crimson-falcon 0.4.1 → 1.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +3032 -1586
- data/crimson-falcon.gemspec +1 -1
- data/lib/crimson-falcon/api/alerts.rb +669 -0
- data/lib/crimson-falcon/api/api_integrations.rb +239 -0
- data/lib/crimson-falcon/api/aspm.rb +1778 -0
- data/lib/crimson-falcon/api/certificate_based_exclusions.rb +435 -0
- data/lib/crimson-falcon/api/cloud_aws_registration.rb +475 -0
- data/lib/crimson-falcon/api/cloud_azure_registration.rb +105 -0
- data/lib/crimson-falcon/api/cloud_connect_aws.rb +623 -0
- data/lib/crimson-falcon/api/cloud_security_assets.rb +179 -0
- data/lib/crimson-falcon/api/cloud_snapshots.rb +413 -0
- data/lib/crimson-falcon/api/compliance_assessments.rb +683 -0
- data/lib/crimson-falcon/api/configuration_assessment.rb +183 -0
- data/lib/crimson-falcon/api/configuration_assessment_evaluation_logic.rb +101 -0
- data/lib/crimson-falcon/api/container_alerts.rb +222 -0
- data/lib/crimson-falcon/api/container_detections.rb +408 -0
- data/lib/crimson-falcon/api/container_images.rb +903 -0
- data/lib/crimson-falcon/api/container_packages.rb +435 -0
- data/lib/crimson-falcon/api/container_vulnerabilities.rb +693 -0
- data/lib/crimson-falcon/api/content_update_policies.rb +769 -0
- data/lib/crimson-falcon/api/correlation_rules.rb +505 -0
- data/lib/crimson-falcon/api/cspg_iac.rb +94 -0
- data/lib/crimson-falcon/api/cspm_registration.rb +2913 -0
- data/lib/crimson-falcon/api/custom_ioa.rb +1353 -0
- data/lib/crimson-falcon/api/custom_storage.rb +1218 -0
- data/lib/crimson-falcon/api/d4c_registration.rb +1538 -0
- data/lib/crimson-falcon/api/datascanner.rb +225 -0
- data/lib/crimson-falcon/api/delivery_settings.rb +160 -0
- data/lib/crimson-falcon/api/deployments.rb +115 -0
- data/lib/crimson-falcon/api/detects.rb +315 -0
- data/lib/crimson-falcon/api/device_content.rb +176 -0
- data/lib/crimson-falcon/api/device_control_policies.rb +890 -0
- data/lib/crimson-falcon/api/discover.rb +833 -0
- data/lib/crimson-falcon/api/discover_iot.rb +255 -0
- data/lib/crimson-falcon/api/downloads.rb +108 -0
- data/lib/crimson-falcon/api/downloads_api.rb +112 -0
- data/lib/crimson-falcon/api/drift_indicators.rb +350 -0
- data/lib/crimson-falcon/api/event_schema.rb +219 -0
- data/lib/crimson-falcon/api/event_streams.rb +179 -0
- data/lib/crimson-falcon/api/exposure_management.rb +722 -0
- data/lib/crimson-falcon/api/falcon_complete_dashboard.rb +1369 -0
- data/lib/crimson-falcon/api/falcon_container.rb +94 -0
- data/lib/crimson-falcon/api/falcon_container_cli.rb +105 -0
- data/lib/crimson-falcon/api/falcon_container_image.rb +614 -0
- data/lib/crimson-falcon/api/falconx_sandbox.rb +1035 -0
- data/lib/crimson-falcon/api/field_schema.rb +164 -0
- data/lib/crimson-falcon/api/filevantage.rb +2201 -0
- data/lib/crimson-falcon/api/firewall_management.rb +2259 -0
- data/lib/crimson-falcon/api/firewall_policies.rb +780 -0
- data/lib/crimson-falcon/api/foundry_logscale.rb +1150 -0
- data/lib/crimson-falcon/api/handle.rb +94 -0
- data/lib/crimson-falcon/api/host_group.rb +706 -0
- data/lib/crimson-falcon/api/host_migration.rb +759 -0
- data/lib/crimson-falcon/api/hosts.rb +859 -0
- data/lib/crimson-falcon/api/humio_auth_proxy.rb +514 -0
- data/lib/crimson-falcon/api/identity_entities.rb +238 -0
- data/lib/crimson-falcon/api/identity_protection.rb +399 -0
- data/lib/crimson-falcon/api/image_assessment_policies.rb +738 -0
- data/lib/crimson-falcon/api/incidents.rb +456 -0
- data/lib/crimson-falcon/api/installation_tokens.rb +545 -0
- data/lib/crimson-falcon/api/installation_tokens_settings.rb +105 -0
- data/lib/crimson-falcon/api/intel.rb +1628 -0
- data/lib/crimson-falcon/api/intelligence_indicator_graph.rb +118 -0
- data/lib/crimson-falcon/api/ioa_exclusions.rb +375 -0
- data/lib/crimson-falcon/api/ioc.rb +1132 -0
- data/lib/crimson-falcon/api/iocs.rb +327 -0
- data/lib/crimson-falcon/api/kubernetes_protection.rb +3988 -0
- data/lib/crimson-falcon/api/lookup_files.rb +239 -0
- data/lib/crimson-falcon/api/malquery.rb +606 -0
- data/lib/crimson-falcon/api/message_center.rb +729 -0
- data/lib/crimson-falcon/api/ml_exclusions.rb +369 -0
- data/lib/crimson-falcon/api/mobile_enrollment.rb +191 -0
- data/lib/crimson-falcon/api/mssp.rb +2015 -0
- data/lib/crimson-falcon/api/oauth2.rb +186 -0
- data/lib/crimson-falcon/api/ods.rb +1094 -0
- data/lib/crimson-falcon/api/overwatch_dashboard.rb +357 -0
- data/lib/crimson-falcon/api/prevention_policies.rb +769 -0
- data/lib/crimson-falcon/api/quarantine.rb +435 -0
- data/lib/crimson-falcon/api/quick_scan.rb +300 -0
- data/lib/crimson-falcon/api/quick_scan_pro.rb +432 -0
- data/lib/crimson-falcon/api/real_time_response.rb +1617 -0
- data/lib/crimson-falcon/api/real_time_response_admin.rb +1173 -0
- data/lib/crimson-falcon/api/real_time_response_audit.rb +113 -0
- data/lib/crimson-falcon/api/recon.rb +1761 -0
- data/lib/crimson-falcon/api/release_notes.rb +287 -0
- data/lib/crimson-falcon/api/releases.rb +125 -0
- data/lib/crimson-falcon/api/report_executions.rb +299 -0
- data/lib/crimson-falcon/api/response_policies.rb +769 -0
- data/lib/crimson-falcon/api/runtime_detections.rb +106 -0
- data/lib/crimson-falcon/api/sample_uploads.rb +805 -0
- data/lib/crimson-falcon/api/scheduled_reports.rb +237 -0
- data/lib/crimson-falcon/api/sensor_download.rb +610 -0
- data/lib/crimson-falcon/api/sensor_update_policies.rb +1339 -0
- data/lib/crimson-falcon/api/sensor_usage.rb +97 -0
- data/lib/crimson-falcon/api/sensor_visibility_exclusions.rb +369 -0
- data/lib/crimson-falcon/api/spotlight_evaluation_logic.rb +243 -0
- data/lib/crimson-falcon/api/spotlight_vulnerabilities.rb +324 -0
- data/lib/crimson-falcon/api/threatgraph.rb +539 -0
- data/lib/crimson-falcon/api/unidentified_containers.rb +222 -0
- data/lib/crimson-falcon/api/user_management.rb +1505 -0
- data/lib/crimson-falcon/api/vulnerabilities.rb +106 -0
- data/lib/crimson-falcon/api/workflows.rb +1275 -0
- data/lib/crimson-falcon/api/zero_trust_assessment.rb +227 -0
- data/lib/crimson-falcon/api_client.rb +4 -2
- data/lib/crimson-falcon/models/actions_action.rb +348 -0
- data/lib/crimson-falcon/models/actions_action_response.rb +259 -0
- data/lib/crimson-falcon/models/actions_create_action_request.rb +264 -0
- data/lib/crimson-falcon/models/actions_get_action_response.rb +266 -0
- data/lib/crimson-falcon/models/activities_activity.rb +460 -0
- data/lib/crimson-falcon/models/activities_activity_ext_field.rb +315 -0
- data/lib/crimson-falcon/models/activities_activity_external_response.rb +271 -0
- data/lib/crimson-falcon/models/activity.rb +243 -0
- data/lib/crimson-falcon/models/alerts_container_alerts_count_value.rb +21 -21
- data/lib/crimson-falcon/models/alerts_container_alerts_entity_response.rb +2 -2
- data/lib/crimson-falcon/models/api_action_resp_v1.rb +1 -1
- data/lib/crimson-falcon/models/api_audit_event_details_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/api_cert_based_exclusion_create_req_v1.rb +342 -0
- data/lib/crimson-falcon/models/api_cert_based_exclusion_resp_v1.rb +261 -0
- data/lib/crimson-falcon/models/api_cert_based_exclusion_update_req_v1.rb +351 -0
- data/lib/crimson-falcon/models/api_cert_based_exclusion_v1.rb +365 -0
- data/lib/crimson-falcon/models/api_cert_based_exclusions_create_req_v1.rb +241 -0
- data/lib/crimson-falcon/models/api_cert_based_exclusions_update_req_v1.rb +241 -0
- data/lib/crimson-falcon/models/api_certificate_req_v1.rb +309 -0
- data/lib/crimson-falcon/models/api_certificate_v1.rb +309 -0
- data/lib/crimson-falcon/models/api_certificates_response_v1.rb +241 -0
- data/lib/crimson-falcon/models/api_create_migration_request_v1.rb +283 -0
- data/lib/crimson-falcon/models/api_create_migration_response_v1.rb +271 -0
- data/lib/crimson-falcon/models/api_create_rule_operation_v1.rb +257 -0
- data/lib/crimson-falcon/models/api_customer_settings_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/api_device_count_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/api_devices_ran_on_resp_v1.rb +1 -1
- data/lib/crimson-falcon/models/api_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/api_event.rb +277 -0
- data/lib/crimson-falcon/models/api_execution_results_response.rb +2 -2
- data/lib/crimson-falcon/models/api_get_entities_rules_response_v1.rb +266 -0
- data/lib/crimson-falcon/models/api_get_host_migration_response_v1.rb +271 -0
- data/lib/crimson-falcon/models/api_get_migration_destinations_request_body_v1.rb +255 -0
- data/lib/crimson-falcon/models/api_get_migration_destinations_response_v1.rb +266 -0
- data/lib/crimson-falcon/models/api_get_migrations_response_v1.rb +266 -0
- data/lib/crimson-falcon/models/api_host_migration.rb +426 -0
- data/lib/crimson-falcon/models/api_hourly_average_response.rb +266 -0
- data/lib/crimson-falcon/models/api_indicator_create_req_v1.rb +1 -0
- data/lib/crimson-falcon/models/api_indicator_query_resp_v1.rb +1 -1
- data/lib/crimson-falcon/models/api_indicator_resp_v1.rb +1 -1
- data/lib/crimson-falcon/models/api_message_center_activity_response.rb +2 -2
- data/lib/crimson-falcon/models/api_message_center_attachment_upload_response.rb +2 -2
- data/lib/crimson-falcon/models/api_message_center_cases_response.rb +2 -2
- data/lib/crimson-falcon/models/api_mfa_resource_ids_response.rb +275 -0
- data/lib/crimson-falcon/models/api_migrate_hosts_info.rb +267 -0
- data/lib/crimson-falcon/models/api_migration.rb +378 -0
- data/lib/crimson-falcon/models/api_notification_exposed_data_record_entities_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/api_object_metadata.rb +10 -1
- data/lib/crimson-falcon/models/api_patch_rule_operation_v1.rb +257 -0
- data/lib/crimson-falcon/models/api_patch_rule_search_v1.rb +261 -0
- data/lib/crimson-falcon/models/api_patterns_response.rb +2 -2
- data/lib/crimson-falcon/models/api_platforms_response.rb +2 -2
- data/lib/crimson-falcon/models/api_post_enrollment_details_response.rb +2 -2
