes several types of Java methods for each of the API's methods:

  1. A "flattened" method. With this type of method, the fields of the request type have been converted into function parameters. It may be the case that not all fields are available as parameters, and not every API method will have a flattened method entry point.
  2. A "request object" method. This type of method only takes one parameter, a request object, which must be constructed before the call. Not every API method will have a request object method.
  3. A "callable" method. This type of method takes no parameters and returns an immutable API callable object, which can be used to initiate calls to the service.

See the individual methods for example code.

Many parameters require resource names to be formatted in a particular way. To assist with these names, this class includes a format method for each type of name, and additionally a parse method to extract the individual identifiers contained within names that are returned.

This class can be customized by passing in a custom instance of SecurityCenterSettings to create(). For example:

To customize credentials:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 SecurityCenterSettings securityCenterSettings =
     SecurityCenterSettings.newBuilder()
         .setCredentialsProvider(FixedCredentialsProvider.create(myCredentials))
         .build();
 SecurityCenterClient securityCenterClient = SecurityCenterClient.create(securityCenterSettings);
 

To customize the endpoint:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 SecurityCenterSettings securityCenterSettings =
     SecurityCenterSettings.newBuilder().setEndpoint(myEndpoint).build();
 SecurityCenterClient securityCenterClient = SecurityCenterClient.create(securityCenterSettings);
 

To use REST (HTTP1.1/JSON) transport (instead of gRPC) for sending and receiving requests over the wire:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 SecurityCenterSettings securityCenterSettings =
     SecurityCenterSettings.newHttpJsonBuilder().build();
 SecurityCenterClient securityCenterClient = SecurityCenterClient.create(securityCenterSettings);
 

Please refer to the GitHub repository's samples for more quickstart code snippets.

SecurityCenterClient.GroupAssetsFixedSizeCollection

SecurityCenterClient.GroupAssetsPage

SecurityCenterClient.GroupAssetsPagedResponse

SecurityCenterClient.GroupFindingsFixedSizeCollection

SecurityCenterClient.GroupFindingsPage

SecurityCenterClient.GroupFindingsPagedResponse

SecurityCenterClient.ListAssetsFixedSizeCollection

SecurityCenterClient.ListAssetsPage

SecurityCenterClient.ListAssetsPagedResponse

SecurityCenterClient.ListBigQueryExportsFixedSizeCollection

SecurityCenterClient.ListBigQueryExportsPage

SecurityCenterClient.ListBigQueryExportsPagedResponse

SecurityCenterClient.ListDescendantSecurityHealthAnalyticsCustomModulesFixedSizeCollection

SecurityCenterClient.ListDescendantSecurityHealthAnalyticsCustomModulesPage

SecurityCenterClient.ListDescendantSecurityHealthAnalyticsCustomModulesPagedResponse

SecurityCenterClient.ListEffectiveSecurityHealthAnalyticsCustomModulesFixedSizeCollection

SecurityCenterClient.ListEffectiveSecurityHealthAnalyticsCustomModulesPage

SecurityCenterClient.ListEffectiveSecurityHealthAnalyticsCustomModulesPagedResponse

SecurityCenterClient.ListFindingsFixedSizeCollection

SecurityCenterClient.ListFindingsPage

SecurityCenterClient.ListFindingsPagedResponse

SecurityCenterClient.ListMuteConfigsFixedSizeCollection

SecurityCenterClient.ListMuteConfigsPage

SecurityCenterClient.ListMuteConfigsPagedResponse

SecurityCenterClient.ListNotificationConfigsFixedSizeCollection

SecurityCenterClient.ListNotificationConfigsPage

SecurityCenterClient.ListNotificationConfigsPagedResponse

SecurityCenterClient.ListSecurityHealthAnalyticsCustomModulesFixedSizeCollection

SecurityCenterClient.ListSecurityHealthAnalyticsCustomModulesPage

SecurityCenterClient.ListSecurityHealthAnalyticsCustomModulesPagedResponse

SecurityCenterClient.ListSourcesFixedSizeCollection

SecurityCenterClient.ListSourcesPage

SecurityCenterClient.ListSourcesPagedResponse

SecurityCenterGrpc

V1 APIs for Security Center service.

