aws-sdk-guardduty 1.17.0 → 1.18.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: fc39586c7bb07c676b2763ec992b6e7d30bd698c
4
- data.tar.gz: ba3da84afd0eae0c5216b9e6ff5218b2c98d2162
3
+ metadata.gz: 11dac03bfa173d82df4bba92327a72e5b3e604d8
4
+ data.tar.gz: 612bb26da42898f0b5d61a56733cdee612be4b21
5
5
  SHA512:
6
- metadata.gz: bc0104e0ffdbc6ed8a0f764704339242afad6a7c00c6d8b159ea0abb12591492296b43376c3c1ea5000c7b093bf7cc3e7733b6c1d4c12906ac8331fdb2f1a53d
7
- data.tar.gz: 269b74db9234495ac177e3736c7b56c402e71b67db5275d863df9bc97cf900651c0489a95405124a44c0903795453ab73d17dc18a742c7663328ef27b0f31737
6
+ metadata.gz: abfd4a9c6142ed259cc0cf01bfe15b72d57f2e9ba7d1c9c3b42b5308722e0b3d5a6c722bd386259b9345c9ab8913f740300c94c78bfeae64292013b41f1f6c32
7
+ data.tar.gz: 928789ff5537df3991a71961795dfd8d417d4b3aed24462ce86c8f7acbdb72ed8195f474e7a9a7f1462f3585b422af0063985f686f294f2d2c585efbb95ea7cc
@@ -42,6 +42,6 @@ require_relative 'aws-sdk-guardduty/customizations'
42
42
  # @service
43
43
  module Aws::GuardDuty
44
44
 
45
- GEM_VERSION = '1.17.0'
45
+ GEM_VERSION = '1.18.0'
46
46
 
47
47
  end
@@ -253,23 +253,24 @@ module Aws::GuardDuty
253
253
  # Accepts the invitation to be monitored by a master GuardDuty account.
254
254
  #
255
255
  # @option params [required, String] :detector_id
256
- #
257
- # @option params [required, String] :invitation_id
258
- # This value is used to validate the master account to the member
259
- # account.
256
+ # The unique ID of the detector of the GuardDuty member account.
260
257
  #
261
258
  # @option params [required, String] :master_id
262
259
  # The account ID of the master GuardDuty account whose invitation
263
260
  # you're accepting.
264
261
  #
262
+ # @option params [required, String] :invitation_id
263
+ # This value is used to validate the master account to the member
264
+ # account.
265
+ #
265
266
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
266
267
  #
267
268
  # @example Request syntax with placeholder values
268
269
  #
269
270
  # resp = client.accept_invitation({
270
- # detector_id: "__string", # required
271
- # invitation_id: "InvitationId", # required
272
- # master_id: "MasterId", # required
271
+ # detector_id: "DetectorId", # required
272
+ # master_id: "String", # required
273
+ # invitation_id: "String", # required
273
274
  # })
274
275
  #
275
276
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/AcceptInvitation AWS API Documentation
@@ -285,6 +286,8 @@ module Aws::GuardDuty
285
286
  # IDs.
286
287
  #
287
288
  # @option params [required, String] :detector_id
289
+ # The ID of the detector that specifies the GuardDuty service whose
290
+ # findings you want to archive.
288
291
  #
289
292
  # @option params [required, Array<String>] :finding_ids
290
293
  # IDs of the findings that you want to archive.
@@ -294,7 +297,7 @@ module Aws::GuardDuty
294
297
  # @example Request syntax with placeholder values
295
298
  #
296
299
  # resp = client.archive_findings({
297
- # detector_id: "__string", # required
300
+ # detector_id: "DetectorId", # required
298
301
  # finding_ids: ["FindingId"], # required
299
302
  # })
300
303
  #
@@ -311,13 +314,15 @@ module Aws::GuardDuty
311
314
  # that represents the GuardDuty service. A detector must be created in
312
315
  # order for GuardDuty to become operational.
313
316
  #
314
- # @option params [String] :client_token
315
- # The idempotency token for the create request.**A suitable default value is auto-generated.** You should normally
316
- # not need to pass this option.**
317
- #
318
317
  # @option params [required, Boolean] :enable
319
318
  # A boolean value that specifies whether the detector is to be enabled.
320
319
  #
320
+ # @option params [String] :client_token
321
+ # The idempotency token for the create request.
322
+ #
323
+ # **A suitable default value is auto-generated.** You should normally
324
+ # not need to pass this option.**
325
+ #
321
326
  # @option params [String] :finding_publishing_frequency
322
327
  # A enum value that specifies how frequently customer got Finding
323
328
  # updates published.
@@ -329,8 +334,8 @@ module Aws::GuardDuty
329
334
  # @example Request syntax with placeholder values
330
335
  #
331
336
  # resp = client.create_detector({
332
- # client_token: "__stringMin0Max64",
333
337
  # enable: false, # required
338
+ # client_token: "ClientToken",
334
339
  # finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS
335
340
  # })
336
341
  #
@@ -349,30 +354,34 @@ module Aws::GuardDuty
349
354
 
350
355
  # Creates a filter using the specified finding criteria.
351
356
  #
352
- # @option params [String] :action
353
- # Specifies the action that is to be applied to the findings that match
354
- # the filter.
357
+ # @option params [required, String] :detector_id
358
+ # The unique ID of the detector of the GuardDuty account for which you
359
+ # want to create a filter.
355
360
  #
356
- # @option params [String] :client_token
357
- # The idempotency token for the create request.**A suitable default value is auto-generated.** You should normally
358
- # not need to pass this option.**
361
+ # @option params [required, String] :name
362
+ # The name of the filter.
359
363
  #
360
364
  # @option params [String] :description
361
365
  # The description of the filter.
362
366
  #
363
- # @option params [required, String] :detector_id
367
+ # @option params [String] :action
368
+ # Specifies the action that is to be applied to the findings that match
369
+ # the filter.
370
+ #
371
+ # @option params [Integer] :rank
372
+ # Specifies the position of the filter in the list of current filters.
373
+ # Also specifies the order in which this filter is applied to the
374
+ # findings.
364
375
  #
365
376
  # @option params [required, Types::FindingCriteria] :finding_criteria
366
377
  # Represents the criteria to be used in the filter for querying
367
378
  # findings.
368
379
  #
369
- # @option params [required, String] :name
370
- # The name of the filter.
380
+ # @option params [String] :client_token
381
+ # The idempotency token for the create request.
371
382
  #
372
- # @option params [Integer] :rank
373
- # Specifies the position of the filter in the list of current filters.
374
- # Also specifies the order in which this filter is applied to the
375
- # findings.
383
+ # **A suitable default value is auto-generated.** You should normally
384
+ # not need to pass this option.**
376
385
  #
377
386
  # @return [Types::CreateFilterResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
378
387
  #
@@ -381,24 +390,30 @@ module Aws::GuardDuty
381
390
  # @example Request syntax with placeholder values
382
391
  #
383
392
  # resp = client.create_filter({
384
- # action: "NOOP", # accepts NOOP, ARCHIVE
385
- # client_token: "__stringMin0Max64",
393
+ # detector_id: "DetectorId", # required
394
+ # name: "FilterName", # required
386
395
  # description: "FilterDescription",
387
- # detector_id: "__string", # required
396
+ # action: "NOOP", # accepts NOOP, ARCHIVE
397
+ # rank: 1,
388
398
  # finding_criteria: { # required
389
399
  # criterion: {
390
- # "__string" => {
391
- # eq: ["__string"],
400
+ # "String" => {
401
+ # eq: ["String"],
402
+ # neq: ["String"],
392
403
  # gt: 1,
393
404
  # gte: 1,
394
405
  # lt: 1,
395
406
  # lte: 1,
396
- # neq: ["__string"],
407
+ # equals: ["String"],
408
+ # not_equals: ["String"],
409
+ # greater_than: 1,
410
+ # greater_than_or_equal: 1,
411
+ # less_than: 1,
412
+ # less_than_or_equal: 1,
397
413
  # },
398
414
  # },
399
415
  # },
400
- # name: "FilterName", # required
401
- # rank: 1,
416
+ # client_token: "ClientToken",
402
417
  # })
403
418
  #
404
419
  # @example Response structure
@@ -418,15 +433,14 @@ module Aws::GuardDuty
418
433
  # whitelisted for secure communication with AWS infrastructure and
419
434
  # applications.
420
435
  #
421
- # @option params [required, Boolean] :activate
422
- # A boolean value that indicates whether GuardDuty is to start using the
423
- # uploaded IPSet.
