Class SecurityMonitoringSignalRulePayload

The payload of a signal correlation rule.

Hierarchy

  • SecurityMonitoringSignalRulePayload

Constructors

constructor

Properties

additionalProperties? cases filters? hasExtendedTitle? isEnabled message name options queries tags? type?

Constructors

constructor

Properties

Optional additionalProperties

additionalProperties?: {
    [key: string]: any;
}

A container for additional, undeclared properties. This is a holder for any undeclared properties as specified with the 'additionalProperties' keyword in the OAS document.

Type declaration

  • [key: string]: any

cases

cases: SecurityMonitoringRuleCaseCreate[]

Cases for generating signals.

Optional filters

filters?: SecurityMonitoringFilter[]

Additional queries to filter matched events before they are processed. This field is deprecated for log detection, signal correlation, and workload security rules.

Optional hasExtendedTitle

hasExtendedTitle?: boolean

Whether the notifications include the triggering group-by values in their title.

isEnabled

isEnabled: boolean

Whether the rule is enabled.

message

message: string

Message for generated signals.

name

name: string

The name of the rule.

options

options: SecurityMonitoringRuleOptions

Options.

queries

queries: SecurityMonitoringSignalRuleQuery[]

Queries for selecting signals which are part of the rule.

Optional tags

tags?: string[]

Tags for generated signals.

Optional type

type?: SecurityMonitoringSignalRuleType

The rule type.

Settings

Member Visibility

Theme

Generated using TypeDoc