Package com.google.cloud.securitycenter.v1 (2.37.0)

Represents an access event.

Protobuf type google.cloud.securitycenter.v1.Access

Represents an access event.

Protobuf type google.cloud.securitycenter.v1.Access

Security Command Center representation of a Google Cloud resource.

The Asset is a Security Command Center resource that captures information about a single Google Cloud resource. All modifications to an Asset are only within the context of Security Command Center and don't affect the referenced Google Cloud resource.

Protobuf type google.cloud.securitycenter.v1.Asset

Security Command Center representation of a Google Cloud resource.

The Asset is a Security Command Center resource that captures information about a single Google Cloud resource. All modifications to an Asset are only within the context of Security Command Center and don't affect the referenced Google Cloud resource.

Protobuf type google.cloud.securitycenter.v1.Asset

Cloud IAM Policy information associated with the Google Cloud resource described by the Security Command Center asset. This information is managed and defined by the Google Cloud resource and cannot be modified by the user.

Protobuf type google.cloud.securitycenter.v1.Asset.IamPolicy

Cloud IAM Policy information associated with the Google Cloud resource described by the Security Command Center asset. This information is managed and defined by the Google Cloud resource and cannot be modified by the user.

Protobuf type google.cloud.securitycenter.v1.Asset.IamPolicy

Security Command Center managed properties. These properties are managed by Security Command Center and cannot be modified by the user.

Protobuf type google.cloud.securitycenter.v1.Asset.SecurityCenterProperties

Security Command Center managed properties. These properties are managed by Security Command Center and cannot be modified by the user.

Protobuf type google.cloud.securitycenter.v1.Asset.SecurityCenterProperties

Builder for organizations/{organization}/assets/{asset}.

Builder for folders/{folder}/assets/{asset}.

Builder for projects/{project}/assets/{asset}.

Configures how to deliver Findings to BigQuery Instance.

Protobuf type google.cloud.securitycenter.v1.BigQueryExport

Configures how to deliver Findings to BigQuery Instance.

Protobuf type google.cloud.securitycenter.v1.BigQueryExport

Builder for organizations/{organization}/bigQueryExports/{export}.

Builder for folders/{folder}/bigQueryExports/{export}.

Builder for projects/{project}/bigQueryExports/{export}.

Request message for bulk findings update.

Note:

1. If multiple bulk update requests match the same resource, the order in which they get executed is not defined.
2. Once a bulk operation is started, there is no way to stop it.

Protobuf type google.cloud.securitycenter.v1.BulkMuteFindingsRequest

Request message for bulk findings update.

Note:

1. If multiple bulk update requests match the same resource, the order in which they get executed is not defined.
2. Once a bulk operation is started, there is no way to stop it.

Protobuf type google.cloud.securitycenter.v1.BulkMuteFindingsRequest

The response to a BulkMute request. Contains the LRO information.

Protobuf type google.cloud.securitycenter.v1.BulkMuteFindingsResponse

The response to a BulkMute request. Contains the LRO information.

Protobuf type google.cloud.securitycenter.v1.BulkMuteFindingsResponse

The data profile associated with the finding.

Protobuf type google.cloud.securitycenter.v1.CloudDlpDataProfile

The data profile associated with the finding.

Protobuf type google.cloud.securitycenter.v1.CloudDlpDataProfile

Details about the Cloud Data Loss Prevention (Cloud DLP) inspection job that produced the finding.

Protobuf type google.cloud.securitycenter.v1.CloudDlpInspection

Details about the Cloud Data Loss Prevention (Cloud DLP) inspection job that produced the finding.

Protobuf type google.cloud.securitycenter.v1.CloudDlpInspection

Contains compliance information about a security standard indicating unmet recommendations.

Protobuf type google.cloud.securitycenter.v1.Compliance

Contains compliance information about a security standard indicating unmet recommendations.

Protobuf type google.cloud.securitycenter.v1.Compliance

Contains information about the IP connection associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Connection

Contains information about the IP connection associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Connection

The email address of a contact.

Protobuf type google.cloud.securitycenter.v1.Contact

The email address of a contact.

Protobuf type google.cloud.securitycenter.v1.Contact

Details about specific contacts

Protobuf type google.cloud.securitycenter.v1.ContactDetails

Details about specific contacts

Protobuf type google.cloud.securitycenter.v1.ContactDetails

Container associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Container

Container associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Container

Request message for creating a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.CreateBigQueryExportRequest

Request message for creating a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.CreateBigQueryExportRequest

Request message for creating a finding.

Protobuf type google.cloud.securitycenter.v1.CreateFindingRequest

Request message for creating a finding.

Protobuf type google.cloud.securitycenter.v1.CreateFindingRequest

Request message for creating a mute config.

Protobuf type google.cloud.securitycenter.v1.CreateMuteConfigRequest

Request message for creating a mute config.

Protobuf type google.cloud.securitycenter.v1.CreateMuteConfigRequest

Request message for creating a notification config.

Protobuf type google.cloud.securitycenter.v1.CreateNotificationConfigRequest

Request message for creating a notification config.