424
- #
425
- # @option params [String] :client_token
426
- # The idempotency token for the create request.**A suitable default value is auto-generated.** You should normally
427
- # not need to pass this option.**
428
- #
429
436
  # @option params [required, String] :detector_id
437
+ # The unique ID of the detector of the GuardDuty account for which you
438
+ # want to create an IPSet.
439
+ #
440
+ # @option params [required, String] :name
441
+ # The user friendly name to identify the IPSet. This name is displayed
442
+ # in all findings that are triggered by activity that involves IP
443
+ # addresses included in this IPSet.
430
444
  #
431
445
  # @option params [required, String] :format
432
446
  # The format of the file that contains the IPSet.
@@ -435,10 +449,15 @@ module Aws::GuardDuty
435
449
  # The URI of the file that contains the IPSet. For example
436
450
  # (https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key)
437
451
  #
438
- # @option params [required, String] :name
439
- # The user friendly name to identify the IPSet. This name is displayed
440
- # in all findings that are triggered by activity that involves IP
441
- # addresses included in this IPSet.
452
+ # @option params [required, Boolean] :activate
453
+ # A boolean value that indicates whether GuardDuty is to start using the
454
+ # uploaded IPSet.
455
+ #
456
+ # @option params [String] :client_token
457
+ # The idempotency token for the create request.
458
+ #
459
+ # **A suitable default value is auto-generated.** You should normally
460
+ # not need to pass this option.**
442
461
  #
443
462
  # @return [Types::CreateIPSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
444
463
  #
@@ -447,12 +466,12 @@ module Aws::GuardDuty
447
466
  # @example Request syntax with placeholder values
448
467
  #
449
468
  # resp = client.create_ip_set({
450
- # activate: false, # required
451
- # client_token: "__stringMin0Max64",
452
- # detector_id: "__string", # required
469
+ # detector_id: "DetectorId", # required
470
+ # name: "Name", # required
453
471
  # format: "TXT", # required, accepts TXT, STIX, OTX_CSV, ALIEN_VAULT, PROOF_POINT, FIRE_EYE
454
472
  # location: "Location", # required
455
- # name: "Name", # required
473
+ # activate: false, # required
474
+ # client_token: "ClientToken",
456
475
  # })
457
476
  #
458
477
  # @example Response structure
@@ -472,12 +491,14 @@ module Aws::GuardDuty
472
491
  # list of AWS account IDs. The current AWS account can then invite these
473
492
  # members to manage GuardDuty in their accounts.
474
493
  #
494
+ # @option params [required, String] :detector_id
495
+ # The unique ID of the detector of the GuardDuty account with which you
496
+ # want to associate member accounts.
497
+ #
475
498
  # @option params [required, Array<Types::AccountDetail>] :account_details
476
499
  # A list of account ID and email address pairs of the accounts that you
477
500
  # want to associate with the master GuardDuty account.
478
501
  #
479
- # @option params [required, String] :detector_id
480
- #
481
502
  # @return [Types::CreateMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
482
503
  #
483
504
  # * {Types::CreateMembersResponse#unprocessed_accounts #unprocessed_accounts} => Array&lt;Types::UnprocessedAccount&gt;
@@ -485,13 +506,13 @@ module Aws::GuardDuty
485
506
  # @example Request syntax with placeholder values
486
507
  #
487
508
  # resp = client.create_members({
509
+ # detector_id: "DetectorId", # required
488
510
  # account_details: [ # required
489
511
  # {
490
512
  # account_id: "AccountId", # required
491
513
  # email: "Email", # required
492
514
  # },
493
515
  # ],
494
- # detector_id: "__string", # required
495
516
  # })
496
517
  #
497
518
  # @example Response structure
@@ -514,6 +535,7 @@ module Aws::GuardDuty
514
535
  # example findings of all supported finding types.
515
536
  #
516
537
  # @option params [required, String] :detector_id
538
+ # The ID of the detector to create sample findings for.
517
539
  #
518
540
  # @option params [Array<String>] :finding_types
519
541
  # Types of sample findings that you want to generate.
@@ -523,7 +545,7 @@ module Aws::GuardDuty
523
545
  # @example Request syntax with placeholder values
524
546
  #
525
547
  # resp = client.create_sample_findings({
526
- # detector_id: "__string", # required
548
+ # detector_id: "DetectorId", # required
527
549
  # finding_types: ["FindingType"],
528
550
  # })
529
551
  #
@@ -540,15 +562,14 @@ module Aws::GuardDuty
540
562
  # malicious IP addresses. GuardDuty generates findings based on
541
563
  # ThreatIntelSets.
542
564
  #
543
- # @option params [required, Boolean] :activate
544
- # A boolean value that indicates whether GuardDuty is to start using the
545
- # uploaded ThreatIntelSet.
546
- #
547
- # @option params [String] :client_token
548
- # The idempotency token for the create request.**A suitable default value is auto-generated.** You should normally
549
- # not need to pass this option.**
550
- #
551
565
  # @option params [required, String] :detector_id
566
+ # The unique ID of the detector of the GuardDuty account for which you
567
+ # want to create a threatIntelSet.
568
+ #
569
+ # @option params [required, String] :name
570
+ # A user-friendly ThreatIntelSet name that is displayed in all finding
571
+ # generated by activity that involves IP addresses included in this
572
+ # ThreatIntelSet.
552
573
  #
553
574
  # @option params [required, String] :format
554
575
  # The format of the file that contains the ThreatIntelSet.
@@ -557,10 +578,15 @@ module Aws::GuardDuty
557
578
  # The URI of the file that contains the ThreatIntelSet. For example
558
579
  # (https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key).
559
580
  #
560
- # @option params [required, String] :name
561
- # A user-friendly ThreatIntelSet name that is displayed in all finding
562
- # generated by activity that involves IP addresses included in this
563
- # ThreatIntelSet.
581
+ # @option params [required, Boolean] :activate
582
+ # A boolean value that indicates whether GuardDuty is to start using the
583
+ # uploaded ThreatIntelSet.
584
+ #
585
+ # @option params [String] :client_token
586
+ # The idempotency token for the create request.
587
+ #
588
+ # **A suitable default value is auto-generated.** You should normally
589
+ # not need to pass this option.**
564
590
  #
565
591
  # @return [Types::CreateThreatIntelSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
566
592
  #
@@ -569,12 +595,12 @@ module Aws::GuardDuty
569
595
  # @example Request syntax with placeholder values
570
596
  #
571
597
  # resp = client.create_threat_intel_set({
572
- # activate: false, # required
573
- # client_token: "__stringMin0Max64",
574
- # detector_id: "__string", # required
598
+ # detector_id: "DetectorId", # required
599
+ # name: "Name", # required
575
600
  # format: "TXT", # required, accepts TXT, STIX, OTX_CSV, ALIEN_VAULT, PROOF_POINT, FIRE_EYE
576
601
  # location: "Location", # required
577
- # name: "Name", # required
602
+ # activate: false, # required
603
+ # client_token: "ClientToken",
578
604
  # })
579
605
  #
580
606
  # @example Response structure
@@ -604,7 +630,7 @@ module Aws::GuardDuty
604
630
  # @example Request syntax with placeholder values
605
631
  #
606
632
  # resp = client.decline_invitations({
607
- # account_ids: ["__string"], # required
633
+ # account_ids: ["AccountId"], # required
608
634
  # })
609
635
  #
610
636
  # @example Response structure
@@ -625,13 +651,14 @@ module Aws::GuardDuty
625
651
  # Deletes a Amazon GuardDuty detector specified by the detector ID.
626
652
  #
627
653
  # @option params [required, String] :detector_id
654
+ # The unique ID of the detector that you want to delete.
628
655
  #
629
656
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
630
657
  #
631
658
  # @example Request syntax with placeholder values
632
659
  #
633
660
  # resp = client.delete_detector({
634
- # detector_id: "__string", # required
661
+ # detector_id: "DetectorId", # required
635
662
  # })
636
663
  #
637
664
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeleteDetector AWS API Documentation
@@ -646,16 +673,18 @@ module Aws::GuardDuty
646
673
  # Deletes the filter specified by the filter name.
647
674
  #
648
675
  # @option params [required, String] :detector_id
676
+ # The unique ID of the detector the filter is associated with.
649
677
  #
650
678
  # @option params [required, String] :filter_name
679
+ # The name of the filter you want to delete.