SecurityCenterGrpc.SecurityCenterBlockingStub

A stub to allow clients to do synchronous rpc calls to service SecurityCenter.

V1 APIs for Security Center service.

SecurityCenterGrpc.SecurityCenterFutureStub

A stub to allow clients to do ListenableFuture-style rpc calls to service SecurityCenter.

V1 APIs for Security Center service.

SecurityCenterGrpc.SecurityCenterImplBase

Base class for the server implementation of the service SecurityCenter.

V1 APIs for Security Center service.

SecurityCenterGrpc.SecurityCenterStub

A stub to allow clients to do asynchronous rpc calls to service SecurityCenter.

V1 APIs for Security Center service.

SecurityCenterSettings

Settings class to configure an instance of SecurityCenterClient.

The default instance has everything set to sensible defaults:

  • The default service address (securitycenter.googleapis.com) and default port (443) are used.
  • Credentials are acquired automatically through Application Default Credentials.
  • Retries are configured for idempotent methods but not for non-idempotent methods.

The builder of this class is recursive, so contained classes are themselves builders. When build() is called, the tree of builders is called to create the complete settings object.

For example, to set the total timeout of createSecurityHealthAnalyticsCustomModule to 30 seconds:


 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 SecurityCenterSettings.Builder securityCenterSettingsBuilder =
     SecurityCenterSettings.newBuilder();
 securityCenterSettingsBuilder
     .createSecurityHealthAnalyticsCustomModuleSettings()
     .setRetrySettings(
         securityCenterSettingsBuilder
             .createSecurityHealthAnalyticsCustomModuleSettings()
             .getRetrySettings()
             .toBuilder()
             .setTotalTimeout(Duration.ofSeconds(30))
             .build());
 SecurityCenterSettings securityCenterSettings = securityCenterSettingsBuilder.build();
 

SecurityCenterSettings.Builder

Builder for SecurityCenterSettings.

SecurityHealthAnalyticsCustomConfigProto

SecurityHealthAnalyticsCustomModule

Represents an instance of a Security Health Analytics custom module, including its full module name, display name, enablement state, and last updated time. You can create a custom module at the organization, folder, or project level. Custom modules that you create at the organization or folder level are inherited by the child folders and projects.

Protobuf type google.cloud.securitycenter.v1.SecurityHealthAnalyticsCustomModule

SecurityHealthAnalyticsCustomModule.Builder

Represents an instance of a Security Health Analytics custom module, including its full module name, display name, enablement state, and last updated time. You can create a custom module at the organization, folder, or project level. Custom modules that you create at the organization or folder level are inherited by the child folders and projects.

Protobuf type google.cloud.securitycenter.v1.SecurityHealthAnalyticsCustomModule

SecurityHealthAnalyticsCustomModuleName

SecurityHealthAnalyticsCustomModuleName.Builder

Builder for organizations/{organization}/securityHealthAnalyticsSettings/customModules/{custom_module}.

SecurityHealthAnalyticsCustomModuleName.FolderCustomModuleBuilder

Builder for folders/{folder}/securityHealthAnalyticsSettings/customModules/{custom_module}.

SecurityHealthAnalyticsCustomModuleName.ProjectCustomModuleBuilder

Builder for projects/{project}/securityHealthAnalyticsSettings/customModules/{custom_module}.

SecurityHealthAnalyticsCustomModuleProto

SecurityHealthAnalyticsSettingsName

SecurityHealthAnalyticsSettingsName.Builder

Builder for organizations/{organization}/securityHealthAnalyticsSettings.

SecurityHealthAnalyticsSettingsName.FolderBuilder

Builder for folders/{folder}/securityHealthAnalyticsSettings.