Protobuf type google.cloud.securitycenter.v1.CreateNotificationConfigRequest

Request message for creating Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.CreateSecurityHealthAnalyticsCustomModuleRequest

Request message for creating Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.CreateSecurityHealthAnalyticsCustomModuleRequest

Request message for creating a source.

Protobuf type google.cloud.securitycenter.v1.CreateSourceRequest

Request message for creating a source.

Protobuf type google.cloud.securitycenter.v1.CreateSourceRequest

Defines the properties in a custom module configuration for Security Health Analytics. Use the custom module configuration to create custom detectors that generate custom findings for resources that you specify.

Protobuf type google.cloud.securitycenter.v1.CustomConfig

Defines the properties in a custom module configuration for Security Health Analytics. Use the custom module configuration to create custom detectors that generate custom findings for resources that you specify.

Protobuf type google.cloud.securitycenter.v1.CustomConfig

A set of optional name-value pairs that define custom source properties to return with each finding that is generated by the custom module. The custom source properties that are defined here are included in the finding JSON under sourceProperties.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.CustomOutputSpec

A set of optional name-value pairs that define custom source properties to return with each finding that is generated by the custom module. The custom source properties that are defined here are included in the finding JSON under sourceProperties.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.CustomOutputSpec

An individual name-value pair that defines a custom source property.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.CustomOutputSpec.Property

An individual name-value pair that defines a custom source property.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.CustomOutputSpec.Property

Resource for selecting resource type.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.ResourceSelector

Resource for selecting resource type.

Protobuf type google.cloud.securitycenter.v1.CustomConfig.ResourceSelector

CVE stands for Common Vulnerabilities and Exposures. More information: https://cve.mitre.org

Protobuf type google.cloud.securitycenter.v1.Cve

CVE stands for Common Vulnerabilities and Exposures. More information: https://cve.mitre.org

Protobuf type google.cloud.securitycenter.v1.Cve

Common Vulnerability Scoring System version 3.

Protobuf type google.cloud.securitycenter.v1.Cvssv3

Common Vulnerability Scoring System version 3.

Protobuf type google.cloud.securitycenter.v1.Cvssv3

Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the full resource name populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. Some database resources may not have the full resource name populated because these resource types are not yet supported by Cloud Asset Inventory (e.g. Cloud SQL databases). In these cases only the display name will be provided.

Protobuf type google.cloud.securitycenter.v1.Database

Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the full resource name populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. Some database resources may not have the full resource name populated because these resource types are not yet supported by Cloud Asset Inventory (e.g. Cloud SQL databases). In these cases only the display name will be provided.

Protobuf type google.cloud.securitycenter.v1.Database

Request message for deleting a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.DeleteBigQueryExportRequest

Request message for deleting a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.DeleteBigQueryExportRequest

Request message for deleting a mute config.

Protobuf type google.cloud.securitycenter.v1.DeleteMuteConfigRequest

Request message for deleting a mute config.

Protobuf type google.cloud.securitycenter.v1.DeleteMuteConfigRequest

Request message for deleting a notification config.

Protobuf type google.cloud.securitycenter.v1.DeleteNotificationConfigRequest

Request message for deleting a notification config.

Protobuf type google.cloud.securitycenter.v1.DeleteNotificationConfigRequest

Request message for deleting Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.DeleteSecurityHealthAnalyticsCustomModuleRequest

Request message for deleting Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.DeleteSecurityHealthAnalyticsCustomModuleRequest

An EffectiveSecurityHealthAnalyticsCustomModule is the representation of a Security Health Analytics custom module at a specified level of the resource hierarchy: organization, folder, or project. If a custom module is inherited from a parent organization or folder, the value of the enablementState property in EffectiveSecurityHealthAnalyticsCustomModule is set to the value that is effective in the parent, instead of INHERITED. For example, if the module is enabled in a parent organization or folder, the effective enablement_state for the module in all child folders or projects is also enabled. EffectiveSecurityHealthAnalyticsCustomModule is read-only.

Protobuf type google.cloud.securitycenter.v1.EffectiveSecurityHealthAnalyticsCustomModule

An EffectiveSecurityHealthAnalyticsCustomModule is the representation of a Security Health Analytics custom module at a specified level of the resource hierarchy: organization, folder, or project. If a custom module is inherited from a parent organization or folder, the value of the enablementState property in EffectiveSecurityHealthAnalyticsCustomModule is set to the value that is effective in the parent, instead of INHERITED. For example, if the module is enabled in a parent organization or folder, the effective enablement_state for the module in all child folders or projects is also enabled. EffectiveSecurityHealthAnalyticsCustomModule is read-only.

Protobuf type google.cloud.securitycenter.v1.EffectiveSecurityHealthAnalyticsCustomModule

Builder for organizations/{organization}/securityHealthAnalyticsSettings/effectiveCustomModules/{effective_custom_module}.

Builder for folders/{folder}/securityHealthAnalyticsSettings/effectiveCustomModules/{effective_custom_module}.

Builder for projects/{project}/securityHealthAnalyticsSettings/effectiveCustomModules/{effective_custom_module}.

A name-value pair representing an environment variable used in an operating system process.

Protobuf type google.cloud.securitycenter.v1.EnvironmentVariable

A name-value pair representing an environment variable used in an operating system process.