- data/lib/crimson-falcon/models/api_post_enrollment_details_v4.rb +269 -0
- data/lib/crimson-falcon/models/api_processes_ran_on_resp_v1.rb +1 -1
- data/lib/crimson-falcon/models/api_resource_ids_response.rb +2 -2
- data/lib/crimson-falcon/models/api_resp_certificates_v1.rb +261 -0
- data/lib/crimson-falcon/models/api_response_pagination.rb +2 -1
- data/lib/crimson-falcon/models/api_rule_create_request_v1.rb +354 -0
- data/lib/crimson-falcon/models/api_rule_groups_response.rb +2 -2
- data/lib/crimson-falcon/models/api_rule_operation_v1.rb +266 -0
- data/lib/crimson-falcon/models/api_rule_patch_request_v1.rb +311 -0
- data/lib/crimson-falcon/models/api_rule_schedule_v1.rb +239 -0
- data/lib/crimson-falcon/models/api_rule_schedule_v1_patch.rb +239 -0
- data/lib/crimson-falcon/models/api_rule_search_v1.rb +276 -0
- data/lib/crimson-falcon/models/api_rule_types_response.rb +2 -2
- data/lib/crimson-falcon/models/api_rule_update_v2.rb +339 -0
- data/lib/crimson-falcon/models/api_rule_updates_request_v2.rb +283 -0
- data/lib/crimson-falcon/models/api_rule_v1.rb +132 -203
- data/lib/crimson-falcon/models/api_rules_response.rb +2 -2
- data/lib/crimson-falcon/models/api_sensor_details_response_swagger.rb +2 -2
- data/lib/crimson-falcon/models/api_token_details_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/api_user_metadata_response.rb +2 -2
- data/lib/crimson-falcon/models/api_user_role_ids_response.rb +2 -2
- data/lib/crimson-falcon/models/api_user_role_response.rb +2 -2
- data/lib/crimson-falcon/models/api_validation_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/api_weekly_average_response.rb +266 -0
- data/lib/crimson-falcon/models/apidomain_query_response_v1.rb +15 -1
- data/lib/crimson-falcon/models/apidomain_query_response_wrapper_v1.rb +2 -2
- data/lib/crimson-falcon/models/apidomain_repo_view_list_item_wrapper_v1.rb +2 -2
- data/lib/crimson-falcon/models/apidomain_saved_search_execute_request_v1.rb +1 -10
- data/lib/crimson-falcon/models/assets_get_resource_ids_response.rb +261 -0
- data/lib/crimson-falcon/models/assets_get_resources_response.rb +266 -0
- data/lib/crimson-falcon/models/base_policy_members_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/base_set_content_update_policy_precedence_req_v1.rb +242 -0
- data/lib/crimson-falcon/models/binservapi_msa_put_file_response.rb +2 -2
- data/lib/crimson-falcon/models/changes_change.rb +29 -1
- data/lib/crimson-falcon/models/changes_high_volume_query_response.rb +1 -1
- data/lib/crimson-falcon/models/changes_host.rb +15 -4
- data/lib/crimson-falcon/models/changes_permissions_mac.rb +283 -0
- data/lib/crimson-falcon/models/client_archive_create_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/client_archive_list_files_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/client_data_ingest_response_wrapper_v1.rb +2 -2
- data/lib/crimson-falcon/models/client_extraction_create_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/client_extraction_list_files_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/client_job_status.rb +10 -1
- data/lib/crimson-falcon/models/client_sample_metadata_response_v2.rb +2 -2
- data/lib/crimson-falcon/models/client_system_definition_create_response.rb +2 -2
- data/lib/crimson-falcon/models/common_count_as_resource.rb +4 -18
- data/lib/crimson-falcon/models/common_count_response.rb +21 -21
- data/lib/crimson-falcon/models/common_credentials.rb +239 -0
- data/lib/crimson-falcon/models/common_entities_response.rb +269 -0
- data/lib/crimson-falcon/models/common_generic_entity_response_string.rb +2 -2
- data/lib/crimson-falcon/models/common_registry_credentials_response.rb +269 -0
- data/lib/crimson-falcon/models/content_update_create_policies_req_v1.rb +241 -0
- data/lib/crimson-falcon/models/content_update_create_policy_req_v1.rb +259 -0
- data/lib/crimson-falcon/models/content_update_ring_assignment_settings_v1.rb +253 -0
- data/lib/crimson-falcon/models/content_update_settings_v1.rb +241 -0
- data/lib/crimson-falcon/models/content_update_update_policies_req_v1.rb +241 -0
- data/lib/crimson-falcon/models/content_update_update_policy_req_v1.rb +269 -0
- data/lib/crimson-falcon/models/contentchanges_change_contents_response.rb +264 -0
- data/lib/crimson-falcon/models/contentchanges_content.rb +253 -0
- data/lib/crimson-falcon/models/contentchanges_content_diff.rb +271 -0
- data/lib/crimson-falcon/models/core_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/custom_storage_object_keys.rb +271 -0
- data/lib/crimson-falcon/models/custom_storage_response.rb +271 -0
- data/lib/crimson-falcon/models/dataclassifications_label.rb +267 -0
- data/lib/crimson-falcon/models/dataclassifications_response.rb +284 -0
- data/lib/crimson-falcon/models/dataclassifications_tag.rb +283 -0
- data/lib/crimson-falcon/models/definitions_definition_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/definitions_definition_ext.rb +203 -12
- data/lib/crimson-falcon/models/definitions_definition_external_response.rb +2 -2
- data/lib/crimson-falcon/models/definitions_definition_import_response.rb +2 -2
- data/lib/crimson-falcon/models/deployments_api_deployment_ring_view.rb +302 -0
- data/lib/crimson-falcon/models/deployments_api_deployment_view.rb +309 -0
- data/lib/crimson-falcon/models/deployments_api_deployment_view_wrapper.rb +271 -0
- data/lib/crimson-falcon/models/deployments_entity_response.rb +266 -0
- data/lib/crimson-falcon/models/destination.rb +243 -0
- data/lib/crimson-falcon/models/destinations_migration_destination.rb +253 -0
- data/lib/crimson-falcon/models/detections_api_assessment_detections.rb +21 -21
- data/lib/crimson-falcon/models/detections_api_combined_detections.rb +21 -21
- data/lib/crimson-falcon/models/detections_api_detections_by_severity.rb +2 -2
- data/lib/crimson-falcon/models/detections_api_detections_by_type.rb +2 -2
- data/lib/crimson-falcon/models/detections_api_detections_count.rb +21 -21
- data/lib/crimson-falcon/models/detects_external_alert.rb +803 -0
- data/lib/crimson-falcon/models/detectsapi_aggregates_response.rb +2 -2
- data/lib/crimson-falcon/models/detectsapi_alert_query_response.rb +2 -2
- data/lib/crimson-falcon/models/detectsapi_post_combined_alerts_v1_meta.rb +271 -0
- data/lib/crimson-falcon/models/detectsapi_post_combined_alerts_v1_paging.rb +262 -0
- data/lib/crimson-falcon/models/detectsapi_post_combined_alerts_v1_request_swagger.rb +261 -0
- data/lib/crimson-falcon/models/detectsapi_post_combined_alerts_v1_response_swagger.rb +272 -0
- data/lib/crimson-falcon/models/detectsapi_post_entities_alerts_v1_response_swagger.rb +267 -0
- data/lib/crimson-falcon/models/detectsapi_post_entities_alerts_v2_response_swagger.rb +267 -0
- data/lib/crimson-falcon/models/detectsapi_response_fields.rb +2 -2
- data/lib/crimson-falcon/models/device_control_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/device_control_resp_v2.rb +2 -2
- data/lib/crimson-falcon/models/device_control_usb_class_exceptions_req_v1.rb +3 -3
- data/lib/crimson-falcon/models/device_control_usb_class_exceptions_response.rb +3 -3
- data/lib/crimson-falcon/models/device_device.rb +55 -1
- data/lib/crimson-falcon/models/device_mapped_device_policies.rb +37 -1
- data/lib/crimson-falcon/models/deviceapi_device_details_response_swagger.rb +2 -2
- data/lib/crimson-falcon/models/deviceapi_device_response.rb +1 -1
- data/lib/crimson-falcon/models/deviceapi_device_swagger.rb +37 -1
- data/lib/crimson-falcon/models/deviceapi_groups_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/deviceapi_login_history_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/deviceapi_network_address_history_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/deviceapi_update_device_tags_swagger_v1.rb +2 -2
- data/lib/crimson-falcon/models/devicecontent_content_category.rb +234 -0
- data/lib/crimson-falcon/models/devicecontent_state.rb +345 -0
- data/lib/crimson-falcon/models/devicecontentapi_entities_response_v1.rb +271 -0
- data/lib/crimson-falcon/models/devicecontentapi_query_response_v1.rb +271 -0
- data/lib/crimson-falcon/models/domain_action_entities_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/domain_actor_document.rb +11 -11
- data/lib/crimson-falcon/models/domain_actors_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_aggregate_cluster_assessments_response.rb +266 -0
- data/lib/crimson-falcon/models/domain_aggregate_failed_asset_count_by_severity_response.rb +266 -0
- data/lib/crimson-falcon/models/domain_aggregate_failed_assets_by_rules_response.rb +266 -0
- data/lib/crimson-falcon/models/domain_aggregate_failed_rules_by_clusters_response.rb +266 -0
- data/lib/crimson-falcon/models/domain_aggregate_failed_rules_by_images_response.rb +266 -0
- data/lib/crimson-falcon/models/domain_aggregate_failed_rules_count_by_severity_response.rb +266 -0
- data/lib/crimson-falcon/models/domain_aggregate_image_assessments_response.rb +264 -0
- data/lib/crimson-falcon/models/domain_aggregate_rules_assessments_response.rb +266 -0
- data/lib/crimson-falcon/models/domain_aggregate_rules_by_status_response.rb +266 -0
- data/lib/crimson-falcon/models/domain_aggregates_response.rb +1 -1
- data/lib/crimson-falcon/models/domain_api_combined_findings_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/domain_api_compliance_control_v1.rb +253 -0
- data/lib/crimson-falcon/models/domain_api_compliance_mapping_v1.rb +264 -0
- data/lib/crimson-falcon/models/domain_api_error.rb +25 -27
- data/lib/crimson-falcon/models/domain_api_evaluation_logic_entities_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_api_evaluation_logic_item_v1.rb +15 -10
- data/lib/crimson-falcon/models/domain_api_evaluation_logic_v1.rb +10 -36
- data/lib/crimson-falcon/models/domain_api_finding_rule_v1.rb +12 -1
- data/lib/crimson-falcon/models/domain_api_host_info_facet_v1.rb +10 -1