651
680
  #
652
681
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
653
682
  #
654
683
  # @example Request syntax with placeholder values
655
684
  #
656
685
  # resp = client.delete_filter({
657
- # detector_id: "__string", # required
658
- # filter_name: "__string", # required
686
+ # detector_id: "DetectorId", # required
687
+ # filter_name: "String", # required
659
688
  # })
660
689
  #
661
690
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeleteFilter AWS API Documentation
@@ -670,16 +699,18 @@ module Aws::GuardDuty
670
699
  # Deletes the IPSet specified by the IPSet ID.
671
700
  #
672
701
  # @option params [required, String] :detector_id
702
+ # The unique ID of the detector the ipSet is associated with.
673
703
  #
674
704
  # @option params [required, String] :ip_set_id
705
+ # The unique ID of the ipSet you want to delete.
675
706
  #
676
707
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
677
708
  #
678
709
  # @example Request syntax with placeholder values
679
710
  #
680
711
  # resp = client.delete_ip_set({
681
- # detector_id: "__string", # required
682
- # ip_set_id: "__string", # required
712
+ # detector_id: "DetectorId", # required
713
+ # ip_set_id: "String", # required
683
714
  # })
684
715
  #
685
716
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeleteIPSet AWS API Documentation
@@ -705,7 +736,7 @@ module Aws::GuardDuty
705
736
  # @example Request syntax with placeholder values
706
737
  #
707
738
  # resp = client.delete_invitations({
708
- # account_ids: ["__string"], # required
739
+ # account_ids: ["AccountId"], # required
709
740
  # })
710
741
  #
711
742
  # @example Response structure
@@ -726,12 +757,14 @@ module Aws::GuardDuty
726
757
  # Deletes GuardDuty member accounts (to the current GuardDuty master
727
758
  # account) specified by the account IDs.
728
759
  #
760
+ # @option params [required, String] :detector_id
761
+ # The unique ID of the detector of the GuardDuty account whose members
762
+ # you want to delete.
763
+ #
729
764
  # @option params [required, Array<String>] :account_ids
730
765
  # A list of account IDs of the GuardDuty member accounts that you want
731
766
  # to delete.
732
767
  #
733
- # @option params [required, String] :detector_id
734
- #
735
768
  # @return [Types::DeleteMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
736
769
  #
737
770
  # * {Types::DeleteMembersResponse#unprocessed_accounts #unprocessed_accounts} => Array&lt;Types::UnprocessedAccount&gt;
@@ -739,8 +772,8 @@ module Aws::GuardDuty
739
772
  # @example Request syntax with placeholder values
740
773
  #
741
774
  # resp = client.delete_members({
742
- # account_ids: ["__string"], # required
743
- # detector_id: "__string", # required
775
+ # detector_id: "DetectorId", # required
776
+ # account_ids: ["AccountId"], # required
744
777
  # })
745
778
  #
746
779
  # @example Response structure
@@ -761,16 +794,18 @@ module Aws::GuardDuty
761
794
  # Deletes ThreatIntelSet specified by the ThreatIntelSet ID.
762
795
  #
763
796
  # @option params [required, String] :detector_id
797
+ # The unique ID of the detector the threatIntelSet is associated with.
764
798
  #
765
799
  # @option params [required, String] :threat_intel_set_id
800
+ # The unique ID of the threatIntelSet you want to delete.
766
801
  #
767
802
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
768
803
  #
769
804
  # @example Request syntax with placeholder values
770
805
  #
771
806
  # resp = client.delete_threat_intel_set({
772
- # detector_id: "__string", # required
773
- # threat_intel_set_id: "__string", # required
807
+ # detector_id: "DetectorId", # required
808
+ # threat_intel_set_id: "String", # required
774
809
  # })
775
810
  #
776
811
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DeleteThreatIntelSet AWS API Documentation
@@ -786,13 +821,14 @@ module Aws::GuardDuty
786
821
  # account.
787
822
  #
788
823
  # @option params [required, String] :detector_id
824
+ # The unique ID of the detector of the GuardDuty member account.
789
825
  #
790
826
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
791
827
  #
792
828
  # @example Request syntax with placeholder values
793
829
  #
794
830
  # resp = client.disassociate_from_master_account({
795
- # detector_id: "__string", # required
831
+ # detector_id: "DetectorId", # required
796
832
  # })
797
833
  #
798
834
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DisassociateFromMasterAccount AWS API Documentation
@@ -807,12 +843,14 @@ module Aws::GuardDuty
807
843
  # Disassociates GuardDuty member accounts (to the current GuardDuty
808
844
  # master account) specified by the account IDs.
809
845
  #
846
+ # @option params [required, String] :detector_id
847
+ # The unique ID of the detector of the GuardDuty account whose members
848
+ # you want to disassociate from master.
849
+ #
810
850
  # @option params [required, Array<String>] :account_ids
811
851
  # A list of account IDs of the GuardDuty member accounts that you want
812
852
  # to disassociate from master.
813
853
  #
814
- # @option params [required, String] :detector_id
815
- #
816
854
  # @return [Types::DisassociateMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
817
855
  #
818
856
  # * {Types::DisassociateMembersResponse#unprocessed_accounts #unprocessed_accounts} => Array&lt;Types::UnprocessedAccount&gt;
@@ -820,8 +858,8 @@ module Aws::GuardDuty
820
858
  # @example Request syntax with placeholder values
821
859
  #
822
860
  # resp = client.disassociate_members({
823
- # account_ids: ["__string"], # required
824
- # detector_id: "__string", # required
861
+ # detector_id: "DetectorId", # required
862
+ # account_ids: ["AccountId"], # required
825
863
  # })
826
864
  #
827
865
  # @example Response structure
@@ -842,6 +880,7 @@ module Aws::GuardDuty
842
880
  # Retrieves an Amazon GuardDuty detector specified by the detectorId.
843
881
  #
844
882
  # @option params [required, String] :detector_id
883
+ # The unique ID of the detector that you want to get.
845
884
  #
846
885
  # @return [Types::GetDetectorResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
847
886
  #
@@ -854,7 +893,7 @@ module Aws::GuardDuty
854
893
  # @example Request syntax with placeholder values
855
894
  #
856
895
  # resp = client.get_detector({
857
- # detector_id: "__string", # required
896
+ # detector_id: "DetectorId", # required
858
897
  # })
859
898
  #
860
899
  # @example Response structure
@@ -877,39 +916,49 @@ module Aws::GuardDuty
877
916
  # Returns the details of the filter specified by the filter name.
878
917
  #
879
918
  # @option params [required, String] :detector_id
919
+ # The unique ID of the detector the filter is associated with.
880
920
  #
881
921
  # @option params [required, String] :filter_name
922
+ # The name of the filter you want to get.