Protobuf type google.cloud.securitycenter.v1.EnvironmentVariable

Resource where data was exfiltrated from or exfiltrated to.

Protobuf type google.cloud.securitycenter.v1.ExfilResource

Resource where data was exfiltrated from or exfiltrated to.

Protobuf type google.cloud.securitycenter.v1.ExfilResource

Exfiltration represents a data exfiltration attempt from one or more sources to one or more targets. The sources attribute lists the sources of the exfiltrated data. The targets attribute lists the destinations the data was copied to.

Protobuf type google.cloud.securitycenter.v1.Exfiltration

Exfiltration represents a data exfiltration attempt from one or more sources to one or more targets. The sources attribute lists the sources of the exfiltrated data. The targets attribute lists the destinations the data was copied to.

Protobuf type google.cloud.securitycenter.v1.Exfiltration

Representation of third party SIEM/SOAR fields within SCC.

Protobuf type google.cloud.securitycenter.v1.ExternalSystem

Representation of third party SIEM/SOAR fields within SCC.

Protobuf type google.cloud.securitycenter.v1.ExternalSystem

File information about the related binary/library used by an executable, or the script used by a script interpreter

Protobuf type google.cloud.securitycenter.v1.File

File information about the related binary/library used by an executable, or the script used by a script interpreter

Protobuf type google.cloud.securitycenter.v1.File

Security Command Center finding.

A finding is a record of assessment data like security, risk, health, or privacy, that is ingested into Security Command Center for presentation, notification, analysis, policy testing, and enforcement. For example, a cross-site scripting (XSS) vulnerability in an App Engine application is a finding.

Protobuf type google.cloud.securitycenter.v1.Finding

Security Command Center finding.

A finding is a record of assessment data like security, risk, health, or privacy, that is ingested into Security Command Center for presentation, notification, analysis, policy testing, and enforcement. For example, a cross-site scripting (XSS) vulnerability in an App Engine application is a finding.

Protobuf type google.cloud.securitycenter.v1.Finding

Builder for organizations/{organization}/sources/{source}/findings/{finding}.

Builder for folders/{folder}/sources/{source}/findings/{finding}.

Builder for projects/{project}/sources/{source}/findings/{finding}.

Message that contains the resource name and display name of a folder resource.

Protobuf type google.cloud.securitycenter.v1.Folder

Message that contains the resource name and display name of a folder resource.

Protobuf type google.cloud.securitycenter.v1.Folder

Builder for folders/{folder}.

Represents a geographical location for a given access.

Protobuf type google.cloud.securitycenter.v1.Geolocation

Represents a geographical location for a given access.

Protobuf type google.cloud.securitycenter.v1.Geolocation

Request message for retrieving a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.GetBigQueryExportRequest

Request message for retrieving a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.GetBigQueryExportRequest

Request message for getting effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.GetEffectiveSecurityHealthAnalyticsCustomModuleRequest

Request message for getting effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.GetEffectiveSecurityHealthAnalyticsCustomModuleRequest

Request message for retrieving a mute config.

Protobuf type google.cloud.securitycenter.v1.GetMuteConfigRequest

Request message for retrieving a mute config.

Protobuf type google.cloud.securitycenter.v1.GetMuteConfigRequest

Request message for getting a notification config.

Protobuf type google.cloud.securitycenter.v1.GetNotificationConfigRequest

Request message for getting a notification config.

Protobuf type google.cloud.securitycenter.v1.GetNotificationConfigRequest

Request message for getting organization settings.

Protobuf type google.cloud.securitycenter.v1.GetOrganizationSettingsRequest

Request message for getting organization settings.

Protobuf type google.cloud.securitycenter.v1.GetOrganizationSettingsRequest

Request message for getting Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.GetSecurityHealthAnalyticsCustomModuleRequest

Request message for getting Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.GetSecurityHealthAnalyticsCustomModuleRequest

Request message for getting a source.

Protobuf type google.cloud.securitycenter.v1.GetSourceRequest

Request message for getting a source.

Protobuf type google.cloud.securitycenter.v1.GetSourceRequest

Request message for grouping by assets.

Protobuf type google.cloud.securitycenter.v1.GroupAssetsRequest

Request message for grouping by assets.

Protobuf type google.cloud.securitycenter.v1.GroupAssetsRequest

Response message for grouping by assets.

Protobuf type google.cloud.securitycenter.v1.GroupAssetsResponse

Response message for grouping by assets.

Protobuf type google.cloud.securitycenter.v1.GroupAssetsResponse

Request message for grouping by findings.

Protobuf type google.cloud.securitycenter.v1.GroupFindingsRequest

Request message for grouping by findings.

Protobuf type google.cloud.securitycenter.v1.GroupFindingsRequest

Response message for group by findings.

Protobuf type google.cloud.securitycenter.v1.GroupFindingsResponse

Response message for group by findings.

Protobuf type google.cloud.securitycenter.v1.GroupFindingsResponse

Result containing the properties and count of a groupBy request.

Protobuf type google.cloud.securitycenter.v1.GroupResult

Result containing the properties and count of a groupBy request.