- data/lib/crimson-falcon/models/domain_api_remediation_info.rb +255 -0
- data/lib/crimson-falcon/models/domain_api_remediation_v2.rb +21 -1
- data/lib/crimson-falcon/models/domain_api_rule_details_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_api_rule_details_v1.rb +12 -1
- data/lib/crimson-falcon/models/domain_api_vulnerability_app_v2.rb +19 -4
- data/lib/crimson-falcon/models/domain_api_vulnerability_cve_details_facet_v2.rb +13 -1
- data/lib/crimson-falcon/models/domain_api_vulnerability_extended_app_v2.rb +38 -4
- data/lib/crimson-falcon/models/domain_api_vulnerability_host_facet_v2.rb +33 -1
- data/lib/crimson-falcon/models/domain_api_vulnerability_service_v2.rb +255 -0
- data/lib/crimson-falcon/models/domain_api_vulnerability_v2.rb +23 -1
- data/lib/crimson-falcon/models/domain_assessment_paging.rb +271 -0
- data/lib/crimson-falcon/models/domain_assessments_by_score_response.rb +1 -1
- data/lib/crimson-falcon/models/domain_assessments_response.rb +1 -1
- data/lib/crimson-falcon/models/domain_audit_response.rb +1 -1
- data/lib/crimson-falcon/models/domain_aws_account_resource_metadata.rb +358 -0
- data/lib/crimson-falcon/models/domain_aws_account_v2.rb +57 -1
- data/lib/crimson-falcon/models/domain_aws_inventory_filter_setting.rb +269 -0
- data/lib/crimson-falcon/models/domain_base_api_vulnerability_v2.rb +23 -1
- data/lib/crimson-falcon/models/domain_batch_get_cmd_status_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_batch_get_command_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_batch_init_session_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_batch_refresh_session_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_behavior.rb +12 -1
- data/lib/crimson-falcon/models/domain_benchmark.rb +12 -1
- data/lib/crimson-falcon/models/domain_case_creation_request_v2.rb +29 -1
- data/lib/crimson-falcon/models/domain_cid_group_members_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_cid_groups_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_cipher.rb +252 -0
- data/lib/crimson-falcon/models/domain_cisa_known_exploited_vulnerabilities_info.rb +253 -0
- data/lib/crimson-falcon/models/domain_cloud_aws_account_v1.rb +507 -0
- data/lib/crimson-falcon/models/domain_cloud_condition.rb +322 -0
- data/lib/crimson-falcon/models/domain_command_execute_response_wrapper.rb +2 -2
- data/lib/crimson-falcon/models/domain_compliance.rb +280 -0
- data/lib/crimson-falcon/models/domain_compliance_findings_grouped_by_images_with_scroll.rb +255 -0
- data/lib/crimson-falcon/models/domain_condition.rb +29 -1
- data/lib/crimson-falcon/models/domain_config_v1.rb +299 -0
- data/lib/crimson-falcon/models/domain_configs_v1.rb +271 -0
- data/lib/crimson-falcon/models/domain_content_package.rb +239 -0
- data/lib/crimson-falcon/models/domain_content_update_policy_resp_v1.rb +474 -0
- data/lib/crimson-falcon/models/domain_content_update_settings_v1.rb +241 -0
- data/lib/crimson-falcon/models/domain_control.rb +281 -0
- data/lib/crimson-falcon/models/domain_control_benchmark.rb +243 -0
- data/lib/crimson-falcon/models/domain_cps_rating.rb +301 -0
- data/lib/crimson-falcon/models/domain_cps_rating_history_entry.rb +253 -0
- data/lib/crimson-falcon/models/domain_cps_rating_indicator.rb +267 -0
- data/lib/crimson-falcon/models/domain_create_submission_v1_error_response.rb +315 -0
- data/lib/crimson-falcon/models/domain_credentials.rb +12 -31
- data/lib/crimson-falcon/models/domain_cve.rb +543 -0
- data/lib/crimson-falcon/models/domain_cve_exploit.rb +283 -0
- data/lib/crimson-falcon/models/domain_cve_exploit_reference.rb +267 -0
- data/lib/crimson-falcon/models/domain_cve_exploit_source.rb +283 -0
- data/lib/crimson-falcon/models/domain_cvssv2.rb +280 -0
- data/lib/crimson-falcon/models/domain_cvssv3.rb +352 -0
- data/lib/crimson-falcon/models/domain_denormalized_adversary_reference.rb +257 -0
- data/lib/crimson-falcon/models/domain_denormalized_country.rb +253 -0
- data/lib/crimson-falcon/models/domain_denormalized_customer_target.rb +239 -0
- data/lib/crimson-falcon/models/domain_denormalized_report_reference.rb +257 -0
- data/lib/crimson-falcon/models/domain_denormalized_sector.rb +253 -0
- data/lib/crimson-falcon/models/domain_denormalized_threat_reference.rb +248 -0
- data/lib/crimson-falcon/models/domain_denormalized_threat_used_mitre.rb +292 -0
- data/lib/crimson-falcon/models/domain_device.rb +10 -10
- data/lib/crimson-falcon/models/domain_discover_api_account.rb +2 -2
- data/lib/crimson-falcon/models/domain_discover_api_account_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_discover_api_active_discovery_host.rb +21 -1
- data/lib/crimson-falcon/models/domain_discover_api_application.rb +20 -1
- data/lib/crimson-falcon/models/domain_discover_api_application_browser_extension.rb +320 -0
- data/lib/crimson-falcon/models/domain_discover_api_application_browser_extension_installation.rb +320 -0
- data/lib/crimson-falcon/models/domain_discover_api_application_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_discover_api_application_host.rb +13 -1
- data/lib/crimson-falcon/models/domain_discover_api_combined_applications_response.rb +271 -0
- data/lib/crimson-falcon/models/domain_discover_api_combined_hosts_response.rb +271 -0
- data/lib/crimson-falcon/models/domain_discover_api_host.rb +302 -5
- data/lib/crimson-falcon/models/domain_discover_api_host_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_discover_api_login.rb +1 -1
- data/lib/crimson-falcon/models/domain_discover_api_login_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_discover_api_meta_info.rb +280 -0
- data/lib/crimson-falcon/models/domain_discover_api_paging.rb +267 -0
- data/lib/crimson-falcon/models/domain_discover_api_response.rb +271 -0
- data/lib/crimson-falcon/models/domain_discover_apiio_t_host.rb +619 -126
- data/lib/crimson-falcon/models/domain_discover_apiio_t_host_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_discover_apiio_t_host_triage.rb +285 -0
- data/lib/crimson-falcon/models/domain_discover_params.rb +15 -1
- data/lib/crimson-falcon/models/domain_errors_only.rb +1 -1
- data/lib/crimson-falcon/models/domain_execute_command_request_v1.rb +242 -0
- data/lib/crimson-falcon/models/domain_execute_command_result_v1.rb +286 -0
- data/lib/crimson-falcon/models/domain_execute_command_results_v1.rb +271 -0
- data/lib/crimson-falcon/models/domain_execute_command_v1.rb +329 -0
- data/lib/crimson-falcon/models/domain_execution_metadata_summary.rb +15 -1
- data/lib/crimson-falcon/models/domain_execution_metadata_v1.rb +15 -1
- data/lib/crimson-falcon/models/domain_export_job_entities_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/domain_export_job_id_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/domain_external_asset_api_delete_request_v1.rb +235 -0
- data/lib/crimson-falcon/models/domain_external_asset_api_patch_request_v1.rb +243 -0
- data/lib/crimson-falcon/models/domain_external_asset_application.rb +270 -0
- data/lib/crimson-falcon/models/domain_external_asset_certificate.rb +317 -0
- data/lib/crimson-falcon/models/domain_external_asset_certificate_entity_identifiers.rb +369 -0
- data/lib/crimson-falcon/models/domain_external_asset_cloud_vm.rb +347 -0
- data/lib/crimson-falcon/models/domain_external_asset_discovery_attributes.rb +251 -0
- data/lib/crimson-falcon/models/domain_external_asset_discovery_path_attributes.rb +237 -0
- data/lib/crimson-falcon/models/domain_external_asset_discovery_step_attributes.rb +292 -0
- data/lib/crimson-falcon/models/domain_external_asset_geographical_location.rb +306 -0
- data/lib/crimson-falcon/models/domain_external_asset_http_attributes.rb +281 -0
- data/lib/crimson-falcon/models/domain_external_asset_redirect_step_attributes.rb +280 -0
- data/lib/crimson-falcon/models/domain_external_asset_service.rb +443 -0
- data/lib/crimson-falcon/models/domain_external_asset_service_blobs_links.rb +261 -0
- data/lib/crimson-falcon/models/domain_external_asset_ssl_record.rb +301 -0
- data/lib/crimson-falcon/models/domain_external_asset_subsidiary.rb +255 -0
- data/lib/crimson-falcon/models/domain_external_assets_api_patch.rb +280 -0
- data/lib/crimson-falcon/models/domain_external_assets_api_triage.rb +285 -0
- data/lib/crimson-falcon/models/domain_external_assets_api_triage_patch.rb +265 -0
- data/lib/crimson-falcon/models/domain_external_assets_api_type_v1.rb +266 -0
- data/lib/crimson-falcon/models/domain_external_assets_blob_api_type_v1.rb +266 -0
- data/lib/crimson-falcon/models/domain_external_export_job.rb +312 -0
- data/lib/crimson-falcon/models/domain_external_query_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_external_registry_list_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_external_registry_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_feature_permission.rb +255 -0
- data/lib/crimson-falcon/models/domain_feature_status.rb +253 -0
- data/lib/crimson-falcon/models/domain_fem_dns_domain.rb +301 -0
- data/lib/crimson-falcon/models/domain_fem_ecosystem_subsidiaries_entities_response.rb +256 -0
- data/lib/crimson-falcon/models/domain_fem_ecosystem_subsidiaries_meta.rb +254 -0
- data/lib/crimson-falcon/models/domain_fem_ecosystem_subsidiaries_query_response.rb +256 -0
- data/lib/crimson-falcon/models/domain_fem_ecosystem_subsidiaries_response_fields.rb +251 -0
- data/lib/crimson-falcon/models/domain_fem_ecosystem_subsidiary.rb +344 -0
- data/lib/crimson-falcon/models/domain_fem_external_asset.rb +497 -0
- data/lib/crimson-falcon/models/domain_fem_external_ip.rb +327 -0
- data/lib/crimson-falcon/models/domain_gcp_account_v1.rb +23 -1
- data/lib/crimson-falcon/models/domain_geo_point.rb +243 -0
- data/lib/crimson-falcon/models/domain_incident.rb +12 -1
- data/lib/crimson-falcon/models/domain_init_response.rb +19 -1
- data/lib/crimson-falcon/models/domain_init_response_wrapper.rb +2 -2
