Class SecurityMonitoringSignalRulePayload

The payload of a signal correlation rule.

Hierarchy

  • SecurityMonitoringSignalRulePayload

Constructors

Properties

additionalProperties?: {
    [key: string]: any;
}

A container for additional, undeclared properties. This is a holder for any undeclared properties as specified with the 'additionalProperties' keyword in the OAS document.

Type declaration

  • [key: string]: any

Cases for generating signals.

Additional queries to filter matched events before they are processed. This field is deprecated for log detection, signal correlation, and workload security rules.

hasExtendedTitle?: boolean

Whether the notifications include the triggering group-by values in their title.

isEnabled: boolean

Whether the rule is enabled.

message: string

Message for generated signals.

name: string

The name of the rule.

Options on rules.

Queries for selecting signals which are part of the rule.

tags?: string[]

Tags for generated signals.

The rule type.

Generated using TypeDoc