Protobuf type google.cloud.securitycenter.v1.GroupResult

Represents a particular IAM binding, which captures a member's role addition, removal, or state.

Protobuf type google.cloud.securitycenter.v1.IamBinding

Represents a particular IAM binding, which captures a member's role addition, removal, or state.

Protobuf type google.cloud.securitycenter.v1.IamBinding

Represents what's commonly known as an indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. For more information, see Indicator of compromise.

Protobuf type google.cloud.securitycenter.v1.Indicator

Represents what's commonly known as an indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. For more information, see Indicator of compromise.

Protobuf type google.cloud.securitycenter.v1.Indicator

Indicates what signature matched this process.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature

Indicates what signature matched this process.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature

A signature corresponding to memory page hashes.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.MemoryHashSignature

A signature corresponding to memory page hashes.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.MemoryHashSignature

Memory hash detection contributing to the binary family match.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.MemoryHashSignature.Detection

Memory hash detection contributing to the binary family match.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.MemoryHashSignature.Detection

A signature corresponding to a YARA rule.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.YaraRuleSignature

A signature corresponding to a YARA rule.

Protobuf type google.cloud.securitycenter.v1.Indicator.ProcessSignature.YaraRuleSignature

Kernel mode rootkit signatures.

Protobuf type google.cloud.securitycenter.v1.KernelRootkit

Kernel mode rootkit signatures.

Protobuf type google.cloud.securitycenter.v1.KernelRootkit

Kubernetes-related attributes.

Protobuf type google.cloud.securitycenter.v1.Kubernetes

Conveys information about a Kubernetes access review (such as one returned by a kubectl auth can-i command) that was involved in a finding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.AccessReview

Conveys information about a Kubernetes access review (such as one returned by a kubectl auth can-i command) that was involved in a finding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.AccessReview

Represents a Kubernetes RoleBinding or ClusterRoleBinding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Binding

Represents a Kubernetes RoleBinding or ClusterRoleBinding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Binding

Kubernetes-related attributes.

Protobuf type google.cloud.securitycenter.v1.Kubernetes

Kubernetes nodes associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Node

Kubernetes nodes associated with the finding.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Node

Provides GKE node pool information.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.NodePool

Provides GKE node pool information.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.NodePool

A Kubernetes Pod.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Pod

A Kubernetes Pod.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Pod

Kubernetes Role or ClusterRole.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Role

Kubernetes Role or ClusterRole.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Role

Represents a Kubernetes subject.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Subject

Represents a Kubernetes subject.

Protobuf type google.cloud.securitycenter.v1.Kubernetes.Subject

Represents a generic name-value label. A label has separate name and value fields to support filtering with the contains() function. For more information, see Filtering on array-type fields.

Protobuf type google.cloud.securitycenter.v1.Label

Represents a generic name-value label. A label has separate name and value fields to support filtering with the contains() function. For more information, see Filtering on array-type fields.

Protobuf type google.cloud.securitycenter.v1.Label

Request message for listing assets.

Protobuf type google.cloud.securitycenter.v1.ListAssetsRequest

Request message for listing assets.

Protobuf type google.cloud.securitycenter.v1.ListAssetsRequest

Response message for listing assets.

Protobuf type google.cloud.securitycenter.v1.ListAssetsResponse

Response message for listing assets.

Protobuf type google.cloud.securitycenter.v1.ListAssetsResponse

Result containing the Asset and its State.

Protobuf type google.cloud.securitycenter.v1.ListAssetsResponse.ListAssetsResult

Result containing the Asset and its State.

Protobuf type google.cloud.securitycenter.v1.ListAssetsResponse.ListAssetsResult

Request message for listing BigQuery exports at a given scope e.g. organization, folder or project.

Protobuf type google.cloud.securitycenter.v1.ListBigQueryExportsRequest

Request message for listing BigQuery exports at a given scope e.g. organization, folder or project.

Protobuf type google.cloud.securitycenter.v1.ListBigQueryExportsRequest

Response message for listing BigQuery exports.

Protobuf type google.cloud.securitycenter.v1.ListBigQueryExportsResponse

Response message for listing BigQuery exports.

Protobuf type google.cloud.securitycenter.v1.ListBigQueryExportsResponse

Request message for listing descendant Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListDescendantSecurityHealthAnalyticsCustomModulesRequest

Request message for listing descendant Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListDescendantSecurityHealthAnalyticsCustomModulesRequest

Response message for listing descendant Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListDescendantSecurityHealthAnalyticsCustomModulesResponse

Response message for listing descendant Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListDescendantSecurityHealthAnalyticsCustomModulesResponse

Request message for listing effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListEffectiveSecurityHealthAnalyticsCustomModulesRequest

Request message for listing effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListEffectiveSecurityHealthAnalyticsCustomModulesRequest

Response message for listing effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListEffectiveSecurityHealthAnalyticsCustomModulesResponse

Response message for listing effective Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListEffectiveSecurityHealthAnalyticsCustomModulesResponse

Request message for listing findings.

Protobuf type google.cloud.securitycenter.v1.ListFindingsRequest

Request message for listing findings.