SecurityHealthAnalyticsSettingsName.ProjectBuilder

Builder for projects/{project}/securityHealthAnalyticsSettings.

SecurityMarks

User specified security marks that are attached to the parent Security Command Center resource. Security marks are scoped within a Security Command Center organization -- they can be modified and viewed by all users who have proper permissions on the organization.

Protobuf type google.cloud.securitycenter.v1.SecurityMarks

SecurityMarks.Builder

User specified security marks that are attached to the parent Security Command Center resource. Security marks are scoped within a Security Command Center organization -- they can be modified and viewed by all users who have proper permissions on the organization.

Protobuf type google.cloud.securitycenter.v1.SecurityMarks

SecurityMarksOuterClass

SecuritycenterService

ServiceAccountDelegationInfo

Identity delegation history of an authenticated service account.

Protobuf type google.cloud.securitycenter.v1.ServiceAccountDelegationInfo

ServiceAccountDelegationInfo.Builder

Identity delegation history of an authenticated service account.

Protobuf type google.cloud.securitycenter.v1.ServiceAccountDelegationInfo

SetFindingStateRequest

Request message for updating a finding's state.

Protobuf type google.cloud.securitycenter.v1.SetFindingStateRequest

SetFindingStateRequest.Builder

Request message for updating a finding's state.

Protobuf type google.cloud.securitycenter.v1.SetFindingStateRequest

SetMuteRequest

Request message for updating a finding's mute status.

Protobuf type google.cloud.securitycenter.v1.SetMuteRequest

SetMuteRequest.Builder

Request message for updating a finding's mute status.

Protobuf type google.cloud.securitycenter.v1.SetMuteRequest

Source

Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools.

Protobuf type google.cloud.securitycenter.v1.Source

Source.Builder

Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools.

Protobuf type google.cloud.securitycenter.v1.Source

SourceName

SourceName.Builder

Builder for organizations/{organization}/sources/{source}.

SourceName.FolderSourceBuilder

Builder for folders/{folder}/sources/{source}.

SourceName.ProjectSourceBuilder

Builder for projects/{project}/sources/{source}.

SourceOuterClass

UpdateBigQueryExportRequest

Request message for updating a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.UpdateBigQueryExportRequest

UpdateBigQueryExportRequest.Builder

Request message for updating a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.UpdateBigQueryExportRequest

UpdateExternalSystemRequest

Request message for updating a ExternalSystem resource.

Protobuf type google.cloud.securitycenter.v1.UpdateExternalSystemRequest

UpdateExternalSystemRequest.Builder

Request message for updating a ExternalSystem resource.

Protobuf type google.cloud.securitycenter.v1.UpdateExternalSystemRequest

UpdateFindingRequest

Request message for updating or creating a finding.

Protobuf type google.cloud.securitycenter.v1.UpdateFindingRequest

UpdateFindingRequest.Builder

Request message for updating or creating a finding.

Protobuf type google.cloud.securitycenter.v1.UpdateFindingRequest

UpdateMuteConfigRequest

Request message for updating a mute config.

Protobuf type google.cloud.securitycenter.v1.UpdateMuteConfigRequest

UpdateMuteConfigRequest.Builder

Request message for updating a mute config.

Protobuf type google.cloud.securitycenter.v1.UpdateMuteConfigRequest

UpdateNotificationConfigRequest

Request message for updating a notification config.

Protobuf type google.cloud.securitycenter.v1.UpdateNotificationConfigRequest

UpdateNotificationConfigRequest.Builder

Request message for updating a notification config.

Protobuf type google.cloud.securitycenter.v1.UpdateNotificationConfigRequest

UpdateOrganizationSettingsRequest

Request message for updating an organization's settings.

Protobuf type google.cloud.securitycenter.v1.UpdateOrganizationSettingsRequest

UpdateOrganizationSettingsRequest.Builder

Request message for updating an organization's settings.