- data/lib/crimson-falcon/models/domain_item_details_v1.rb +30 -20
- data/lib/crimson-falcon/models/domain_kestrel_params.rb +239 -0
- data/lib/crimson-falcon/models/domain_launch_export_job_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/domain_list_files_response_wrapper.rb +2 -2
- data/lib/crimson-falcon/models/domain_list_files_v2_response_wrapper.rb +2 -2
- data/lib/crimson-falcon/models/domain_list_sessions_response_msa.rb +2 -2
- data/lib/crimson-falcon/models/domain_lookup_file.rb +453 -0
- data/lib/crimson-falcon/models/domain_lookup_file_wrapper.rb +271 -0
- data/lib/crimson-falcon/models/domain_malware_document.rb +783 -0
- data/lib/crimson-falcon/models/domain_malware_environment_aggregates.rb +267 -0
- data/lib/crimson-falcon/models/domain_malware_response.rb +272 -0
- data/lib/crimson-falcon/models/domain_marketplace_credentials.rb +258 -0
- data/lib/crimson-falcon/models/domain_marketplace_product.rb +1 -1
- data/lib/crimson-falcon/models/domain_meta_info.rb +5 -23
- data/lib/crimson-falcon/models/domain_msa_detect_summaries_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_msa_environment_score_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_msa_external_behavior_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_msa_external_incident_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_msa_incident_perform_action_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_msa_incident_query_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_msa_meta_info.rb +248 -0
- data/lib/crimson-falcon/models/domain_msa_qf_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_mssp_role_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_multi_command_execute_response_wrapper.rb +2 -2
- data/lib/crimson-falcon/models/domain_multi_pulse_sensor_response.rb +1 -1
- data/lib/crimson-falcon/models/domain_multi_status_sensor_response.rb +1 -1
- data/lib/crimson-falcon/models/domain_news_document.rb +19 -9
- data/lib/crimson-falcon/models/domain_news_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_notification_details_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/domain_notification_entities_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/domain_notification_id_response.rb +1 -1
- data/lib/crimson-falcon/models/domain_notification_v1.rb +31 -1
- data/lib/crimson-falcon/models/domain_platform.rb +11 -11
- data/lib/crimson-falcon/models/domain_policy_info.rb +57 -1
- data/lib/crimson-falcon/models/domain_product_features.rb +255 -0
- data/lib/crimson-falcon/models/domain_product_features_status.rb +255 -0
- data/lib/crimson-falcon/models/domain_product_permission.rb +255 -0
- data/lib/crimson-falcon/models/domain_public_indicators_v3_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_query_mitre_attacks_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_query_response.rb +2 -7
- data/lib/crimson-falcon/models/domain_queued_session_response_wrapper.rb +2 -2
- data/lib/crimson-falcon/models/domain_reference.rb +255 -0
- data/lib/crimson-falcon/models/domain_registry_credentials_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_report_execution_summary_v1.rb +15 -1
- data/lib/crimson-falcon/models/domain_report_execution_v1.rb +15 -1
- data/lib/crimson-falcon/models/domain_report_executions_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_report_metadata.rb +10 -1
- data/lib/crimson-falcon/models/domain_report_params.rb +29 -4
- data/lib/crimson-falcon/models/domain_request.rb +239 -0
- data/lib/crimson-falcon/models/domain_ring_assignment_settings_v1.rb +267 -0
- data/lib/crimson-falcon/models/domain_rule_meta_info.rb +1 -1
- data/lib/crimson-falcon/models/domain_rules_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_scan.rb +10 -10
- data/lib/crimson-falcon/models/domain_scan_metadata.rb +10 -1
- data/lib/crimson-falcon/models/domain_scan_v2.rb +1 -10
- data/lib/crimson-falcon/models/domain_schedule.rb +34 -19
- data/lib/crimson-falcon/models/domain_scheduled_report_v1.rb +24 -1
- data/lib/crimson-falcon/models/domain_scheduled_reports_result_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_sensor_installer_v2.rb +405 -0
- data/lib/crimson-falcon/models/domain_sensor_installers_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_sensor_installers_v2.rb +271 -0
- data/lib/crimson-falcon/models/domain_session_response_wrapper.rb +2 -2
- data/lib/crimson-falcon/models/domain_simple_actor.rb +1 -1
- data/lib/crimson-falcon/models/domain_spapi_combined_vulnerabilities_response.rb +1 -1
- data/lib/crimson-falcon/models/domain_spapi_evaluation_logic_combined_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/domain_spapi_evaluation_logic_entities_response_v1.rb +1 -1
- data/lib/crimson-falcon/models/domain_spapi_query_response.rb +1 -1
- data/lib/crimson-falcon/models/domain_spapi_remediation_entities_response_v2.rb +2 -2
- data/lib/crimson-falcon/models/domain_spapi_vulnerabilities_entities_response_v2.rb +1 -1
- data/lib/crimson-falcon/models/domain_spotlight_params.rb +269 -0
- data/lib/crimson-falcon/models/domain_status_response_wrapper.rb +2 -2
- data/lib/crimson-falcon/models/domain_update_rule_request_v1.rb +33 -1
- data/lib/crimson-falcon/models/domain_user.rb +45 -9
- data/lib/crimson-falcon/models/domain_user_group_members_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_user_groups_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/domain_user_metadata.rb +10 -1
- data/lib/crimson-falcon/models/domain_vuln.rb +240 -0
- data/lib/crimson-falcon/models/domain_vulnerability.rb +38 -137
- data/lib/crimson-falcon/models/domain_vulnerability_response.rb +2 -2
- data/lib/crimson-falcon/models/domain_xdr_params.rb +57 -1
- data/lib/crimson-falcon/models/driftindicators_drift_entity_response.rb +2 -2
- data/lib/crimson-falcon/models/driftindicators_drift_indicators_count_value.rb +21 -21
- data/lib/crimson-falcon/models/driftindicators_drift_indicators_field_value.rb +21 -21
- data/lib/crimson-falcon/models/empowerapi_msa_falcon_script_response.rb +2 -2
- data/lib/crimson-falcon/models/empowerapi_msa_id_list_response.rb +2 -2
- data/lib/crimson-falcon/models/empowerapi_msa_pf_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/empowerapi_msa_pf_response_v2.rb +2 -2
- data/lib/crimson-falcon/models/entities_ods_scan_host_response.rb +2 -2
- data/lib/crimson-falcon/models/entities_ods_scan_malicious_file_response.rb +2 -2
- data/lib/crimson-falcon/models/entities_ods_scan_request.rb +1 -15
- data/lib/crimson-falcon/models/entities_ods_scan_response.rb +2 -2
- data/lib/crimson-falcon/models/entities_ods_scan_response_v2.rb +2 -2
- data/lib/crimson-falcon/models/entities_ods_schedule_scan_response.rb +2 -2
- data/lib/crimson-falcon/models/entities_rolling_average.rb +365 -0
- data/lib/crimson-falcon/models/exclusions_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/executions_execution_result.rb +21 -1
- data/lib/crimson-falcon/models/executions_loop_result.rb +13 -1
- data/lib/crimson-falcon/models/executions_trigger_result.rb +1 -1
- data/lib/crimson-falcon/models/exports_exports_response.rb +266 -0
- data/lib/crimson-falcon/models/exports_launch_export_request.rb +280 -0
- data/lib/crimson-falcon/models/exports_launch_export_response.rb +267 -0
- data/lib/crimson-falcon/models/falconx_errors_only.rb +2 -2
- data/lib/crimson-falcon/models/falconx_meta_info.rb +1 -1
- data/lib/crimson-falcon/models/falconx_query_response.rb +1 -1
- data/lib/crimson-falcon/models/falconx_report_v1.rb +19 -1
- data/lib/crimson-falcon/models/falconx_report_v1_response.rb +1 -1
- data/lib/crimson-falcon/models/falconx_sandbox_parameters_v1.rb +10 -1
- data/lib/crimson-falcon/models/falconx_sandbox_report_v1.rb +10 -1
- data/lib/crimson-falcon/models/falconx_submission_v1_response.rb +1 -1
- data/lib/crimson-falcon/models/falconx_summary_report_v1.rb +10 -1
- data/lib/crimson-falcon/models/falconx_summary_report_v1_response.rb +1 -1
- data/lib/crimson-falcon/models/fielddata_field_source.rb +278 -0
- data/lib/crimson-falcon/models/fielddata_field_source_option.rb +248 -0
- data/lib/crimson-falcon/models/figapi_adversary.rb +235 -0
- data/lib/crimson-falcon/models/figapi_country.rb +245 -0
- data/lib/crimson-falcon/models/figapi_domain.rb +345 -0
- data/lib/crimson-falcon/models/figapi_email_address.rb +252 -0
- data/lib/crimson-falcon/models/figapi_file.rb +299 -0
- data/lib/crimson-falcon/models/figapi_indicator.rb +458 -0
- data/lib/crimson-falcon/models/figapi_ipv4.rb +269 -0
- data/lib/crimson-falcon/models/figapi_ipv6.rb +269 -0
- data/lib/crimson-falcon/models/figapi_mx_record.rb +284 -0
- data/lib/crimson-falcon/models/figapi_name_server.rb +254 -0
- data/lib/crimson-falcon/models/figapi_report.rb +235 -0
- data/lib/crimson-falcon/models/figapi_sector.rb +245 -0
- data/lib/crimson-falcon/models/figapi_threat.rb +235 -0
- data/lib/crimson-falcon/models/figapi_url.rb +247 -0
- data/lib/crimson-falcon/models/figapi_vulnerability.rb +374 -0
- data/lib/crimson-falcon/models/figapi_who_is.rb +261 -0
- data/lib/crimson-falcon/models/figapi_whois_record.rb +306 -0
- data/lib/crimson-falcon/models/figapi_x509_certificate.rb +297 -0
- data/lib/crimson-falcon/models/firewall_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/flightcontrolapi_get_roles_response.rb +2 -2
- data/lib/crimson-falcon/models/flightcontrolapi_user_grant_response.rb +2 -2
- data/lib/crimson-falcon/models/flightcontrolapi_user_response.rb +2 -2
- data/lib/crimson-falcon/models/fwmgr_msa_aggregate_query_request.rb +10 -1
- data/lib/crimson-falcon/models/fwmgr_msa_extended_bounds_spec.rb +253 -0
- data/lib/crimson-falcon/models/graph_condition.rb +12 -12
- data/lib/crimson-falcon/models/graph_configured_activity.rb +11 -1
- data/lib/crimson-falcon/models/graph_end.rb +26 -4
- data/lib/crimson-falcon/models/graph_multi.rb +38 -4
- data/lib/crimson-falcon/models/graph_sub_model.rb +5 -15