Protobuf type google.cloud.securitycenter.v1.ListFindingsRequest

Response message for listing findings.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse

Response message for listing findings.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse

Result containing the Finding and its StateChange.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult

Result containing the Finding and its StateChange.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult

Information related to the Google Cloud resource that is associated with this finding.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.Resource

Information related to the Google Cloud resource that is associated with this finding.

Protobuf type google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.Resource

Request message for listing mute configs at a given scope e.g. organization, folder or project.

Protobuf type google.cloud.securitycenter.v1.ListMuteConfigsRequest

Request message for listing mute configs at a given scope e.g. organization, folder or project.

Protobuf type google.cloud.securitycenter.v1.ListMuteConfigsRequest

Response message for listing mute configs.

Protobuf type google.cloud.securitycenter.v1.ListMuteConfigsResponse

Response message for listing mute configs.

Protobuf type google.cloud.securitycenter.v1.ListMuteConfigsResponse

Request message for listing notification configs.

Protobuf type google.cloud.securitycenter.v1.ListNotificationConfigsRequest

Request message for listing notification configs.

Protobuf type google.cloud.securitycenter.v1.ListNotificationConfigsRequest

Response message for listing notification configs.

Protobuf type google.cloud.securitycenter.v1.ListNotificationConfigsResponse

Response message for listing notification configs.

Protobuf type google.cloud.securitycenter.v1.ListNotificationConfigsResponse

Request message for listing Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListSecurityHealthAnalyticsCustomModulesRequest

Request message for listing Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListSecurityHealthAnalyticsCustomModulesRequest

Response message for listing Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListSecurityHealthAnalyticsCustomModulesResponse

Response message for listing Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.ListSecurityHealthAnalyticsCustomModulesResponse

Request message for listing sources.

Protobuf type google.cloud.securitycenter.v1.ListSourcesRequest

Request message for listing sources.

Protobuf type google.cloud.securitycenter.v1.ListSourcesRequest

Response message for listing sources.

Protobuf type google.cloud.securitycenter.v1.ListSourcesResponse

Response message for listing sources.

Protobuf type google.cloud.securitycenter.v1.ListSourcesResponse

MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org

Protobuf type google.cloud.securitycenter.v1.MitreAttack

MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org

Protobuf type google.cloud.securitycenter.v1.MitreAttack

A mute config is a Cloud SCC resource that contains the configuration to mute create/update events of findings.

Protobuf type google.cloud.securitycenter.v1.MuteConfig

A mute config is a Cloud SCC resource that contains the configuration to mute create/update events of findings.

Protobuf type google.cloud.securitycenter.v1.MuteConfig

Builder for organizations/{organization}/muteConfigs/{mute_config}.

Builder for folders/{folder}/muteConfigs/{mute_config}.

Builder for projects/{project}/muteConfigs/{mute_config}.

Cloud Security Command Center (Cloud SCC) notification configs.

A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.

Protobuf type google.cloud.securitycenter.v1.NotificationConfig

Cloud Security Command Center (Cloud SCC) notification configs.

A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.

Protobuf type google.cloud.securitycenter.v1.NotificationConfig

The config for streaming-based notifications, which send each event as soon as it is detected.

Protobuf type google.cloud.securitycenter.v1.NotificationConfig.StreamingConfig

The config for streaming-based notifications, which send each event as soon as it is detected.

Protobuf type google.cloud.securitycenter.v1.NotificationConfig.StreamingConfig

Builder for organizations/{organization}/notificationConfigs/{notification_config}.

Builder for folders/{folder}/notificationConfigs/{notification_config}.

Builder for projects/{project}/notificationConfigs/{notification_config}.

Cloud SCC's Notification

Protobuf type google.cloud.securitycenter.v1.NotificationMessage

Cloud SCC's Notification

Protobuf type google.cloud.securitycenter.v1.NotificationMessage

Builder for organizations/{organization}.

User specified settings that are attached to the Security Command Center organization.

Protobuf type google.cloud.securitycenter.v1.OrganizationSettings

The configuration used for Asset Discovery runs.

Protobuf type google.cloud.securitycenter.v1.OrganizationSettings.AssetDiscoveryConfig

The configuration used for Asset Discovery runs.

Protobuf type google.cloud.securitycenter.v1.OrganizationSettings.AssetDiscoveryConfig

User specified settings that are attached to the Security Command Center organization.

Protobuf type google.cloud.securitycenter.v1.OrganizationSettings

Builder for organizations/{organization}/organizationSettings.

Represents an operating system process.

Protobuf type google.cloud.securitycenter.v1.Process

Represents an operating system process.

Protobuf type google.cloud.securitycenter.v1.Process

Builder for projects/{project}.

Additional Links

Protobuf type google.cloud.securitycenter.v1.Reference

Additional Links

Protobuf type google.cloud.securitycenter.v1.Reference

Information related to the Google Cloud resource.

Protobuf type google.cloud.securitycenter.v1.Resource

Information related to the Google Cloud resource.

Protobuf type google.cloud.securitycenter.v1.Resource

Request message for running asset discovery for an organization.

Protobuf type google.cloud.securitycenter.v1.RunAssetDiscoveryRequest

Request message for running asset discovery for an organization.