Protobuf type google.cloud.securitycenter.v1.UpdateOrganizationSettingsRequest

UpdateSecurityHealthAnalyticsCustomModuleRequest

Request message for updating Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.UpdateSecurityHealthAnalyticsCustomModuleRequest

UpdateSecurityHealthAnalyticsCustomModuleRequest.Builder

Request message for updating Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.UpdateSecurityHealthAnalyticsCustomModuleRequest

UpdateSecurityMarksRequest

Request message for updating a SecurityMarks resource.

Protobuf type google.cloud.securitycenter.v1.UpdateSecurityMarksRequest

UpdateSecurityMarksRequest.Builder

Request message for updating a SecurityMarks resource.

Protobuf type google.cloud.securitycenter.v1.UpdateSecurityMarksRequest

UpdateSourceRequest

Request message for updating a source.

Protobuf type google.cloud.securitycenter.v1.UpdateSourceRequest

UpdateSourceRequest.Builder

Request message for updating a source.

Protobuf type google.cloud.securitycenter.v1.UpdateSourceRequest

Vulnerability

Refers to common vulnerability fields e.g. cve, cvss, cwe etc.

Protobuf type google.cloud.securitycenter.v1.Vulnerability

Vulnerability.Builder

Refers to common vulnerability fields e.g. cve, cvss, cwe etc.