882
923
  #
883
924
  # @return [Types::GetFilterResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
884
925
  #
885
- # * {Types::GetFilterResponse#action #action} => String
886
- # * {Types::GetFilterResponse#description #description} => String
887
- # * {Types::GetFilterResponse#finding_criteria #finding_criteria} => Types::FindingCriteria
888
926
  # * {Types::GetFilterResponse#name #name} => String
927
+ # * {Types::GetFilterResponse#description #description} => String
928
+ # * {Types::GetFilterResponse#action #action} => String
889
929
  # * {Types::GetFilterResponse#rank #rank} => Integer
930
+ # * {Types::GetFilterResponse#finding_criteria #finding_criteria} => Types::FindingCriteria
890
931
  #
891
932
  # @example Request syntax with placeholder values
892
933
  #
893
934
  # resp = client.get_filter({
894
- # detector_id: "__string", # required
895
- # filter_name: "__string", # required
935
+ # detector_id: "DetectorId", # required
936
+ # filter_name: "String", # required
896
937
  # })
897
938
  #
898
939
  # @example Response structure
899
940
  #
900
- # resp.action #=> String, one of "NOOP", "ARCHIVE"
901
- # resp.description #=> String
902
- # resp.finding_criteria.criterion #=> Hash
903
- # resp.finding_criteria.criterion["__string"].eq #=> Array
904
- # resp.finding_criteria.criterion["__string"].eq[0] #=> String
905
- # resp.finding_criteria.criterion["__string"].gt #=> Integer
906
- # resp.finding_criteria.criterion["__string"].gte #=> Integer
907
- # resp.finding_criteria.criterion["__string"].lt #=> Integer
908
- # resp.finding_criteria.criterion["__string"].lte #=> Integer
909
- # resp.finding_criteria.criterion["__string"].neq #=> Array
910
- # resp.finding_criteria.criterion["__string"].neq[0] #=> String
911
941
  # resp.name #=> String
942
+ # resp.description #=> String
943
+ # resp.action #=> String, one of "NOOP", "ARCHIVE"
912
944
  # resp.rank #=> Integer
945
+ # resp.finding_criteria.criterion #=> Hash
946
+ # resp.finding_criteria.criterion["String"].eq #=> Array
947
+ # resp.finding_criteria.criterion["String"].eq[0] #=> String
948
+ # resp.finding_criteria.criterion["String"].neq #=> Array
949
+ # resp.finding_criteria.criterion["String"].neq[0] #=> String
950
+ # resp.finding_criteria.criterion["String"].gt #=> Integer
951
+ # resp.finding_criteria.criterion["String"].gte #=> Integer
952
+ # resp.finding_criteria.criterion["String"].lt #=> Integer
953
+ # resp.finding_criteria.criterion["String"].lte #=> Integer
954
+ # resp.finding_criteria.criterion["String"].equals #=> Array
955
+ # resp.finding_criteria.criterion["String"].equals[0] #=> String
956
+ # resp.finding_criteria.criterion["String"].not_equals #=> Array
957
+ # resp.finding_criteria.criterion["String"].not_equals[0] #=> String
958
+ # resp.finding_criteria.criterion["String"].greater_than #=> Integer
959
+ # resp.finding_criteria.criterion["String"].greater_than_or_equal #=> Integer
960
+ # resp.finding_criteria.criterion["String"].less_than #=> Integer
961
+ # resp.finding_criteria.criterion["String"].less_than_or_equal #=> Integer
913
962
  #
914
963
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetFilter AWS API Documentation
915
964
  #
@@ -923,6 +972,8 @@ module Aws::GuardDuty
923
972
  # Describes Amazon GuardDuty findings specified by finding IDs.
924
973
  #
925
974
  # @option params [required, String] :detector_id
975
+ # The ID of the detector that specifies the GuardDuty service whose
976
+ # findings you want to retrieve.
926
977
  #
927
978
  # @option params [required, Array<String>] :finding_ids
928
979
  # IDs of the findings that you want to retrieve.
@@ -937,10 +988,10 @@ module Aws::GuardDuty
937
988
  # @example Request syntax with placeholder values
938
989
  #
939
990
  # resp = client.get_findings({
940
- # detector_id: "__string", # required
991
+ # detector_id: "DetectorId", # required
941
992
  # finding_ids: ["FindingId"], # required
942
993
  # sort_criteria: {
943
- # attribute_name: "__string",
994
+ # attribute_name: "String",
944
995
  # order_by: "ASC", # accepts ASC, DESC
945
996
  # },
946
997
  # })
@@ -997,6 +1048,7 @@ module Aws::GuardDuty
997
1048
  # resp.findings[0].service.action.action_type #=> String
998
1049
  # resp.findings[0].service.action.aws_api_call_action.api #=> String
999
1050
  # resp.findings[0].service.action.aws_api_call_action.caller_type #=> String
1051
+ # resp.findings[0].service.action.aws_api_call_action.domain_details.domain #=> String
1000
1052
  # resp.findings[0].service.action.aws_api_call_action.remote_ip_details.city.city_name #=> String
1001
1053
  # resp.findings[0].service.action.aws_api_call_action.remote_ip_details.country.country_code #=> String
1002
1054
  # resp.findings[0].service.action.aws_api_call_action.remote_ip_details.country.country_name #=> String
@@ -1066,13 +1118,15 @@ module Aws::GuardDuty
1066
1118
  # detector ID.
1067
1119
  #
1068
1120
  # @option params [required, String] :detector_id
1069
- #
1070
- # @option params [Types::FindingCriteria] :finding_criteria
1071
- # Represents the criteria used for querying findings.
1121
+ # The ID of the detector that specifies the GuardDuty service whose
1122
+ # findings' statistics you want to retrieve.
1072
1123
  #
1073
1124
  # @option params [required, Array<String>] :finding_statistic_types
1074
1125
  # Types of finding statistics to retrieve.
1075
1126
  #
1127
+ # @option params [Types::FindingCriteria] :finding_criteria
1128
+ # Represents the criteria used for querying findings.
1129
+ #
1076
1130
  # @return [Types::GetFindingsStatisticsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1077
1131
  #
1078
1132
  # * {Types::GetFindingsStatisticsResponse#finding_statistics #finding_statistics} => Types::FindingStatistics
@@ -1080,26 +1134,32 @@ module Aws::GuardDuty
1080
1134
  # @example Request syntax with placeholder values
1081
1135
  #
1082
1136
  # resp = client.get_findings_statistics({
1083
- # detector_id: "__string", # required
1137
+ # detector_id: "DetectorId", # required
1138
+ # finding_statistic_types: ["COUNT_BY_SEVERITY"], # required, accepts COUNT_BY_SEVERITY
1084
1139
  # finding_criteria: {
1085
1140
  # criterion: {
1086
- # "__string" => {
1087
- # eq: ["__string"],
1141
+ # "String" => {
1142
+ # eq: ["String"],
1143
+ # neq: ["String"],
1088
1144
  # gt: 1,
1089
1145
  # gte: 1,
1090
1146
  # lt: 1,
1091
1147
  # lte: 1,
1092
- # neq: ["__string"],
1148
+ # equals: ["String"],
1149
+ # not_equals: ["String"],
1150
+ # greater_than: 1,
1151
+ # greater_than_or_equal: 1,
1152
+ # less_than: 1,
1153
+ # less_than_or_equal: 1,
1093
1154
  # },
1094
1155
  # },
1095
1156
  # },
1096
- # finding_statistic_types: ["COUNT_BY_SEVERITY"], # required, accepts COUNT_BY_SEVERITY
1097
1157
  # })
1098
1158
  #
1099
1159
  # @example Response structure
1100
1160
  #
1101
1161
  # resp.finding_statistics.count_by_severity #=> Hash
1102
- # resp.finding_statistics.count_by_severity["__string"] #=> Integer
1162
+ # resp.finding_statistics.count_by_severity["String"] #=> Integer
1103
1163
  #
1104
1164
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetFindingsStatistics AWS API Documentation
1105
1165
  #
@@ -1113,28 +1173,30 @@ module Aws::GuardDuty
1113
1173
  # Retrieves the IPSet specified by the IPSet ID.
1114
1174
  #
1115
1175
  # @option params [required, String] :detector_id
1176
+ # The unique ID of the detector the ipSet is associated with.
1116
1177
  #
1117
1178
  # @option params [required, String] :ip_set_id
1179
+ # The unique ID of the ipSet you want to get.
1118
1180
  #
1119
1181
  # @return [Types::GetIPSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1120
1182
  #
1183
+ # * {Types::GetIPSetResponse#name #name} => String
1121
1184
  # * {Types::GetIPSetResponse#format #format} => String
1122
1185
  # * {Types::GetIPSetResponse#location #location} => String
1123
- # * {Types::GetIPSetResponse#name #name} => String
1124
1186
  # * {Types::GetIPSetResponse#status #status} => String
1125
1187
  #
1126
1188
  # @example Request syntax with placeholder values
1127
1189
  #
1128
1190
  # resp = client.get_ip_set({
1129
- # detector_id: "__string", # required
1130
- # ip_set_id: "__string", # required
1191
+ # detector_id: "DetectorId", # required
1192
+ # ip_set_id: "String", # required
1131
1193
  # })
1132
1194
  #
1133
1195
  # @example Response structure
1134
1196
  #
1197
+ # resp.name #=> String
1135
1198
  # resp.format #=> String, one of "TXT", "STIX", "OTX_CSV", "ALIEN_VAULT", "PROOF_POINT", "FIRE_EYE"
1136
1199
  # resp.location #=> String
1137
- # resp.name #=> String
1138
1200
  # resp.status #=> String, one of "INACTIVE", "ACTIVATING", "ACTIVE", "DEACTIVATING", "ERROR", "DELETE_PENDING", "DELETED"
1139
1201
  #
1140
1202
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetIPSet AWS API Documentation
@@ -1171,6 +1233,7 @@ module Aws::GuardDuty
1171
1233
  # GuardDuty member account.
1172
1234
  #
1173
1235
  # @option params [required, String] :detector_id
1236
+ # The unique ID of the detector of the GuardDuty member account.