Protobuf type google.cloud.securitycenter.v1.RunAssetDiscoveryRequest

Response of asset discovery run

Protobuf type google.cloud.securitycenter.v1.RunAssetDiscoveryResponse

Response of asset discovery run

Protobuf type google.cloud.securitycenter.v1.RunAssetDiscoveryResponse

Service Description: V1 APIs for Security Center service.

This class provides the ability to make remote calls to the backing service through method calls that map to API methods. Sample code to get started:

 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 try (SecurityCenterClient securityCenterClient = SecurityCenterClient.create()) {
   SecurityHealthAnalyticsSettingsName parent =
       SecurityHealthAnalyticsSettingsName.ofOrganizationName("[ORGANIZATION]");
   SecurityHealthAnalyticsCustomModule securityHealthAnalyticsCustomModule =
       SecurityHealthAnalyticsCustomModule.newBuilder().build();
   SecurityHealthAnalyticsCustomModule response =
       securityCenterClient.createSecurityHealthAnalyticsCustomModule(
           parent, securityHealthAnalyticsCustomModule);
 }
 

Note: close() needs to be called on the SecurityCenterClient object to clean up resources such as threads. In the example above, try-with-resources is used, which automatically calls close().

The surface of this class includes several types of Java methods for each of the API's methods:

1. A "flattened" method. With this type of method, the fields of the request type have been converted into function parameters. It may be the case that not all fields are available as parameters, and not every API method will have a flattened method entry point.
2. A "request object" method. This type of method only takes one parameter, a request object, which must be constructed before the call. Not every API method will have a request object method.
3. A "callable" method. This type of method takes no parameters and returns an immutable API callable object, which can be used to initiate calls to the service.

See the individual methods for example code.

Many parameters require resource names to be formatted in a particular way. To assist with these names, this class includes a format method for each type of name, and additionally a parse method to extract the individual identifiers contained within names that are returned.

This class can be customized by passing in a custom instance of SecurityCenterSettings to create(). For example:

To customize credentials:

 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 SecurityCenterSettings securityCenterSettings =
     SecurityCenterSettings.newBuilder()
         .setCredentialsProvider(FixedCredentialsProvider.create(myCredentials))
         .build();
 SecurityCenterClient securityCenterClient = SecurityCenterClient.create(securityCenterSettings);
 

To customize the endpoint:

 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 SecurityCenterSettings securityCenterSettings =
     SecurityCenterSettings.newBuilder().setEndpoint(myEndpoint).build();
 SecurityCenterClient securityCenterClient = SecurityCenterClient.create(securityCenterSettings);
 

To use REST (HTTP1.1/JSON) transport (instead of gRPC) for sending and receiving requests over the wire:

 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 SecurityCenterSettings securityCenterSettings =
     SecurityCenterSettings.newHttpJsonBuilder().build();
 SecurityCenterClient securityCenterClient = SecurityCenterClient.create(securityCenterSettings);
 

Please refer to the GitHub repository's samples for more quickstart code snippets.

V1 APIs for Security Center service.

A stub to allow clients to do synchronous rpc calls to service SecurityCenter.

V1 APIs for Security Center service.

A stub to allow clients to do ListenableFuture-style rpc calls to service SecurityCenter.

V1 APIs for Security Center service.

Base class for the server implementation of the service SecurityCenter.

V1 APIs for Security Center service.

A stub to allow clients to do asynchronous rpc calls to service SecurityCenter.

V1 APIs for Security Center service.

Settings class to configure an instance of SecurityCenterClient.

The default instance has everything set to sensible defaults:

• The default service address (securitycenter.googleapis.com) and default port (443) are used.
• Credentials are acquired automatically through Application Default Credentials.
• Retries are configured for idempotent methods but not for non-idempotent methods.

The builder of this class is recursive, so contained classes are themselves builders. When build() is called, the tree of builders is called to create the complete settings object.

For example, to set the total timeout of createSecurityHealthAnalyticsCustomModule to 30 seconds:

 // This snippet has been automatically generated and should be regarded as a code template only.
 // It will require modifications to work:
 // - It may require correct/in-range values for request initialization.
 // - It may require specifying regional endpoints when creating the service client as shown in
 // https://cloud.google.com/java/docs/setup#configure_endpoints_for_the_client_library
 SecurityCenterSettings.Builder securityCenterSettingsBuilder =
     SecurityCenterSettings.newBuilder();
 securityCenterSettingsBuilder
     .createSecurityHealthAnalyticsCustomModuleSettings()
     .setRetrySettings(
         securityCenterSettingsBuilder
             .createSecurityHealthAnalyticsCustomModuleSettings()
             .getRetrySettings()
             .toBuilder()
             .setTotalTimeout(Duration.ofSeconds(30))
             .build());
 SecurityCenterSettings securityCenterSettings = securityCenterSettingsBuilder.build();
 

Builder for SecurityCenterSettings.

Represents an instance of a Security Health Analytics custom module, including its full module name, display name, enablement state, and last updated time. You can create a custom module at the organization, folder, or project level. Custom modules that you create at the organization or folder level are inherited by the child folders and projects.