- data/lib/crimson-falcon/models/graph_validation_error.rb +24 -4
- data/lib/crimson-falcon/models/help.rb +239 -0
- data/lib/crimson-falcon/models/host_groups_members_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/host_groups_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/host_groups_update_group_req_v1.rb +1 -0
- data/lib/crimson-falcon/models/images_api_combined_image_export.rb +2 -2
- data/lib/crimson-falcon/models/images_api_customer_and_image.rb +2 -2
- data/lib/crimson-falcon/models/images_api_image_assessment_history.rb +2 -2
- data/lib/crimson-falcon/models/images_api_image_by_vulnerability_count.rb +2 -2
- data/lib/crimson-falcon/models/images_api_image_count.rb +2 -2
- data/lib/crimson-falcon/models/images_api_image_count_by_base_os.rb +2 -2
- data/lib/crimson-falcon/models/images_api_image_count_by_state.rb +2 -2
- data/lib/crimson-falcon/models/images_api_image_issues_summary.rb +2 -2
- data/lib/crimson-falcon/models/images_api_image_vulnerabilities_summary.rb +2 -2
- data/lib/crimson-falcon/models/images_ext_combined_images_response.rb +2 -2
- data/lib/crimson-falcon/models/ingestion_cve_exploit_reference.rb +267 -0
- data/lib/crimson-falcon/models/ingestion_cve_exploit_source.rb +283 -0
- data/lib/crimson-falcon/models/ingestion_ex_prt_rating_factors.rb +281 -0
- data/lib/crimson-falcon/models/ingestion_reference.rb +255 -0
- data/lib/crimson-falcon/models/internal_sensor_status.rb +10 -1
- data/lib/crimson-falcon/models/inventoryapi_surface_error.rb +260 -0
- data/lib/crimson-falcon/models/inventoryapi_user_external_asset.rb +255 -0
- data/lib/crimson-falcon/models/inventoryapi_user_external_asset_create.rb +257 -0
- data/lib/crimson-falcon/models/inventoryapi_user_external_asset_create_request_v1.rb +242 -0
- data/lib/crimson-falcon/models/inventoryapi_user_external_asset_create_response_v1.rb +266 -0
- data/lib/crimson-falcon/models/inventoryapi_user_external_asset_result.rb +322 -0
- data/lib/crimson-falcon/models/inventoryapidomain_subsidiary.rb +245 -0
- data/lib/crimson-falcon/models/ioa_exclusions_ioa_exclusions_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/iocapi_msa_reply_devices_ran_on.rb +1 -1
- data/lib/crimson-falcon/models/iocapi_msa_reply_ioc_devices_count.rb +1 -1
- data/lib/crimson-falcon/models/iocapi_msa_reply_processes_ran_on.rb +1 -1
- data/lib/crimson-falcon/models/jsonschema_condition_group_fields.rb +10 -1
- data/lib/crimson-falcon/models/jsonschema_duration_option.rb +253 -0
- data/lib/crimson-falcon/models/jsonschema_pivot.rb +19 -1
- data/lib/crimson-falcon/models/jsonschema_signals_extensions.rb +22 -4
- data/lib/crimson-falcon/models/jsonschema_sub_schema.rb +19 -1
- data/lib/crimson-falcon/models/jsonschema_ui_extensions.rb +315 -0
- data/lib/crimson-falcon/models/jsonschema_workflow_extensions.rb +11 -1
- data/lib/crimson-falcon/models/k8sassets_cluster_enrichment_data.rb +15 -1
- data/lib/crimson-falcon/models/k8sassets_cluster_enrichment_response.rb +2 -2
- data/lib/crimson-falcon/models/k8sassets_container_enrichment_response.rb +2 -2
- data/lib/crimson-falcon/models/k8sassets_deployment_enrichment_response.rb +2 -2
- data/lib/crimson-falcon/models/k8sassets_node_enrichment_response.rb +2 -2
- data/lib/crimson-falcon/models/k8sassets_pod_enrichment_response.rb +2 -2
- data/lib/crimson-falcon/models/k8sioms_kubernetes_iom_count_value.rb +21 -21
- data/lib/crimson-falcon/models/k8sioms_kubernetes_iom_entity_response.rb +2 -2
- data/lib/crimson-falcon/models/k8sioms_kubernetes_iom_field_value.rb +21 -21
- data/lib/crimson-falcon/models/k8sreg_create_aws_acc_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_get_aws_accounts_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_get_azure_bash_script_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_get_azure_subscriptions_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_get_azure_tenant_config_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_get_azure_tenant_info_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_get_clusters_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_get_locations_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_get_scripts_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_list_cluster_cloud_resp.rb +2 -2
- data/lib/crimson-falcon/models/k8sreg_regen_api_key_resp.rb +2 -2
- data/lib/crimson-falcon/models/main_discovery_response_v2.rb +2 -2
- data/lib/crimson-falcon/models/malquery_fuzzy_search_meta_info.rb +1 -1
- data/lib/crimson-falcon/models/malquery_query_meta_info.rb +1 -1
- data/lib/crimson-falcon/models/malquery_rate_limits_response.rb +1 -1
- data/lib/crimson-falcon/models/malquery_request_meta_info.rb +1 -1
- data/lib/crimson-falcon/models/malquery_samples_metadata_meta_info.rb +1 -1
- data/lib/crimson-falcon/models/messages_case.rb +43 -1
- data/lib/crimson-falcon/models/mlscannerapi_meta_info.rb +1 -1
- data/lib/crimson-falcon/models/mlscannerapi_query_response.rb +1 -1
- data/lib/crimson-falcon/models/mlscannerapi_scan_v1_response.rb +1 -1
- data/lib/crimson-falcon/models/model_user_input_read_response.rb +2 -2
- data/lib/crimson-falcon/models/models_account_status_response.rb +2 -2
- data/lib/crimson-falcon/models/models_aggregate_values_by_field_response.rb +2 -2
- data/lib/crimson-falcon/models/models_api_customer_and_image.rb +83 -4
- data/lib/crimson-falcon/models/models_api_image_combined_export.rb +68 -1
- data/lib/crimson-falcon/models/models_api_package_combined.rb +15 -1
- data/lib/crimson-falcon/models/models_api_package_combined_v2.rb +381 -0
- data/lib/crimson-falcon/models/models_api_vulnerability_combined.rb +15 -1
- data/lib/crimson-falcon/models/models_application_library.rb +13 -4
- data/lib/crimson-falcon/models/models_application_package_info_type.rb +1 -1
- data/lib/crimson-falcon/models/models_aws_accounts_v1.rb +2 -2
- data/lib/crimson-falcon/models/models_base_image_request.rb +270 -0
- data/lib/crimson-falcon/models/models_base_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/models_cluster.rb +43 -1
- data/lib/crimson-falcon/models/models_cluster_entity_response.rb +2 -2
- data/lib/crimson-falcon/models/models_cluster_info.rb +279 -0
- data/lib/crimson-falcon/models/models_cluster_with_failed_rules.rb +309 -0
- data/lib/crimson-falcon/models/models_compliance_by_rules.rb +269 -0
- data/lib/crimson-falcon/models/models_compliance_export_grouped_by_clusters_report.rb +435 -0
- data/lib/crimson-falcon/models/models_compliance_export_grouped_by_images_report.rb +379 -0
- data/lib/crimson-falcon/models/models_compliance_export_grouped_by_rules_report.rb +407 -0
- data/lib/crimson-falcon/models/models_container.rb +309 -221
- data/lib/crimson-falcon/models/models_container_coverage_response_entity.rb +2 -2
- data/lib/crimson-falcon/models/models_container_entity_response.rb +2 -2
- data/lib/crimson-falcon/models/models_container_image.rb +17 -1
- data/lib/crimson-falcon/models/models_container_runtime_pivot_response.rb +2 -2
- data/lib/crimson-falcon/models/models_create_base_images_request.rb +241 -0
- data/lib/crimson-falcon/models/models_create_deployment_input.rb +241 -0
- data/lib/crimson-falcon/models/models_customer_configurations_v1.rb +2 -2
- data/lib/crimson-falcon/models/models_delivery_settings.rb +372 -0
- data/lib/crimson-falcon/models/models_delivery_settings_entity_response.rb +266 -0
- data/lib/crimson-falcon/models/models_delivery_settings_input.rb +253 -0
- data/lib/crimson-falcon/models/models_delivery_settings_request.rb +241 -0
- data/lib/crimson-falcon/models/models_deployment.rb +361 -81
- data/lib/crimson-falcon/models/models_deployment_entity_response.rb +2 -2
- data/lib/crimson-falcon/models/models_deployment_resource.rb +281 -0
- data/lib/crimson-falcon/models/models_detection.rb +365 -0
- data/lib/crimson-falcon/models/models_detection_engine_info_type.rb +267 -0
- data/lib/crimson-falcon/models/models_detection_info_type.rb +239 -0
- data/lib/crimson-falcon/models/models_elf_binary.rb +281 -0
- data/lib/crimson-falcon/models/models_ext_api_image_combined.rb +29 -1
- data/lib/crimson-falcon/models/models_image_details.rb +281 -0
- data/lib/crimson-falcon/models/models_image_with_rules_failed.rb +337 -0
- data/lib/crimson-falcon/models/models_images_with_rules_failed.rb +255 -0
- data/lib/crimson-falcon/models/models_job_meta_data.rb +337 -0
- data/lib/crimson-falcon/models/models_message.rb +239 -0
- data/lib/crimson-falcon/models/models_mock_execution_create_request_v1.rb +259 -0
- data/lib/crimson-falcon/models/models_node.rb +52 -1
- data/lib/crimson-falcon/models/models_node_entity_response.rb +2 -2
- data/lib/crimson-falcon/models/models_non_compliant_assets_by_severity.rb +295 -0
- data/lib/crimson-falcon/models/models_os_info_type.rb +253 -0
- data/lib/crimson-falcon/models/models_package_vulnerability_type.rb +239 -0
- data/lib/crimson-falcon/models/models_partial_fingerprints.rb +239 -0
- data/lib/crimson-falcon/models/models_pod.rb +52 -1
- data/lib/crimson-falcon/models/models_pod_entity_response.rb +2 -2
- data/lib/crimson-falcon/models/models_policy_entity_response.rb +21 -21
- data/lib/crimson-falcon/models/models_policy_exclusion_entity_response.rb +21 -21
- data/lib/crimson-falcon/models/models_policy_group_entity_response.rb +21 -21
- data/lib/crimson-falcon/models/models_registry_credentials_response.rb +2 -2
- data/lib/crimson-falcon/models/models_result.rb +339 -0
- data/lib/crimson-falcon/models/models_result_location.rb +253 -0
- data/lib/crimson-falcon/models/models_result_location_properties.rb +253 -0
- data/lib/crimson-falcon/models/models_result_physical_location.rb +253 -0
- data/lib/crimson-falcon/models/models_result_physical_location_artifact_location.rb +239 -0
- data/lib/crimson-falcon/models/models_result_physical_location_region.rb +239 -0
- data/lib/crimson-falcon/models/models_result_properties.rb +365 -0