1174
1237
  #
1175
1238
  # @return [Types::GetMasterAccountResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1176
1239
  #
@@ -1179,15 +1242,15 @@ module Aws::GuardDuty
1179
1242
  # @example Request syntax with placeholder values
1180
1243
  #
1181
1244
  # resp = client.get_master_account({
1182
- # detector_id: "__string", # required
1245
+ # detector_id: "DetectorId", # required
1183
1246
  # })
1184
1247
  #
1185
1248
  # @example Response structure
1186
1249
  #
1187
1250
  # resp.master.account_id #=> String
1188
1251
  # resp.master.invitation_id #=> String
1189
- # resp.master.invited_at #=> String
1190
1252
  # resp.master.relationship_status #=> String
1253
+ # resp.master.invited_at #=> String
1191
1254
  #
1192
1255
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetMasterAccount AWS API Documentation
1193
1256
  #
@@ -1201,12 +1264,14 @@ module Aws::GuardDuty
1201
1264
  # Retrieves GuardDuty member accounts (to the current GuardDuty master
1202
1265
  # account) specified by the account IDs.
1203
1266
  #
1267
+ # @option params [required, String] :detector_id
1268
+ # The unique ID of the detector of the GuardDuty account whose members
1269
+ # you want to retrieve.
1270
+ #
1204
1271
  # @option params [required, Array<String>] :account_ids
1205
1272
  # A list of account IDs of the GuardDuty member accounts that you want
1206
1273
  # to describe.
1207
1274
  #
1208
- # @option params [required, String] :detector_id
1209
- #
1210
1275
  # @return [Types::GetMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1211
1276
  #
1212
1277
  # * {Types::GetMembersResponse#members #members} => Array&lt;Types::Member&gt;
@@ -1215,8 +1280,8 @@ module Aws::GuardDuty
1215
1280
  # @example Request syntax with placeholder values
1216
1281
  #
1217
1282
  # resp = client.get_members({
1218
- # account_ids: ["__string"], # required
1219
- # detector_id: "__string", # required
1283
+ # detector_id: "DetectorId", # required
1284
+ # account_ids: ["AccountId"], # required
1220
1285
  # })
1221
1286
  #
1222
1287
  # @example Response structure
@@ -1224,10 +1289,10 @@ module Aws::GuardDuty
1224
1289
  # resp.members #=> Array
1225
1290
  # resp.members[0].account_id #=> String
1226
1291
  # resp.members[0].detector_id #=> String
1227
- # resp.members[0].email #=> String
1228
- # resp.members[0].invited_at #=> String
1229
1292
  # resp.members[0].master_id #=> String
1293
+ # resp.members[0].email #=> String
1230
1294
  # resp.members[0].relationship_status #=> String
1295
+ # resp.members[0].invited_at #=> String
1231
1296
  # resp.members[0].updated_at #=> String
1232
1297
  # resp.unprocessed_accounts #=> Array
1233
1298
  # resp.unprocessed_accounts[0].account_id #=> String
@@ -1246,28 +1311,30 @@ module Aws::GuardDuty
1246
1311
  # ID.
1247
1312
  #
1248
1313
  # @option params [required, String] :detector_id
1314
+ # The unique ID of the detector the threatIntelSet is associated with.
1249
1315
  #
1250
1316
  # @option params [required, String] :threat_intel_set_id
1317
+ # The unique ID of the threatIntelSet you want to get.
1251
1318
  #
1252
1319
  # @return [Types::GetThreatIntelSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1253
1320
  #
1321
+ # * {Types::GetThreatIntelSetResponse#name #name} => String
1254
1322
  # * {Types::GetThreatIntelSetResponse#format #format} => String
1255
1323
  # * {Types::GetThreatIntelSetResponse#location #location} => String
1256
- # * {Types::GetThreatIntelSetResponse#name #name} => String
1257
1324
  # * {Types::GetThreatIntelSetResponse#status #status} => String
1258
1325
  #
1259
1326
  # @example Request syntax with placeholder values
1260
1327
  #
1261
1328
  # resp = client.get_threat_intel_set({
1262
- # detector_id: "__string", # required
1263
- # threat_intel_set_id: "__string", # required
1329
+ # detector_id: "DetectorId", # required
1330
+ # threat_intel_set_id: "String", # required
1264
1331
  # })
1265
1332
  #
1266
1333
  # @example Response structure
1267
1334
  #
1335
+ # resp.name #=> String
1268
1336
  # resp.format #=> String, one of "TXT", "STIX", "OTX_CSV", "ALIEN_VAULT", "PROOF_POINT", "FIRE_EYE"
1269
1337
  # resp.location #=> String
1270
- # resp.name #=> String
1271
1338
  # resp.status #=> String, one of "INACTIVE", "ACTIVATING", "ACTIVE", "DEACTIVATING", "ERROR", "DELETE_PENDING", "DELETED"
1272
1339
  #
1273
1340
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetThreatIntelSet AWS API Documentation
@@ -1284,12 +1351,14 @@ module Aws::GuardDuty
1284
1351
  # AWS account to view and manage these accounts' GuardDuty findings on
1285
1352
  # their behalf as the master account.
1286
1353
  #
1354
+ # @option params [required, String] :detector_id
1355
+ # The unique ID of the detector of the GuardDuty account with which you
1356
+ # want to invite members.
1357
+ #
1287
1358
  # @option params [required, Array<String>] :account_ids
1288
1359
  # A list of account IDs of the accounts that you want to invite to
1289
1360
  # GuardDuty as members.
1290
1361
  #
1291
- # @option params [required, String] :detector_id
1292
- #
1293
1362
  # @option params [Boolean] :disable_email_notification
1294
1363
  # A boolean value that specifies whether you want to disable email
1295
1364
  # notification to the accounts that you’re inviting to GuardDuty as
@@ -1306,10 +1375,10 @@ module Aws::GuardDuty
1306
1375
  # @example Request syntax with placeholder values
1307
1376
  #
1308
1377
  # resp = client.invite_members({
1309
- # account_ids: ["__string"], # required
1310
- # detector_id: "__string", # required
1378
+ # detector_id: "DetectorId", # required
1379
+ # account_ids: ["AccountId"], # required
1311
1380
  # disable_email_notification: false,
1312
- # message: "Message",
1381
+ # message: "String",
1313
1382
  # })
1314
1383
  #
1315
1384
  # @example Response structure
@@ -1331,10 +1400,16 @@ module Aws::GuardDuty
1331
1400
  # resources.
1332
1401
  #
1333
1402
  # @option params [Integer] :max_results
1334
- # You can use this parameter to indicate the maximum number of items
1335
- # that you want in the response.
1403
+ # You can use this parameter to indicate the maximum number of items you
1404
+ # want in the response. The default value is 50. The maximum value is
1405
+ # 50.
1336
1406
  #
1337
1407
  # @option params [String] :next_token
1408
+ # You can use this parameter when paginating results. Set the value of
1409
+ # this parameter to null on your first call to the list action. For
1410
+ # subsequent calls to the action fill nextToken in the request with the
1411
+ # value of NextToken from the previous response to continue listing
1412
+ # data.
1338
1413
  #
1339
1414
  # @return [Types::ListDetectorsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1340
1415
  #
@@ -1345,7 +1420,7 @@ module Aws::GuardDuty
1345
1420
  #
1346
1421
  # resp = client.list_detectors({
1347
1422
  # max_results: 1,
1348
- # next_token: "__string",
1423
+ # next_token: "String",
1349
1424
  # })
1350
1425
  #
1351
1426
  # @example Response structure
@@ -1366,12 +1441,19 @@ module Aws::GuardDuty
1366
1441
  # Returns a paginated list of the current filters.
1367
1442
  #
1368
1443
  # @option params [required, String] :detector_id
1444
+ # The unique ID of the detector the filter is associated with.
1369
1445
  #
1370
1446
  # @option params [Integer] :max_results
1371
- # You can use this parameter to indicate the maximum number of items
1372
- # that you want in the response.
1447
+ # You can use this parameter to indicate the maximum number of items you
1448
+ # want in the response. The default value is 50. The maximum value is
1449
+ # 50.
1373
1450
  #
1374
1451
  # @option params [String] :next_token
1452
+ # You can use this parameter when paginating results. Set the value of
1453
+ # this parameter to null on your first call to the list action. For
1454
+ # subsequent calls to the action fill nextToken in the request with the
1455
+ # value of NextToken from the previous response to continue listing
1456
+ # data.