Protobuf type google.cloud.securitycenter.v1.SecurityHealthAnalyticsCustomModule

Represents an instance of a Security Health Analytics custom module, including its full module name, display name, enablement state, and last updated time. You can create a custom module at the organization, folder, or project level. Custom modules that you create at the organization or folder level are inherited by the child folders and projects.

Protobuf type google.cloud.securitycenter.v1.SecurityHealthAnalyticsCustomModule

Builder for organizations/{organization}/securityHealthAnalyticsSettings/customModules/{custom_module}.

Builder for folders/{folder}/securityHealthAnalyticsSettings/customModules/{custom_module}.

Builder for projects/{project}/securityHealthAnalyticsSettings/customModules/{custom_module}.

Builder for organizations/{organization}/securityHealthAnalyticsSettings.

Builder for folders/{folder}/securityHealthAnalyticsSettings.

Builder for projects/{project}/securityHealthAnalyticsSettings.

User specified security marks that are attached to the parent Security Command Center resource. Security marks are scoped within a Security Command Center organization -- they can be modified and viewed by all users who have proper permissions on the organization.

Protobuf type google.cloud.securitycenter.v1.SecurityMarks

User specified security marks that are attached to the parent Security Command Center resource. Security marks are scoped within a Security Command Center organization -- they can be modified and viewed by all users who have proper permissions on the organization.

Protobuf type google.cloud.securitycenter.v1.SecurityMarks

Identity delegation history of an authenticated service account.

Protobuf type google.cloud.securitycenter.v1.ServiceAccountDelegationInfo

Identity delegation history of an authenticated service account.

Protobuf type google.cloud.securitycenter.v1.ServiceAccountDelegationInfo

Request message for updating a finding's state.

Protobuf type google.cloud.securitycenter.v1.SetFindingStateRequest

Request message for updating a finding's state.

Protobuf type google.cloud.securitycenter.v1.SetFindingStateRequest

Request message for updating a finding's mute status.

Protobuf type google.cloud.securitycenter.v1.SetMuteRequest

Request message for updating a finding's mute status.

Protobuf type google.cloud.securitycenter.v1.SetMuteRequest

Request message to simulate a CustomConfig against a given test resource. Maximum size of the request is 4 MB by default.

Protobuf type google.cloud.securitycenter.v1.SimulateSecurityHealthAnalyticsCustomModuleRequest

Request message to simulate a CustomConfig against a given test resource. Maximum size of the request is 4 MB by default.

Protobuf type google.cloud.securitycenter.v1.SimulateSecurityHealthAnalyticsCustomModuleRequest

Manually constructed resource. If the custom module only evaluates against the resource data, the iam_policy_data field can be omitted, and vice versa.

Protobuf type google.cloud.securitycenter.v1.SimulateSecurityHealthAnalyticsCustomModuleRequest.SimulatedResource

Manually constructed resource. If the custom module only evaluates against the resource data, the iam_policy_data field can be omitted, and vice versa.

Protobuf type google.cloud.securitycenter.v1.SimulateSecurityHealthAnalyticsCustomModuleRequest.SimulatedResource

Response message for simulating a SecurityHealthAnalyticsCustomModule against a given resource.

Protobuf type google.cloud.securitycenter.v1.SimulateSecurityHealthAnalyticsCustomModuleResponse

Response message for simulating a SecurityHealthAnalyticsCustomModule against a given resource.

Protobuf type google.cloud.securitycenter.v1.SimulateSecurityHealthAnalyticsCustomModuleResponse

Possible test result.

Protobuf type google.cloud.securitycenter.v1.SimulateSecurityHealthAnalyticsCustomModuleResponse.SimulatedResult

Possible test result.

Protobuf type google.cloud.securitycenter.v1.SimulateSecurityHealthAnalyticsCustomModuleResponse.SimulatedResult

Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools.

Protobuf type google.cloud.securitycenter.v1.Source

Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools.

Protobuf type google.cloud.securitycenter.v1.Source

Builder for organizations/{organization}/sources/{source}.

Builder for folders/{folder}/sources/{source}.

Builder for projects/{project}/sources/{source}.

Request message for updating a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.UpdateBigQueryExportRequest

Request message for updating a BigQuery export.

Protobuf type google.cloud.securitycenter.v1.UpdateBigQueryExportRequest

Request message for updating a ExternalSystem resource.

Protobuf type google.cloud.securitycenter.v1.UpdateExternalSystemRequest

Request message for updating a ExternalSystem resource.

Protobuf type google.cloud.securitycenter.v1.UpdateExternalSystemRequest

Request message for updating or creating a finding.

Protobuf type google.cloud.securitycenter.v1.UpdateFindingRequest

Request message for updating or creating a finding.

Protobuf type google.cloud.securitycenter.v1.UpdateFindingRequest

Request message for updating a mute config.

Protobuf type google.cloud.securitycenter.v1.UpdateMuteConfigRequest

Request message for updating a mute config.

Protobuf type google.cloud.securitycenter.v1.UpdateMuteConfigRequest

Request message for updating a notification config.

Protobuf type google.cloud.securitycenter.v1.UpdateNotificationConfigRequest

Request message for updating a notification config.