- data/lib/crimson-falcon/models/models_rule.rb +337 -0
- data/lib/crimson-falcon/models/models_rule_default_configuration.rb +239 -0
- data/lib/crimson-falcon/models/models_rule_properties.rb +669 -0
- data/lib/crimson-falcon/models/models_rule_status.rb +267 -0
- data/lib/crimson-falcon/models/models_rule_with_non_compliant_assets.rb +281 -0
- data/lib/crimson-falcon/models/models_rules_failed_by_severity.rb +281 -0
- data/lib/crimson-falcon/models/models_rules_with_non_compliant_assets.rb +255 -0
- data/lib/crimson-falcon/models/models_run.rb +255 -0
- data/lib/crimson-falcon/models/models_run_tool.rb +239 -0
- data/lib/crimson-falcon/models/models_run_tool_driver.rb +283 -0
- data/lib/crimson-falcon/models/models_scan_report_type.rb +333 -0
- data/lib/crimson-falcon/models/models_scan_results.rb +287 -0
- data/lib/crimson-falcon/models/models_snapshot_inventory_application.rb +351 -0
- data/lib/crimson-falcon/models/models_verify_access_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/models_vulnerabilities_type.rb +241 -0
- data/lib/crimson-falcon/models/models_vulnerability_product.rb +344 -0
- data/lib/crimson-falcon/models/models_vulnerability_sarif.rb +269 -0
- data/lib/crimson-falcon/models/models_vulnerability_type.rb +317 -0
- data/lib/crimson-falcon/models/msa_aggregate_query_request.rb +10 -1
- data/lib/crimson-falcon/models/msa_aggregates_response.rb +2 -2
- data/lib/crimson-falcon/models/msa_base_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/msa_entities_response.rb +2 -2
- data/lib/crimson-falcon/models/msa_entity_action_request_v3.rb +266 -0
- data/lib/crimson-falcon/models/msa_errors_only.rb +2 -2
- data/lib/crimson-falcon/models/msa_extended_bounds_spec.rb +253 -0
- data/lib/crimson-falcon/models/msa_facets_response.rb +2 -2
- data/lib/crimson-falcon/models/msa_query_response.rb +2 -2
- data/lib/crimson-falcon/models/msa_reply_affected_entities.rb +2 -2
- data/lib/crimson-falcon/models/msaspec_query_response.rb +2 -2
- data/lib/crimson-falcon/models/msaspec_response_fields.rb +2 -2
- data/lib/crimson-falcon/models/packages_api_combined_package.rb +2 -2
- data/lib/crimson-falcon/models/packages_api_combined_package_export.rb +2 -2
- data/lib/crimson-falcon/models/packages_api_combined_package_v2.rb +266 -0
- data/lib/crimson-falcon/models/packages_api_packages_by_vuln_count.rb +2 -2
- data/lib/crimson-falcon/models/parameter_activity_config_parameter_value.rb +11 -1
- data/lib/crimson-falcon/models/parameter_condition_field_parameter.rb +11 -1
- data/lib/crimson-falcon/models/parameter_condition_field_provision_parameter.rb +16 -1
- data/lib/crimson-falcon/models/patterndisposition_pattern_disposition.rb +85 -1
- data/lib/crimson-falcon/models/policies_delete_response.rb +2 -2
- data/lib/crimson-falcon/models/policies_policy.rb +15 -1
- data/lib/crimson-falcon/models/policies_precedence_response.rb +2 -2
- data/lib/crimson-falcon/models/policies_response.rb +2 -2
- data/lib/crimson-falcon/models/policyframework_benchmark.rb +253 -0
- data/lib/crimson-falcon/models/policyframework_control.rb +290 -0
- data/lib/crimson-falcon/models/prevention_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/processesapi_msa_process_detail_response.rb +2 -2
- data/lib/crimson-falcon/models/public_get_changes_response.rb +266 -0
- data/lib/crimson-falcon/models/quickscanpro_delete_file_response.rb +266 -0
- data/lib/crimson-falcon/models/quickscanpro_file_result.rb +305 -0
- data/lib/crimson-falcon/models/quickscanpro_file_upload_resource.rb +248 -0
- data/lib/crimson-falcon/models/quickscanpro_file_upload_response.rb +275 -0
- data/lib/crimson-falcon/models/quickscanpro_get_scan_result_resource.rb +267 -0
- data/lib/crimson-falcon/models/quickscanpro_get_scan_result_response.rb +266 -0
- data/lib/crimson-falcon/models/quickscanpro_launch_scan_request.rb +241 -0
- data/lib/crimson-falcon/models/quickscanpro_launch_scan_request_resource.rb +239 -0
- data/lib/crimson-falcon/models/quickscanpro_launch_scan_resource.rb +267 -0
- data/lib/crimson-falcon/models/quickscanpro_launch_scan_response.rb +275 -0
- data/lib/crimson-falcon/models/quickscanpro_mitre_attack.rb +288 -0
- data/lib/crimson-falcon/models/quickscanpro_mitre_attack_parent.rb +252 -0
- data/lib/crimson-falcon/models/quickscanpro_query_scan_results_response.rb +276 -0
- data/lib/crimson-falcon/models/quickscanpro_quota_resource.rb +262 -0
- data/lib/crimson-falcon/models/quickscanpro_scan_metadata.rb +281 -0
- data/lib/crimson-falcon/models/quickscanpro_scan_result.rb +345 -0
- data/lib/crimson-falcon/models/quickscanpro_url_result.rb +296 -0
- data/lib/crimson-falcon/models/registration_aws_account_ext_v2.rb +48 -1
- data/lib/crimson-falcon/models/registration_aws_account_patch.rb +51 -4
- data/lib/crimson-falcon/models/registration_aws_account_response_v2.rb +2 -7
- data/lib/crimson-falcon/models/registration_aws_console_url_response_v2.rb +266 -0
- data/lib/crimson-falcon/models/registration_aws_provision_get_account_script_response_v2.rb +2 -2
- data/lib/crimson-falcon/models/registration_azure_account_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_azure_download_certificate_response_v1.rb +2 -7
- data/lib/crimson-falcon/models/registration_azure_management_group_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_azure_provision_get_user_script_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_azure_tenant_configuration_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_azure_tenant_default_subscription_id_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_azure_tenant_ids_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_external_ioa_event_response.rb +1 -1
- data/lib/crimson-falcon/models/registration_external_iom_event_response.rb +1 -1
- data/lib/crimson-falcon/models/registration_external_iom_event_response_v2.rb +2 -2
- data/lib/crimson-falcon/models/registration_gcp_account_patch_request_v1.rb +241 -0
- data/lib/crimson-falcon/models/registration_gcp_account_patch_v1.rb +262 -0
- data/lib/crimson-falcon/models/registration_gcp_account_req_obj_v2.rb +12 -1
- data/lib/crimson-falcon/models/registration_gcp_account_response_ext_v2.rb +2 -2
- data/lib/crimson-falcon/models/registration_gcp_account_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_gcp_account_rsp_obj_v2.rb +12 -1
- data/lib/crimson-falcon/models/registration_gcp_account_validated_v1.rb +299 -0
- data/lib/crimson-falcon/models/registration_gcp_account_validation_req_obj_v1.rb +239 -0
- data/lib/crimson-falcon/models/registration_gcp_account_validation_request_v1.rb +241 -0
- data/lib/crimson-falcon/models/registration_gcp_account_validation_response_v1.rb +266 -0
- data/lib/crimson-falcon/models/registration_gcp_provision_get_user_script_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_gcp_service_account_ext_v1.rb +12 -1
- data/lib/crimson-falcon/models/registration_gcp_service_account_patch_request_v1.rb +241 -0
- data/lib/crimson-falcon/models/registration_gcp_service_account_patch_v1.rb +290 -0
- data/lib/crimson-falcon/models/registration_gcp_service_account_response_ext_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_gcp_service_account_validation_request_obj_v1.rb +290 -0
- data/lib/crimson-falcon/models/registration_gcp_service_account_validation_request_v1.rb +241 -0
- data/lib/crimson-falcon/models/registration_gcp_service_account_validation_response_v1.rb +266 -0
- data/lib/crimson-falcon/models/registration_iom_event_ids_response_v2.rb +1 -1
- data/lib/crimson-falcon/models/registration_iom_event_v2.rb +12 -1
- data/lib/crimson-falcon/models/registration_msa_meta_info_extension.rb +1 -1
- data/lib/crimson-falcon/models/registration_msa_paging_extension.rb +1 -1
- data/lib/crimson-falcon/models/registration_policy_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_policy_settings_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_scan_schedule_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/registration_static_scripts_response.rb +2 -7
- data/lib/crimson-falcon/models/releasecontents_release_content.rb +327 -0
- data/lib/crimson-falcon/models/releasecontents_release_content_version.rb +267 -0
- data/lib/crimson-falcon/models/releasenotes_entities_get_request.rb +241 -0
- data/lib/crimson-falcon/models/releasenotes_entities_get_response_wrapper.rb +269 -0
- data/lib/crimson-falcon/models/releasenotes_note_detail.rb +270 -0
- data/lib/crimson-falcon/models/releasenotes_release_note_v1.rb +303 -0
- data/lib/crimson-falcon/models/releasenotes_release_note_wrapper_v1.rb +271 -0
- data/lib/crimson-falcon/models/releases_release.rb +328 -0
- data/lib/crimson-falcon/models/releases_release_wrapper.rb +271 -0
- data/lib/crimson-falcon/models/remote_response_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/resources_app.rb +243 -0
- data/lib/crimson-falcon/models/resources_asset_graph.rb +243 -0
- data/lib/crimson-falcon/models/resources_cloud_context.rb +378 -0
- data/lib/crimson-falcon/models/resources_cloud_resource.rb +604 -0
- data/lib/crimson-falcon/models/resources_compliance.rb +307 -0
- data/lib/crimson-falcon/models/resources_detections.rb +291 -0
- data/lib/crimson-falcon/models/resources_host.rb +390 -0
- data/lib/crimson-falcon/models/resources_relationship.rb +261 -0
- data/lib/crimson-falcon/models/resources_vulnerability.rb +262 -0
- data/lib/crimson-falcon/models/rest_account_product_upsert_request_ext_v1.rb +255 -0
- data/lib/crimson-falcon/models/rest_aws_account_create_request_extv1.rb +241 -0
- data/lib/crimson-falcon/models/rest_aws_account_create_response_ext_v1.rb +266 -0
- data/lib/crimson-falcon/models/rest_aws_account_validated.rb +284 -0
- data/lib/crimson-falcon/models/rest_aws_account_validation_response.rb +266 -0
- data/lib/crimson-falcon/models/rest_azure_download_script_request_data.rb +239 -0
