Class Indicator (1.11.0)

Indicator(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Represents what's commonly known as an Indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise

Attributes

NameDescription
ip_addresses Sequence[str]
List of ip addresses associated to the Finding.
domains Sequence[str]
List of domains associated to the Finding.

Inheritance

builtins.object > proto.message.Message > Indicator