Protobuf type google.cloud.securitycenter.v1.Vulnerability

VulnerabilityProto

Interfaces

AccessOrBuilder

Asset.IamPolicyOrBuilder

Asset.SecurityCenterPropertiesOrBuilder

AssetOrBuilder

BigQueryExportOrBuilder

BulkMuteFindingsRequestOrBuilder

BulkMuteFindingsResponseOrBuilder

CloudDlpDataProfileOrBuilder

CloudDlpInspectionOrBuilder

ComplianceOrBuilder

ConnectionOrBuilder

ContactDetailsOrBuilder

ContactOrBuilder

ContainerOrBuilder

CreateBigQueryExportRequestOrBuilder

CreateFindingRequestOrBuilder

CreateMuteConfigRequestOrBuilder

CreateNotificationConfigRequestOrBuilder

CreateSecurityHealthAnalyticsCustomModuleRequestOrBuilder

CreateSourceRequestOrBuilder

CustomConfig.CustomOutputSpec.PropertyOrBuilder

CustomConfig.CustomOutputSpecOrBuilder

CustomConfig.ResourceSelectorOrBuilder

CustomConfigOrBuilder

CveOrBuilder

Cvssv3OrBuilder

DatabaseOrBuilder

DeleteBigQueryExportRequestOrBuilder

DeleteMuteConfigRequestOrBuilder

DeleteNotificationConfigRequestOrBuilder

DeleteSecurityHealthAnalyticsCustomModuleRequestOrBuilder

EffectiveSecurityHealthAnalyticsCustomModuleOrBuilder

EnvironmentVariableOrBuilder

ExfilResourceOrBuilder

ExfiltrationOrBuilder

ExternalSystemOrBuilder

FileOrBuilder

FindingOrBuilder

FolderOrBuilder

GeolocationOrBuilder

GetBigQueryExportRequestOrBuilder

GetEffectiveSecurityHealthAnalyticsCustomModuleRequestOrBuilder

GetMuteConfigRequestOrBuilder

GetNotificationConfigRequestOrBuilder

GetOrganizationSettingsRequestOrBuilder

GetSecurityHealthAnalyticsCustomModuleRequestOrBuilder

GetSourceRequestOrBuilder

GroupAssetsRequestOrBuilder

GroupAssetsResponseOrBuilder

GroupFindingsRequestOrBuilder

GroupFindingsResponseOrBuilder

GroupResultOrBuilder

IamBindingOrBuilder

Indicator.ProcessSignature.MemoryHashSignature.DetectionOrBuilder

Indicator.ProcessSignature.MemoryHashSignatureOrBuilder

Indicator.ProcessSignature.YaraRuleSignatureOrBuilder

Indicator.ProcessSignatureOrBuilder

IndicatorOrBuilder

KernelRootkitOrBuilder

Kubernetes.AccessReviewOrBuilder

Kubernetes.BindingOrBuilder

Kubernetes.NodeOrBuilder

Kubernetes.NodePoolOrBuilder

Kubernetes.PodOrBuilder

Kubernetes.RoleOrBuilder

Kubernetes.SubjectOrBuilder

KubernetesOrBuilder

LabelOrBuilder

ListAssetsRequestOrBuilder

ListAssetsResponse.ListAssetsResultOrBuilder

ListAssetsResponseOrBuilder

ListBigQueryExportsRequestOrBuilder

ListBigQueryExportsResponseOrBuilder

ListDescendantSecurityHealthAnalyticsCustomModulesRequestOrBuilder

ListDescendantSecurityHealthAnalyticsCustomModulesResponseOrBuilder

ListEffectiveSecurityHealthAnalyticsCustomModulesRequestOrBuilder

ListEffectiveSecurityHealthAnalyticsCustomModulesResponseOrBuilder

ListFindingsRequestOrBuilder

ListFindingsResponse.ListFindingsResult.ResourceOrBuilder

ListFindingsResponse.ListFindingsResultOrBuilder

ListFindingsResponseOrBuilder

ListMuteConfigsRequestOrBuilder

ListMuteConfigsResponseOrBuilder

ListNotificationConfigsRequestOrBuilder

ListNotificationConfigsResponseOrBuilder

ListSecurityHealthAnalyticsCustomModulesRequestOrBuilder

ListSecurityHealthAnalyticsCustomModulesResponseOrBuilder

ListSourcesRequestOrBuilder

ListSourcesResponseOrBuilder

MitreAttackOrBuilder

MuteConfigOrBuilder

NotificationConfig.StreamingConfigOrBuilder

NotificationConfigOrBuilder

NotificationMessageOrBuilder

OrganizationSettings.AssetDiscoveryConfigOrBuilder

OrganizationSettingsOrBuilder

ProcessOrBuilder

ReferenceOrBuilder

ResourceOrBuilder

RunAssetDiscoveryRequestOrBuilder

RunAssetDiscoveryResponseOrBuilder

SecurityCenterGrpc.AsyncService

V1 APIs for Security Center service.

SecurityHealthAnalyticsCustomModuleOrBuilder

SecurityMarksOrBuilder

ServiceAccountDelegationInfoOrBuilder

SetFindingStateRequestOrBuilder

SetMuteRequestOrBuilder

SourceOrBuilder

UpdateBigQueryExportRequestOrBuilder

UpdateExternalSystemRequestOrBuilder

UpdateFindingRequestOrBuilder

UpdateMuteConfigRequestOrBuilder

UpdateNotificationConfigRequestOrBuilder

UpdateOrganizationSettingsRequestOrBuilder

UpdateSecurityHealthAnalyticsCustomModuleRequestOrBuilder

UpdateSecurityMarksRequestOrBuilder

UpdateSourceRequestOrBuilder

VulnerabilityOrBuilder

Enums

CloudDlpDataProfile.ParentType

Parents for configurations that produce data profile findings.

Protobuf enum google.cloud.securitycenter.v1.CloudDlpDataProfile.ParentType

Connection.Protocol

IANA Internet Protocol Number such as TCP(6) and UDP(17).

Protobuf enum google.cloud.securitycenter.v1.Connection.Protocol

CustomConfig.Severity

Defines the valid value options for the severity of a finding.