- data/lib/crimson-falcon/models/rest_azure_download_script_request_v1.rb +241 -0
- data/lib/crimson-falcon/models/rest_azure_provision_get_account_script_response_v1.rb +266 -0
- data/lib/crimson-falcon/models/rest_azure_script.rb +276 -0
- data/lib/crimson-falcon/models/rest_cloud_aws_account_create_ext_v1.rb +286 -0
- data/lib/crimson-falcon/models/rest_cursor_and_limit_meta_info.rb +289 -0
- data/lib/crimson-falcon/models/rest_cursor_meta_info.rb +280 -0
- data/lib/crimson-falcon/models/rest_cursor_response_fields.rb +250 -0
- data/lib/crimson-falcon/models/rest_paging.rb +262 -0
- data/lib/crimson-falcon/models/restapi_indicator_response.rb +271 -0
- data/lib/crimson-falcon/models/restapi_indicators_query_request.rb +255 -0
- data/lib/crimson-falcon/models/restapi_indicators_query_sort_request.rb +267 -0
- data/lib/crimson-falcon/models/rulegroups_delete_response.rb +2 -2
- data/lib/crimson-falcon/models/rulegroups_response.rb +2 -2
- data/lib/crimson-falcon/models/rulegroups_rule.rb +19 -1
- data/lib/crimson-falcon/models/rulegroups_rules_response.rb +2 -2
- data/lib/crimson-falcon/models/runtimedetections_detections_entity_response.rb +2 -2
- data/lib/crimson-falcon/models/sadomain_create_rule_request_v1.rb +49 -2
- data/lib/crimson-falcon/models/sadomain_rule.rb +62 -1
- data/lib/crimson-falcon/models/sadomain_typosquatting_base_domain.rb +19 -1
- data/lib/crimson-falcon/models/sadomain_typosquatting_component.rb +10 -1
- data/lib/crimson-falcon/models/sadomain_typosquatting_subdomain.rb +285 -0
- data/lib/crimson-falcon/models/scanreports_entities_response.rb +266 -0
- data/lib/crimson-falcon/models/scheduledexclusions_response.rb +2 -2
- data/lib/crimson-falcon/models/schema_sensor_event_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/schema_sensor_field_response_v1.rb +2 -2
- data/lib/crimson-falcon/models/sensor_update_builds_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/sensor_update_kernels_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/sensor_update_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/sensor_update_resp_v2.rb +2 -2
- data/lib/crimson-falcon/models/source_endpoint.rb +243 -0
- data/lib/crimson-falcon/models/source_user.rb +243 -0
- data/lib/crimson-falcon/models/state_online_state_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/string_wrapper.rb +266 -0
- data/lib/crimson-falcon/models/sv_exclusions_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/threatgraph_meta.rb +271 -0
- data/lib/crimson-falcon/models/threatgraph_paging.rb +257 -0
- data/lib/crimson-falcon/models/threatgraph_vertex_details.rb +327 -0
- data/lib/crimson-falcon/models/threatgraph_vertex_details_response.rb +271 -0
- data/lib/crimson-falcon/models/triggers_trigger_ext.rb +322 -0
- data/lib/crimson-falcon/models/triggers_trigger_ext_field.rb +305 -0
- data/lib/crimson-falcon/models/triggers_trigger_external_response.rb +271 -0
- data/lib/crimson-falcon/models/types_action_run.rb +299 -0
- data/lib/crimson-falcon/models/types_action_run_event.rb +324 -0
- data/lib/crimson-falcon/models/types_action_run_event_data.rb +360 -0
- data/lib/crimson-falcon/models/types_action_run_metadata.rb +288 -0
- data/lib/crimson-falcon/models/types_artifact.rb +261 -0
- data/lib/crimson-falcon/models/types_aws_api_gateway_reason_tag.rb +261 -0
- data/lib/crimson-falcon/models/types_aws_elastic_ip_reason_tag.rb +252 -0
- data/lib/crimson-falcon/models/types_aws_lambda_api_gateway_reason_tag.rb +261 -0
- data/lib/crimson-falcon/models/types_aws_load_balancer_reason_tag.rb +243 -0
- data/lib/crimson-falcon/models/types_aws_metadata.rb +243 -0
- data/lib/crimson-falcon/models/types_azure_application_gateway_reason_tag.rb +272 -0
- data/lib/crimson-falcon/models/types_azure_load_balancer_reason_tag.rb +261 -0
- data/lib/crimson-falcon/models/types_azure_site_metadata.rb +279 -0
- data/lib/crimson-falcon/models/types_azure_vm_metadata.rb +270 -0
- data/lib/crimson-falcon/models/types_business_application.rb +243 -0
- data/lib/crimson-falcon/models/types_cloud_function_metadata.rb +234 -0
- data/lib/crimson-falcon/models/types_composed_schedule.rb +299 -0
- data/lib/crimson-falcon/models/types_configuration.rb +279 -0
- data/lib/crimson-falcon/models/types_create_integration_request.rb +234 -0
- data/lib/crimson-falcon/models/types_create_integration_task_request.rb +234 -0
- data/lib/crimson-falcon/models/types_crowd_strike_cloud_security_metadata.rb +288 -0
- data/lib/crimson-falcon/models/types_data_type_db_reason_tag.rb +256 -0
- data/lib/crimson-falcon/models/types_data_type_mq_reason_tag.rb +245 -0
- data/lib/crimson-falcon/models/types_dependency.rb +306 -0
- data/lib/crimson-falcon/models/types_deployment_unit_descriptor.rb +263 -0
- data/lib/crimson-falcon/models/types_deployment_unit_service.rb +252 -0
- data/lib/crimson-falcon/models/types_deployment_units_tuple_filters.rb +247 -0
- data/lib/crimson-falcon/models/types_ec2_metadata.rb +243 -0
- data/lib/crimson-falcon/models/types_ecs_metadata.rb +270 -0
- data/lib/crimson-falcon/models/types_edit_tag_request.rb +255 -0
- data/lib/crimson-falcon/models/types_edit_unique_tag_request.rb +241 -0
- data/lib/crimson-falcon/models/types_error_message.rb +253 -0
- data/lib/crimson-falcon/models/types_executor_node.rb +342 -0
- data/lib/crimson-falcon/models/types_framework.rb +272 -0
- data/lib/crimson-falcon/models/types_gcp_metadata.rb +243 -0
- data/lib/crimson-falcon/models/types_generic_user_facing_request.rb +252 -0
- data/lib/crimson-falcon/models/types_get_executor_nodes_metadata_response.rb +278 -0
- data/lib/crimson-falcon/models/types_get_integration_tasks_metadata_response.rb +267 -0
- data/lib/crimson-falcon/models/types_get_services_related_entity.rb +261 -0
- data/lib/crimson-falcon/models/types_get_services_related_entity_filters.rb +252 -0
- data/lib/crimson-falcon/models/types_get_services_related_entity_group_by_fields.rb +236 -0
- data/lib/crimson-falcon/models/types_get_services_request.rb +321 -0
- data/lib/crimson-falcon/models/types_get_violation_types_response.rb +247 -0
- data/lib/crimson-falcon/models/types_host_metadata.rb +234 -0
- data/lib/crimson-falcon/models/types_integration.rb +297 -0
- data/lib/crimson-falcon/models/types_integration_response.rb +243 -0
- data/lib/crimson-falcon/models/types_integration_task.rb +369 -0
- data/lib/crimson-falcon/models/types_integration_task_response.rb +243 -0
- data/lib/crimson-falcon/models/types_integration_task_test_connection_response.rb +234 -0
- data/lib/crimson-falcon/models/types_integration_task_type.rb +281 -0
- data/lib/crimson-falcon/models/types_integration_type.rb +270 -0
- data/lib/crimson-falcon/models/types_interface.rb +548 -0
- data/lib/crimson-falcon/models/types_interface_service.rb +263 -0
- data/lib/crimson-falcon/models/types_k8_s_load_balancer_reason_tag.rb +263 -0
- data/lib/crimson-falcon/models/types_k8_s_metadata.rb +252 -0
- data/lib/crimson-falcon/models/types_k8_s_pod_settings.rb +256 -0
- data/lib/crimson-falcon/models/types_key_value.rb +243 -0
- data/lib/crimson-falcon/models/types_lambda_metadata.rb +243 -0
- data/lib/crimson-falcon/models/types_library.rb +290 -0
- data/lib/crimson-falcon/models/types_list_executor_nodes_response.rb +236 -0
- data/lib/crimson-falcon/models/types_list_integration_tasks_response.rb +236 -0
- data/lib/crimson-falcon/models/types_list_integration_types_response.rb +236 -0
- data/lib/crimson-falcon/models/types_list_integrations_response.rb +236 -0
- data/lib/crimson-falcon/models/types_order_by.rb +243 -0
- data/lib/crimson-falcon/models/types_paginate.rb +263 -0
- data/lib/crimson-falcon/models/types_pagination.rb +263 -0
- data/lib/crimson-falcon/models/types_policy_rules_condition.rb +247 -0
- data/lib/crimson-falcon/models/types_policy_rules_create_body.rb +331 -0
- data/lib/crimson-falcon/models/types_query_request.rb +266 -0
- data/lib/crimson-falcon/models/types_query_request_select_fields.rb +256 -0
- data/lib/crimson-falcon/models/types_query_result.rb +243 -0
- data/lib/crimson-falcon/models/types_reason_tag.rb +315 -0
- data/lib/crimson-falcon/models/types_remediation.rb +243 -0
- data/lib/crimson-falcon/models/types_results_filter.rb +243 -0
- data/lib/crimson-falcon/models/types_run_integration_task_request.rb +279 -0
- data/lib/crimson-falcon/models/types_service_now_deployment.rb +253 -0
- data/lib/crimson-falcon/models/types_service_now_deployments_response.rb +269 -0
- data/lib/crimson-falcon/models/types_service_now_service.rb +549 -0
- data/lib/crimson-falcon/models/types_service_now_service_data.rb +355 -0
- data/lib/crimson-falcon/models/types_service_now_service_deployments.rb +255 -0
- data/lib/crimson-falcon/models/types_service_now_services_response.rb +269 -0
- data/lib/crimson-falcon/models/types_service_service_artifact.rb +245 -0
- data/lib/crimson-falcon/models/types_service_service_business_application.rb +245 -0
- data/lib/crimson-falcon/models/types_service_service_configuration.rb +245 -0
- data/lib/crimson-falcon/models/types_service_service_dependency.rb +245 -0
- data/lib/crimson-falcon/models/types_service_service_framework.rb +245 -0
- data/lib/crimson-falcon/models/types_service_service_interface.rb +245 -0
- data/lib/crimson-falcon/models/types_service_service_library.rb +245 -0
- data/lib/crimson-falcon/models/types_service_service_tag.rb +245 -0
- data/lib/crimson-falcon/models/types_service_service_traits.rb +245 -0
- data/lib/crimson-falcon/models/types_snyk_metadata.rb +252 -0
- data/lib/crimson-falcon/models/types_sonatype_metadata.rb +261 -0
- data/lib/crimson-falcon/models/types_struct.rb +241 -0
- data/lib/crimson-falcon/models/types_tag.rb +310 -0
- data/lib/crimson-falcon/models/types_tag_data.rb +274 -0
- data/lib/crimson-falcon/models/types_tag_entry.rb +257 -0
- data/lib/crimson-falcon/models/types_tags_data_response.rb +245 -0