Protobuf type google.cloud.securitycenter.v1.UpdateNotificationConfigRequest

Request message for updating an organization's settings.

Protobuf type google.cloud.securitycenter.v1.UpdateOrganizationSettingsRequest

Request message for updating an organization's settings.

Protobuf type google.cloud.securitycenter.v1.UpdateOrganizationSettingsRequest

Request message for updating Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.UpdateSecurityHealthAnalyticsCustomModuleRequest

Request message for updating Security Health Analytics custom modules.

Protobuf type google.cloud.securitycenter.v1.UpdateSecurityHealthAnalyticsCustomModuleRequest

Request message for updating a SecurityMarks resource.

Protobuf type google.cloud.securitycenter.v1.UpdateSecurityMarksRequest

Request message for updating a SecurityMarks resource.

Protobuf type google.cloud.securitycenter.v1.UpdateSecurityMarksRequest

Request message for updating a source.

Protobuf type google.cloud.securitycenter.v1.UpdateSourceRequest

Request message for updating a source.

Protobuf type google.cloud.securitycenter.v1.UpdateSourceRequest

Refers to common vulnerability fields e.g. cve, cvss, cwe etc.

Protobuf type google.cloud.securitycenter.v1.Vulnerability

Refers to common vulnerability fields e.g. cve, cvss, cwe etc.

Protobuf type google.cloud.securitycenter.v1.Vulnerability

V1 APIs for Security Center service.

Parents for configurations that produce data profile findings.

Protobuf enum google.cloud.securitycenter.v1.CloudDlpDataProfile.ParentType

IANA Internet Protocol Number such as TCP(6) and UDP(17).

Protobuf enum google.cloud.securitycenter.v1.Connection.Protocol

Defines the valid value options for the severity of a finding.

Protobuf enum google.cloud.securitycenter.v1.CustomConfig.Severity

This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.AttackComplexity

This metric reflects the context by which vulnerability exploitation is possible.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.AttackVector

The Impact metrics capture the effects of a successfully exploited vulnerability on the component that suffers the worst outcome that is most directly and predictably associated with the attack.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.Impact

This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.PrivilegesRequired

The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.Scope

This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component.

Protobuf enum google.cloud.securitycenter.v1.Cvssv3.UserInteraction

The enablement state of the module.

Protobuf enum google.cloud.securitycenter.v1.EffectiveSecurityHealthAnalyticsCustomModule.EnablementState

Represents what kind of Finding it is.

Protobuf enum google.cloud.securitycenter.v1.Finding.FindingClass

Mute state a finding can be in.

Protobuf enum google.cloud.securitycenter.v1.Finding.Mute

The severity of the finding.

Protobuf enum google.cloud.securitycenter.v1.Finding.Severity

The state of the finding.

Protobuf enum google.cloud.securitycenter.v1.Finding.State

The type of action performed on a Binding in a policy.

Protobuf enum google.cloud.securitycenter.v1.IamBinding.Action

Types of Kubernetes roles.

Protobuf enum google.cloud.securitycenter.v1.Kubernetes.Role.Kind

Auth types that can be used for the subject's kind field.

Protobuf enum google.cloud.securitycenter.v1.Kubernetes.Subject.AuthType

The change in state of the asset.

When querying across two points in time this describes the change between the two points: ADDED, REMOVED, or ACTIVE. If there was no compare_duration supplied in the request the state change will be: UNUSED

Protobuf enum google.cloud.securitycenter.v1.ListAssetsResponse.ListAssetsResult.StateChange

The change in state of the finding.

When querying across two points in time this describes the change in the finding between the two points: CHANGED, UNCHANGED, ADDED, or REMOVED. Findings can not be deleted, so REMOVED implies that the finding at timestamp does not match the filter specified, but it did at timestamp - compare_duration. If there was no compare_duration supplied in the request the state change will be: UNUSED

Protobuf enum google.cloud.securitycenter.v1.ListFindingsResponse.ListFindingsResult.StateChange

MITRE ATT&CK tactics that can be referenced by SCC findings. See: https://attack.mitre.org/tactics/enterprise/

Protobuf enum google.cloud.securitycenter.v1.MitreAttack.Tactic

MITRE ATT&CK techniques that can be referenced by SCC findings. See: https://attack.mitre.org/techniques/enterprise/

Protobuf enum google.cloud.securitycenter.v1.MitreAttack.Technique

The mode of inclusion when running Asset Discovery. Asset discovery can be limited by explicitly identifying projects to be included or excluded. If INCLUDE_ONLY is set, then only those projects within the organization and their children are discovered during asset discovery. If EXCLUDE is set, then projects that don't match those projects are discovered during asset discovery. If neither are set, then all projects within the organization are discovered during asset discovery.

Protobuf enum google.cloud.securitycenter.v1.OrganizationSettings.AssetDiscoveryConfig.InclusionMode

The state of an asset discovery run.

Protobuf enum google.cloud.securitycenter.v1.RunAssetDiscoveryResponse.State

Possible enablement states of a custom module.

Protobuf enum google.cloud.securitycenter.v1.SecurityHealthAnalyticsCustomModule.EnablementState