1375
1457
  #
1376
1458
  # @return [Types::ListFiltersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1377
1459
  #
@@ -1381,9 +1463,9 @@ module Aws::GuardDuty
1381
1463
  # @example Request syntax with placeholder values
1382
1464
  #
1383
1465
  # resp = client.list_filters({
1384
- # detector_id: "__string", # required
1466
+ # detector_id: "DetectorId", # required
1385
1467
  # max_results: 1,
1386
- # next_token: "__string",
1468
+ # next_token: "String",
1387
1469
  # })
1388
1470
  #
1389
1471
  # @example Response structure
@@ -1404,10 +1486,15 @@ module Aws::GuardDuty
1404
1486
  # Lists Amazon GuardDuty findings for the specified detector ID.
1405
1487
  #
1406
1488
  # @option params [required, String] :detector_id
1489
+ # The ID of the detector that specifies the GuardDuty service whose
1490
+ # findings you want to list.
1407
1491
  #
1408
1492
  # @option params [Types::FindingCriteria] :finding_criteria
1409
1493
  # Represents the criteria used for querying findings.
1410
1494
  #
1495
+ # @option params [Types::SortCriteria] :sort_criteria
1496
+ # Represents the criteria used for sorting findings.
1497
+ #
1411
1498
  # @option params [Integer] :max_results
1412
1499
  # You can use this parameter to indicate the maximum number of items you
1413
1500
  # want in the response. The default value is 50. The maximum value is
@@ -1415,14 +1502,11 @@ module Aws::GuardDuty
1415
1502
  #
1416
1503
  # @option params [String] :next_token
1417
1504
  # You can use this parameter when paginating results. Set the value of
1418
- # this parameter to null on your first call to the ListFindings action.
1419
- # For subsequent calls to the action fill nextToken in the request with
1420
- # the value of nextToken from the previous response to continue listing
1505
+ # this parameter to null on your first call to the list action. For
1506
+ # subsequent calls to the action fill nextToken in the request with the
1507
+ # value of NextToken from the previous response to continue listing
1421
1508
  # data.
1422
1509
  #
1423
- # @option params [Types::SortCriteria] :sort_criteria
1424
- # Represents the criteria used for sorting findings.
1425
- #
1426
1510
  # @return [Types::ListFindingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1427
1511
  #
1428
1512
  # * {Types::ListFindingsResponse#finding_ids #finding_ids} => Array&lt;String&gt;
@@ -1431,25 +1515,31 @@ module Aws::GuardDuty
1431
1515
  # @example Request syntax with placeholder values
1432
1516
  #
1433
1517
  # resp = client.list_findings({
1434
- # detector_id: "__string", # required
1518
+ # detector_id: "DetectorId", # required
1435
1519
  # finding_criteria: {
1436
1520
  # criterion: {
1437
- # "__string" => {
1438
- # eq: ["__string"],
1521
+ # "String" => {
1522
+ # eq: ["String"],
1523
+ # neq: ["String"],
1439
1524
  # gt: 1,
1440
1525
  # gte: 1,
1441
1526
  # lt: 1,
1442
1527
  # lte: 1,
1443
- # neq: ["__string"],
1528
+ # equals: ["String"],
1529
+ # not_equals: ["String"],
1530
+ # greater_than: 1,
1531
+ # greater_than_or_equal: 1,
1532
+ # less_than: 1,
1533
+ # less_than_or_equal: 1,
1444
1534
  # },
1445
1535
  # },
1446
1536
  # },
1447
- # max_results: 1,
1448
- # next_token: "NextToken",
1449
1537
  # sort_criteria: {
1450
- # attribute_name: "__string",
1538
+ # attribute_name: "String",
1451
1539
  # order_by: "ASC", # accepts ASC, DESC
1452
1540
  # },
1541
+ # max_results: 1,
1542
+ # next_token: "String",
1453
1543
  # })
1454
1544
  #
1455
1545
  # @example Response structure
@@ -1471,12 +1561,19 @@ module Aws::GuardDuty
1471
1561
  # ID.
1472
1562
  #
1473
1563
  # @option params [required, String] :detector_id
1564
+ # The unique ID of the detector the ipSet is associated with.
1474
1565
  #
1475
1566
  # @option params [Integer] :max_results
1476
- # You can use this parameter to indicate the maximum number of items
1477
- # that you want in the response.
1567
+ # You can use this parameter to indicate the maximum number of items you
1568
+ # want in the response. The default value is 50. The maximum value is
1569
+ # 50.
1478
1570
  #
1479
1571
  # @option params [String] :next_token
1572
+ # You can use this parameter when paginating results. Set the value of
1573
+ # this parameter to null on your first call to the list action. For
1574
+ # subsequent calls to the action fill nextToken in the request with the
1575
+ # value of NextToken from the previous response to continue listing
1576
+ # data.
1480
1577
  #
1481
1578
  # @return [Types::ListIPSetsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1482
1579
  #
@@ -1486,9 +1583,9 @@ module Aws::GuardDuty
1486
1583
  # @example Request syntax with placeholder values
1487
1584
  #
1488
1585
  # resp = client.list_ip_sets({
1489
- # detector_id: "__string", # required
1586
+ # detector_id: "DetectorId", # required
1490
1587
  # max_results: 1,
1491
- # next_token: "__string",
1588
+ # next_token: "String",
1492
1589
  # })
1493
1590
  #
1494
1591
  # @example Response structure
@@ -1510,10 +1607,16 @@ module Aws::GuardDuty
1510
1607
  # current AWS account.
1511
1608
  #
1512
1609
  # @option params [Integer] :max_results
1513
- # You can use this parameter to indicate the maximum number of items
1514
- # that you want in the response.
1610
+ # You can use this parameter to indicate the maximum number of items you
1611
+ # want in the response. The default value is 50. The maximum value is
1612
+ # 50.
1515
1613
  #
1516
1614
  # @option params [String] :next_token
1615
+ # You can use this parameter when paginating results. Set the value of
1616
+ # this parameter to null on your first call to the list action. For
1617
+ # subsequent calls to the action fill nextToken in the request with the
1618
+ # value of NextToken from the previous response to continue listing
1619
+ # data.
1517
1620
  #
1518
1621
  # @return [Types::ListInvitationsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1519
1622
  #
@@ -1524,7 +1627,7 @@ module Aws::GuardDuty
1524
1627
  #
1525
1628
  # resp = client.list_invitations({
1526
1629
  # max_results: 1,
1527
- # next_token: "__string",
1630
+ # next_token: "String",
1528
1631
  # })
1529
1632
  #
1530
1633
  # @example Response structure
@@ -1532,8 +1635,8 @@ module Aws::GuardDuty
1532
1635
  # resp.invitations #=> Array
1533
1636
  # resp.invitations[0].account_id #=> String
1534
1637
  # resp.invitations[0].invitation_id #=> String
1535
- # resp.invitations[0].invited_at #=> String
1536
1638
  # resp.invitations[0].relationship_status #=> String
1639
+ # resp.invitations[0].invited_at #=> String
1537
1640
  # resp.next_token #=> String
1538
1641
  #
1539
1642
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ListInvitations AWS API Documentation
@@ -1549,14 +1652,24 @@ module Aws::GuardDuty
1549
1652
  # master account.
1550
1653
  #
1551
1654
  # @option params [required, String] :detector_id
1655
+ # The unique ID of the detector the member is associated with.
1552
1656
  #
1553
1657
  # @option params [Integer] :max_results
1554
- # You can use this parameter to indicate the maximum number of items
1555
- # that you want in the response.
1658
+ # You can use this parameter to indicate the maximum number of items you
1659
+ # want in the response. The default value is 50. The maximum value is
1660
+ # 50.
1556
1661
  #
1557
1662
  # @option params [String] :next_token
1663
+ # You can use this parameter when paginating results. Set the value of
1664
+ # this parameter to null on your first call to the list action. For
1665
+ # subsequent calls to the action fill nextToken in the request with the
1666
+ # value of NextToken from the previous response to continue listing
1667
+ # data.
1558
1668
  #
1559
1669
  # @option params [String] :only_associated
1670
+ # Specifies whether to only return associated members or to return all
1671
+ # members (including members which haven't been invited yet or have
1672
+ # been disassociated).