Protobuf enum google.cloud.securitycenter.v1.CustomConfig.Severity

Cvssv3.AttackComplexity

This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.AttackComplexity

Cvssv3.AttackVector

This metric reflects the context by which vulnerability exploitation is possible.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.AttackVector

Cvssv3.Impact

The Impact metrics capture the effects of a successfully exploited vulnerability on the component that suffers the worst outcome that is most directly and predictably associated with the attack.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.Impact

Cvssv3.PrivilegesRequired

This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.PrivilegesRequired

Cvssv3.Scope

The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.Scope

Cvssv3.UserInteraction

This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.UserInteraction

EffectiveSecurityHealthAnalyticsCustomModule.EnablementState

The enablement state of the module.

Protobuf enum google.cloud.securitycenter.v1.EffectiveSecurityHealthAnalyticsCustomModule.EnablementState

Finding.FindingClass

Represents what kind of Finding it is.

Protobuf enum google.cloud.securitycenter.v1.Finding.FindingClass

Finding.Mute

Mute state a finding can be in.

Protobuf enum google.cloud.securitycenter.v1.Finding.Mute

Finding.Severity

The severity of the finding.

Protobuf enum google.cloud.securitycenter.v1.Finding.Severity

Finding.State

The state of the finding.

Protobuf enum google.cloud.securitycenter.v1.Finding.State

IamBinding.Action

The type of action performed on a Binding in a policy.

Protobuf enum google.cloud.securitycenter.v1.IamBinding.Action

Indicator.ProcessSignature.SignatureCase

Kubernetes.Role.Kind

Types of Kubernetes roles.

Protobuf enum google.cloud.securitycenter.v1.Kubernetes.Role.Kind

Kubernetes.Subject.AuthType

Auth types that can be used for the subject's kind field.

Protobuf enum google.cloud.securitycenter.v1.Kubernetes.Subject.AuthType

ListAssetsResponse.ListAssetsResult.StateChange

The change in state of the asset.

When querying across two points in time this describes the change between the two points: ADDED, REMOVED, or ACTIVE. If there was no compare_duration supplied in the request the state change will be: UNUSED

Protobuf enum google.cloud.securitycenter.v1.ListAssetsResponse.ListAssetsResult.StateChange

ListFindingsResponse.ListFindingsResult.StateChange

The change in state of the finding.

When querying across two points in time this describes the change in the finding between the two points: CHANGED, UNCHANGED, ADDED, or REMOVED. Findings can not be deleted, so REMOVED implies that the finding at timestamp does not match the filter specified, but it did at timestamp - compare_duration. If there was no compare_duration supplied in the request the state change will be: UNUSED

Protobuf enum google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.StateChange

MitreAttack.Tactic

MITRE ATT&CK tactics that can be referenced by SCC findings. See: https://attack.mitre.org/tactics/enterprise/

Protobuf enum google.cloud.securitycenter.v1.MitreAttack.Tactic

MitreAttack.Technique

MITRE ATT&CK techniques that can be referenced by SCC findings. See: https://attack.mitre.org/techniques/enterprise/

Protobuf enum google.cloud.securitycenter.v1.MitreAttack.Technique

NotificationConfig.NotifyConfigCase

NotificationMessage.EventCase

OrganizationSettings.AssetDiscoveryConfig.InclusionMode

The mode of inclusion when running Asset Discovery. Asset discovery can be limited by explicitly identifying projects to be included or excluded. If INCLUDE_ONLY is set, then only those projects within the organization and their children are discovered during asset discovery. If EXCLUDE is set, then projects that don't match those projects are discovered during asset discovery. If neither are set, then all projects within the organization are discovered during asset discovery.

Protobuf enum google.cloud.securitycenter.v1.OrganizationSettings.AssetDiscoveryConfig.InclusionMode

RunAssetDiscoveryResponse.State

The state of an asset discovery run.

Protobuf enum google.cloud.securitycenter.v1.RunAssetDiscoveryResponse.State

SecurityHealthAnalyticsCustomModule.EnablementState

Possible enablement states of a custom module.

Protobuf enum google.cloud.securitycenter.v1.SecurityHealthAnalyticsCustomModule.EnablementState