1560
1673
  #
1561
1674
  # @return [Types::ListMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1562
1675
  #
@@ -1566,10 +1679,10 @@ module Aws::GuardDuty
1566
1679
  # @example Request syntax with placeholder values
1567
1680
  #
1568
1681
  # resp = client.list_members({
1569
- # detector_id: "__string", # required
1682
+ # detector_id: "DetectorId", # required
1570
1683
  # max_results: 1,
1571
- # next_token: "__string",
1572
- # only_associated: "__string",
1684
+ # next_token: "String",
1685
+ # only_associated: "String",
1573
1686
  # })
1574
1687
  #
1575
1688
  # @example Response structure
@@ -1577,10 +1690,10 @@ module Aws::GuardDuty
1577
1690
  # resp.members #=> Array
1578
1691
  # resp.members[0].account_id #=> String
1579
1692
  # resp.members[0].detector_id #=> String
1580
- # resp.members[0].email #=> String
1581
- # resp.members[0].invited_at #=> String
1582
1693
  # resp.members[0].master_id #=> String
1694
+ # resp.members[0].email #=> String
1583
1695
  # resp.members[0].relationship_status #=> String
1696
+ # resp.members[0].invited_at #=> String
1584
1697
  # resp.members[0].updated_at #=> String
1585
1698
  # resp.next_token #=> String
1586
1699
  #
@@ -1597,31 +1710,38 @@ module Aws::GuardDuty
1597
1710
  # detector ID.
1598
1711
  #
1599
1712
  # @option params [required, String] :detector_id
1713
+ # The unique ID of the detector the threatIntelSet is associated with.
1600
1714
  #
1601
1715
  # @option params [Integer] :max_results
1602
- # You can use this parameter to indicate the maximum number of items
1603
- # that you want in the response.
1716
+ # You can use this parameter to indicate the maximum number of items you
1717
+ # want in the response. The default value is 50. The maximum value is
1718
+ # 50.
1604
1719
  #
1605
1720
  # @option params [String] :next_token
1721
+ # You can use this parameter when paginating results. Set the value of
1722
+ # this parameter to null on your first call to the list action. For
1723
+ # subsequent calls to the action fill nextToken in the request with the
1724
+ # value of NextToken from the previous response to continue listing
1725
+ # data.
1606
1726
  #
1607
1727
  # @return [Types::ListThreatIntelSetsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1608
1728
  #
1609
- # * {Types::ListThreatIntelSetsResponse#next_token #next_token} => String
1610
1729
  # * {Types::ListThreatIntelSetsResponse#threat_intel_set_ids #threat_intel_set_ids} => Array&lt;String&gt;
1730
+ # * {Types::ListThreatIntelSetsResponse#next_token #next_token} => String
1611
1731
  #
1612
1732
  # @example Request syntax with placeholder values
1613
1733
  #
1614
1734
  # resp = client.list_threat_intel_sets({
1615
- # detector_id: "__string", # required
1735
+ # detector_id: "DetectorId", # required
1616
1736
  # max_results: 1,
1617
- # next_token: "__string",
1737
+ # next_token: "String",
1618
1738
  # })
1619
1739
  #
1620
1740
  # @example Response structure
1621
1741
  #
1622
- # resp.next_token #=> String
1623
1742
  # resp.threat_intel_set_ids #=> Array
1624
1743
  # resp.threat_intel_set_ids[0] #=> String
1744
+ # resp.next_token #=> String
1625
1745
  #
1626
1746
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/ListThreatIntelSets AWS API Documentation
1627
1747
  #
@@ -1637,12 +1757,14 @@ module Aws::GuardDuty
1637
1757
  # command after disabling GuardDuty from monitoring these members'
1638
1758
  # findings by running StopMonitoringMembers.
1639
1759
  #
1760
+ # @option params [required, String] :detector_id
1761
+ # The unique ID of the detector of the GuardDuty account whom you want
1762
+ # to re-enable to monitor members' findings.
1763
+ #
1640
1764
  # @option params [required, Array<String>] :account_ids
1641
1765
  # A list of account IDs of the GuardDuty member accounts whose findings
1642
1766
  # you want the master account to monitor.
1643
1767
  #
1644
- # @option params [required, String] :detector_id
1645
- #
1646
1768
  # @return [Types::StartMonitoringMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1647
1769
  #
1648
1770
  # * {Types::StartMonitoringMembersResponse#unprocessed_accounts #unprocessed_accounts} => Array&lt;Types::UnprocessedAccount&gt;
@@ -1650,8 +1772,8 @@ module Aws::GuardDuty
1650
1772
  # @example Request syntax with placeholder values
1651
1773
  #
1652
1774
  # resp = client.start_monitoring_members({
1653
- # account_ids: ["__string"], # required
1654
- # detector_id: "__string", # required
1775
+ # detector_id: "DetectorId", # required
1776
+ # account_ids: ["AccountId"], # required
1655
1777
  # })
1656
1778
  #
1657
1779
  # @example Response structure
@@ -1674,12 +1796,14 @@ module Aws::GuardDuty
1674
1796
  # GuardDuty account can run StartMonitoringMembers to re-enable
1675
1797
  # GuardDuty to monitor these members’ findings.
1676
1798
  #
1799
+ # @option params [required, String] :detector_id
1800
+ # The unique ID of the detector of the GuardDuty account that you want
1801
+ # to stop from monitor members' findings.
1802
+ #
1677
1803
  # @option params [required, Array<String>] :account_ids
1678
1804
  # A list of account IDs of the GuardDuty member accounts whose findings
1679
1805
  # you want the master account to stop monitoring.
1680
1806
  #
1681
- # @option params [required, String] :detector_id
1682
- #
1683
1807
  # @return [Types::StopMonitoringMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1684
1808
  #
1685
1809
  # * {Types::StopMonitoringMembersResponse#unprocessed_accounts #unprocessed_accounts} => Array&lt;Types::UnprocessedAccount&gt;
@@ -1687,8 +1811,8 @@ module Aws::GuardDuty
1687
1811
  # @example Request syntax with placeholder values
1688
1812
  #
1689
1813
  # resp = client.stop_monitoring_members({
1690
- # account_ids: ["__string"], # required
1691
- # detector_id: "__string", # required
1814
+ # detector_id: "DetectorId", # required
1815
+ # account_ids: ["AccountId"], # required
1692
1816
  # })
1693
1817
  #
1694
1818
  # @example Response structure
@@ -1710,6 +1834,8 @@ module Aws::GuardDuty
1710
1834
  # IDs.
1711
1835
  #
1712
1836
  # @option params [required, String] :detector_id
1837
+ # The ID of the detector that specifies the GuardDuty service whose
1838
+ # findings you want to unarchive.
1713
1839
  #
1714
1840
  # @option params [required, Array<String>] :finding_ids
1715
1841
  # IDs of the findings that you want to unarchive.
@@ -1719,7 +1845,7 @@ module Aws::GuardDuty
1719
1845
  # @example Request syntax with placeholder values
1720
1846
  #
1721
1847
  # resp = client.unarchive_findings({
1722
- # detector_id: "__string", # required
1848
+ # detector_id: "DetectorId", # required
1723
1849
  # finding_ids: ["FindingId"], # required
1724
1850
  # })
1725
1851
  #
@@ -1735,6 +1861,7 @@ module Aws::GuardDuty
1735
1861
  # Updates an Amazon GuardDuty detector specified by the detectorId.
1736
1862
  #
1737
1863
  # @option params [required, String] :detector_id
1864
+ # The unique ID of the detector that you want to update.
1738
1865
  #
1739
1866
  # @option params [Boolean] :enable
1740
1867
  # Updated boolean value for the detector that specifies whether the
@@ -1749,7 +1876,7 @@ module Aws::GuardDuty
1749
1876
  # @example Request syntax with placeholder values
1750
1877
  #
1751
1878
  # resp = client.update_detector({
1752
- # detector_id: "__string", # required
1879
+ # detector_id: "DetectorId", # required
1753
1880
  # enable: false,
1754
1881
  # finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS
1755
1882
  # })
@@ -1765,26 +1892,29 @@ module Aws::GuardDuty
1765
1892
 
1766
1893
  # Updates the filter specified by the filter name.
1767
1894
  #
1768
- # @option params [String] :action
1769
- # Specifies the action that is to be applied to the findings that match
1770
- # the filter.
1771
- #
1772
- # @option params [String] :description
1773
- # The description of the filter.
1774
- #
1775
1895
  # @option params [required, String] :detector_id
1896
+ # The unique ID of the detector that specifies the GuardDuty service
1897
+ # where you want to update a filter.
1776
1898
  #
1777
1899
  # @option params [required, String] :filter_name
1900
+ # The name of the filter.
1778
1901
  #
1779
- # @option params [Types::FindingCriteria] :finding_criteria
1780
- # Represents the criteria to be used in the filter for querying
1781
- # findings.
1902
+ # @option params [String] :description
1903
+ # The description of the filter.
1904
+ #
1905
+ # @option params [String] :action
1906
+ # Specifies the action that is to be applied to the findings that match
1907
+ # the filter.
1782
1908
  #
1783
1909
  # @option params [Integer] :rank
1784
1910
  # Specifies the position of the filter in the list of current filters.
1785
1911
  # Also specifies the order in which this filter is applied to the
1786
1912
  # findings.
1787
1913
  #
1914
+ # @option params [Types::FindingCriteria] :finding_criteria
1915
+ # Represents the criteria to be used in the filter for querying
1916
+ # findings.
1917
+ #
1788
1918
  # @return [Types::UpdateFilterResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1789
1919
  #
1790
1920
  # * {Types::UpdateFilterResponse#name #name} => String
@@ -1792,23 +1922,29 @@ module Aws::GuardDuty
1792
1922
  # @example Request syntax with placeholder values
1793
1923
  #
1794
1924
  # resp = client.update_filter({
1795
- # action: "NOOP", # accepts NOOP, ARCHIVE
1925
+ # detector_id: "DetectorId", # required
1926
+ # filter_name: "String", # required
1796
1927
  # description: "FilterDescription",
1797
- # detector_id: "__string", # required
1798
- # filter_name: "__string", # required
1928
+ # action: "NOOP", # accepts NOOP, ARCHIVE
1929
+ # rank: 1,
1799
1930
  # finding_criteria: {
1800
1931
  # criterion: {
1801
- # "__string" => {
1802
- # eq: ["__string"],
1932
+ # "String" => {
1933
+ # eq: ["String"],
1934
+ # neq: ["String"],
1803
1935
  # gt: 1,
1804
1936
  # gte: 1,
1805
1937
  # lt: 1,
1806
1938
  # lte: 1,
1807
- # neq: ["__string"],
1939
+ # equals: ["String"],
1940
+ # not_equals: ["String"],
1941
+ # greater_than: 1,
1942
+ # greater_than_or_equal: 1,
1943
+ # less_than: 1,
1944
+ # less_than_or_equal: 1,
1808
1945
  # },
1809
1946
  # },
1810
1947
  # },
1811
- # rank: 1,
1812
1948
  # })
1813
1949
  #
1814
1950
  # @example Response structure
@@ -1826,26 +1962,28 @@ module Aws::GuardDuty
1826
1962
 
1827
1963
  # Marks specified Amazon GuardDuty findings as useful or not useful.
1828
1964
  #
1829
- # @option params [String] :comments
1830
- # Additional feedback about the GuardDuty findings.
1831
- #
1832
1965
  # @option params [required, String] :detector_id
1966
+ # The ID of the detector that specifies the GuardDuty service whose
1967
+ # findings you want to mark as useful or not useful.
1968
+ #
1969
+ # @option params [required, Array<String>] :finding_ids
1970
+ # IDs of the findings that you want to mark as useful or not useful.
1833
1971
  #
1834
1972
  # @option params [required, String] :feedback
1835
1973
  # Valid values: USEFUL \| NOT\_USEFUL
1836
1974
  #
1837
- # @option params [required, Array<String>] :finding_ids
1838
- # IDs of the findings that you want to mark as useful or not useful.
1975
+ # @option params [String] :comments
1976
+ # Additional feedback about the GuardDuty findings.
1839
1977
  #
1840
1978
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
1841
1979
  #
1842
1980
  # @example Request syntax with placeholder values
1843
1981
  #
1844
1982
  # resp = client.update_findings_feedback({
1845
- # comments: "Comments",
1846
- # detector_id: "__string", # required
1847
- # feedback: "USEFUL", # required, accepts USEFUL, NOT_USEFUL
1983
+ # detector_id: "DetectorId", # required
1848
1984
  # finding_ids: ["FindingId"], # required
1985
+ # feedback: "USEFUL", # required, accepts USEFUL, NOT_USEFUL
1986
+ # comments: "String",
1849
1987
  # })
1850
1988
  #
1851
1989
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateFindingsFeedback AWS API Documentation
@@ -1859,31 +1997,34 @@ module Aws::GuardDuty
1859
1997
 
1860
1998
  # Updates the IPSet specified by the IPSet ID.
1861
1999
  #
1862
- # @option params [Boolean] :activate
1863
- # The updated boolean value that specifies whether the IPSet is active
1864
- # or not.
1865
- #
1866
2000
  # @option params [required, String] :detector_id
2001
+ # The detectorID that specifies the GuardDuty service whose IPSet you
2002
+ # want to update.
1867
2003
  #
1868
2004
  # @option params [required, String] :ip_set_id
2005
+ # The unique ID that specifies the IPSet that you want to update.
2006
+ #
2007
+ # @option params [String] :name
2008
+ # The unique ID that specifies the IPSet that you want to update.
1869
2009
  #
1870
2010
  # @option params [String] :location
1871
2011
  # The updated URI of the file that contains the IPSet. For example
1872
2012
  # (https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key).
1873
2013
  #
1874
- # @option params [String] :name
1875
- # The unique ID that specifies the IPSet that you want to update.
2014
+ # @option params [Boolean] :activate
2015
+ # The updated boolean value that specifies whether the IPSet is active
2016
+ # or not.
1876
2017
  #
1877
2018
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
1878
2019
  #
1879
2020
  # @example Request syntax with placeholder values
1880
2021
  #
1881
2022
  # resp = client.update_ip_set({
1882
- # activate: false,
1883
- # detector_id: "__string", # required
1884
- # ip_set_id: "__string", # required
1885
- # location: "Location",
2023
+ # detector_id: "DetectorId", # required
2024
+ # ip_set_id: "String", # required
1886
2025
  # name: "Name",
2026
+ # location: "Location",
2027
+ # activate: false,
1887
2028
  # })
1888
2029
  #
1889
2030
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateIPSet AWS API Documentation
@@ -1897,32 +2038,36 @@ module Aws::GuardDuty
1897
2038
 
1898
2039
  # Updates the ThreatIntelSet specified by ThreatIntelSet ID.
1899
2040
  #
1900
- # @option params [Boolean] :activate
1901
- # The updated boolean value that specifies whether the ThreateIntelSet
1902
- # is active or not.
1903
- #
1904
2041
  # @option params [required, String] :detector_id
2042
+ # The detectorID that specifies the GuardDuty service whose
2043
+ # ThreatIntelSet you want to update.
1905
2044
  #
1906
- # @option params [String] :location
1907
- # The updated URI of the file that contains the ThreateIntelSet. For
1908
- # example (https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key)
2045
+ # @option params [required, String] :threat_intel_set_id
2046
+ # The unique ID that specifies the ThreatIntelSet that you want to
2047
+ # update.
1909
2048
  #
1910
2049
  # @option params [String] :name
1911
2050
  # The unique ID that specifies the ThreatIntelSet that you want to
1912
2051
  # update.
1913
2052
  #
1914
- # @option params [required, String] :threat_intel_set_id
2053
+ # @option params [String] :location
2054
+ # The updated URI of the file that contains the ThreateIntelSet. For
2055
+ # example (https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key)
2056
+ #
2057
+ # @option params [Boolean] :activate
2058
+ # The updated boolean value that specifies whether the ThreateIntelSet
2059
+ # is active or not.
1915
2060
  #
1916
2061
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
1917
2062
  #
1918
2063
  # @example Request syntax with placeholder values
1919
2064
  #
1920
2065
  # resp = client.update_threat_intel_set({
1921
- # activate: false,
1922
- # detector_id: "__string", # required
1923
- # location: "Location",
2066
+ # detector_id: "DetectorId", # required
2067
+ # threat_intel_set_id: "String", # required
1924
2068
  # name: "Name",
1925
- # threat_intel_set_id: "__string", # required
2069
+ # location: "Location",
2070
+ # activate: false,
1926
2071
  # })
1927
2072
  #
1928
2073
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateThreatIntelSet AWS API Documentation
@@ -1947,7 +2092,7 @@ module Aws::GuardDuty
1947
2092
  params: params,
1948
2093
  config: config)
1949
2094
  context[:gem_name] = 'aws-sdk-guardduty'
1950
- context[:gem_version] = '1.17.0'
2095
+ context[:gem_version] = '1.18.0'
1951
2096
  Seahorse::Client::Request.new(handlers, context)
1952
2097
  end
1953
2098