- data/lib/crimson-falcon/models/types_timestamp.rb +253 -0
- data/lib/crimson-falcon/models/types_trait.rb +252 -0
- data/lib/crimson-falcon/models/types_tuple_to_string.rb +243 -0
- data/lib/crimson-falcon/models/types_unique_tag_entry.rb +261 -0
- data/lib/crimson-falcon/models/types_update_integration_request.rb +245 -0
- data/lib/crimson-falcon/models/types_update_integration_task_request.rb +234 -0
- data/lib/crimson-falcon/models/types_upsert_business_application_request.rb +255 -0
- data/lib/crimson-falcon/models/unidentifiedcontainers_unidentified_container_api_response.rb +2 -2
- data/lib/crimson-falcon/models/unidentifiedcontainers_unidentified_containers_count_value.rb +2 -2
- data/lib/crimson-falcon/models/uninstall_token_resp_v1.rb +2 -2
- data/lib/crimson-falcon/models/v2_activity.rb +10 -1
- data/lib/crimson-falcon/models/v2_condition.rb +10 -6
- data/lib/crimson-falcon/models/v2_condition_groups.rb +257 -0
- data/lib/crimson-falcon/models/v2_definition.rb +60 -4
- data/lib/crimson-falcon/models/v2_for_loop.rb +60 -4
- data/lib/crimson-falcon/models/v2_loop.rb +10 -1
- data/lib/crimson-falcon/models/v2_model.rb +338 -0
- data/lib/crimson-falcon/models/v2_parameters.rb +1 -1
- data/lib/crimson-falcon/models/vulncheck_epss.rb +253 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_botnets.rb +269 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_counts.rb +267 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_cve_reference.rb +269 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_details.rb +404 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_ransomware.rb +257 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_ransomware_data.rb +253 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_record.rb +297 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_threat_actor.rb +305 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_timeline.rb +342 -0
- data/lib/crimson-falcon/models/vulncheck_exploit_trending.rb +239 -0
- data/lib/crimson-falcon/models/vulncheck_threat_actor_vendor_name.rb +252 -0
- data/lib/crimson-falcon/models/vulnerabilities_api_combined_vulnerability.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_api_combined_vulnerability_details.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_api_combined_vulnerability_info.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_api_vuln_by_image_count.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_api_vuln_by_publication.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_api_vuln_count.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_api_vuln_count_by_actively_exploited.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_api_vuln_count_by_csp_rating.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_api_vuln_count_by_cvss_score.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_api_vuln_count_by_severity.rb +2 -2
- data/lib/crimson-falcon/models/vulnerabilities_vulnerability_entity_sarif_response.rb +266 -0
- data/lib/crimson-falcon/models/workflow_request.rb +241 -0
- data/lib/crimson-falcon/models/workflow_response.rb +261 -0
- data/lib/crimson-falcon/version.rb +2 -2
- data/lib/crimson-falcon.rb +587 -105
- data/spec/api/alerts_spec.rb +163 -0
- data/spec/api/api_integrations_spec.rb +88 -0
- data/spec/api/aspm_spec.rb +364 -0
- data/spec/api/certificate_based_exclusions_spec.rb +122 -0
- data/spec/api/cloud_aws_registration_spec.rb +128 -0
- data/spec/api/cloud_azure_registration_spec.rb +63 -0
- data/spec/api/cloud_connect_aws_spec.rb +157 -0
- data/spec/api/cloud_security_assets_spec.rb +78 -0
- data/spec/api/cloud_snapshots_spec.rb +120 -0
- data/spec/api/compliance_assessments_spec.rb +175 -0
- data/spec/api/configuration_assessment_evaluation_logic_spec.rb +63 -0
- data/spec/api/configuration_assessment_spec.rb +78 -0
- data/spec/api/container_alerts_spec.rb +88 -0
- data/spec/api/container_detections_spec.rb +125 -0
- data/spec/api/container_images_spec.rb +217 -0
- data/spec/api/container_packages_spec.rb +134 -0
- data/spec/api/container_vulnerabilities_spec.rb +184 -0
- data/spec/api/content_update_policies_spec.rb +177 -0
- data/spec/api/correlation_rules_spec.rb +137 -0
- data/spec/api/cspg_iac_spec.rb +62 -0
- data/spec/api/cspm_registration_spec.rb +547 -0
- data/spec/api/custom_ioa_spec.rb +290 -0
- data/spec/api/custom_storage_spec.rb +219 -0
- data/spec/api/d4c_registration_spec.rb +309 -0
- data/spec/api/datascanner_spec.rb +85 -0
- data/spec/api/delivery_settings_spec.rb +73 -0
- data/spec/api/deployments_spec.rb +65 -0
- data/spec/api/detects_spec.rb +100 -0
- data/spec/api/device_content_spec.rb +77 -0
- data/spec/api/device_control_policies_spec.rb +198 -0
- data/spec/api/discover_iot_spec.rb +91 -0
- data/spec/api/discover_spec.rb +193 -0
- data/spec/api/downloads_spec.rb +68 -0
- data/spec/api/drift_indicators_spec.rb +114 -0
- data/spec/api/event_schema_spec.rb +87 -0
- data/spec/api/event_streams_spec.rb +77 -0
- data/spec/api/exposure_management_spec.rb +180 -0
- data/spec/api/falcon_complete_dashboard_spec.rb +297 -0
- data/spec/api/falcon_container_cli_spec.rb +63 -0
- data/spec/api/falcon_container_image_spec.rb +154 -0
- data/spec/api/falcon_container_spec.rb +62 -0
- data/spec/api/falconx_sandbox_spec.rb +236 -0
- data/spec/api/field_schema_spec.rb +77 -0
- data/spec/api/filevantage_spec.rb +450 -0
- data/spec/api/firewall_management_spec.rb +462 -0
- data/spec/api/firewall_policies_spec.rb +178 -0
- data/spec/api/foundry_logscale_spec.rb +265 -0
- data/spec/api/handle_spec.rb +62 -0
- data/spec/api/host_group_spec.rb +167 -0
- data/spec/api/host_migration_spec.rb +180 -0
- data/spec/api/hosts_spec.rb +197 -0
- data/spec/api/humio_auth_proxy_spec.rb +137 -0
- data/spec/api/identity_entities_spec.rb +88 -0
- data/spec/api/identity_protection_spec.rb +113 -0
- data/spec/api/image_assessment_policies_spec.rb +172 -0
- data/spec/api/incidents_spec.rb +129 -0
- data/spec/api/installation_tokens_settings_spec.rb +63 -0
- data/spec/api/installation_tokens_spec.rb +146 -0
- data/spec/api/intel_spec.rb +366 -0
- data/spec/api/intelligence_indicator_graph_spec.rb +66 -0
- data/spec/api/ioa_exclusions_spec.rb +113 -0
- data/spec/api/ioc_spec.rb +259 -0
- data/spec/api/iocs_spec.rb +104 -0
- data/spec/api/kubernetes_protection_spec.rb +778 -0
- data/spec/api/lookup_files_spec.rb +80 -0
- data/spec/api/malquery_spec.rb +150 -0
- data/spec/api/message_center_spec.rb +172 -0
- data/spec/api/ml_exclusions_spec.rb +111 -0
- data/spec/api/mobile_enrollment_spec.rb +78 -0
- data/spec/api/mssp_spec.rb +402 -0
- data/spec/api/oauth2_spec.rb +77 -0
- data/spec/api/ods_spec.rb +241 -0
- data/spec/api/overwatch_dashboard_spec.rb +107 -0
- data/spec/api/prevention_policies_spec.rb +177 -0
- data/spec/api/quarantine_spec.rb +122 -0
- data/spec/api/quick_scan_pro_spec.rb +122 -0
- data/spec/api/quick_scan_spec.rb +99 -0
- data/spec/api/real_time_response_admin_spec.rb +257 -0
- data/spec/api/real_time_response_audit_spec.rb +67 -0
- data/spec/api/real_time_response_spec.rb +333 -0
- data/spec/api/recon_spec.rb +358 -0
- data/spec/api/release_notes_spec.rb +97 -0
- data/spec/api/releases_spec.rb +68 -0
- data/spec/api/report_executions_spec.rb +100 -0
- data/spec/api/response_policies_spec.rb +177 -0
- data/spec/api/runtime_detections_spec.rb +66 -0
- data/spec/api/sample_uploads_spec.rb +191 -0
- data/spec/api/scheduled_reports_spec.rb +89 -0
- data/spec/api/sensor_download_spec.rb +162 -0
- data/spec/api/sensor_update_policies_spec.rb +274 -0
- data/spec/api/sensor_usage_spec.rb +63 -0
- data/spec/api/sensor_visibility_exclusions_spec.rb +111 -0
- data/spec/api/spotlight_evaluation_logic_spec.rb +91 -0
- data/spec/api/spotlight_vulnerabilities_spec.rb +103 -0
- data/spec/api/threatgraph_spec.rb +136 -0
- data/spec/api/unidentified_containers_spec.rb +88 -0
- data/spec/api/user_management_spec.rb +308 -0
- data/spec/api/vulnerabilities_spec.rb +66 -0
- data/spec/api/workflows_spec.rb +274 -0
- data/spec/api/zero_trust_assessment_spec.rb +87 -0
- data/spec/models/actions_action_response_spec.rb +63 -0
- data/spec/models/actions_action_spec.rb +99 -0
- data/spec/models/actions_create_action_request_spec.rb +63 -0
- data/spec/models/actions_get_action_response_spec.rb +63 -0
- data/spec/models/activities_activity_ext_field_spec.rb +93 -0
- data/spec/models/activities_activity_external_response_spec.rb +63 -0
- data/spec/models/activities_activity_spec.rb +165 -0
- data/spec/models/activity_spec.rb +57 -0
- data/spec/models/alerts_container_alerts_count_value_spec.rb +3 -3
- data/spec/models/api_cert_based_exclusion_create_req_v1_spec.rb +117 -0
- data/spec/models/api_cert_based_exclusion_resp_v1_spec.rb +63 -0
- data/spec/models/api_cert_based_exclusion_update_req_v1_spec.rb +123 -0
- data/spec/models/api_cert_based_exclusion_v1_spec.rb +129 -0
- data/spec/models/api_cert_based_exclusions_create_req_v1_spec.rb +51 -0
- data/spec/models/api_cert_based_exclusions_update_req_v1_spec.rb +51 -0
- data/spec/models/api_certificate_req_v1_spec.rb +81 -0
- data/spec/models/api_certificate_v1_spec.rb +81 -0
- data/spec/models/api_certificates_response_v1_spec.rb +51 -0
- data/spec/models/api_create_migration_request_v1_spec.rb +69 -0
- data/spec/models/api_create_migration_response_v1_spec.rb +63 -0
- data/spec/models/api_create_rule_operation_v1_spec.rb +63 -0
- data/spec/models/api_event_spec.rb +75 -0
- data/spec/models/api_get_entities_rules_response_v1_spec.rb +63 -0
- data/spec/models/api_get_host_migration_response_v1_spec.rb +63 -0
- data/spec/models/api_get_migration_destinations_request_body_v1_spec.rb +57 -0
- data/spec/models/api_get_migration_destinations_response_v1_spec.rb +63 -0
- data/spec/models/api_get_migrations_response_v1_spec.rb +63 -0
- data/spec/models/api_host_migration_spec.rb +129 -0
- data/spec/models/api_hourly_average_response_spec.rb +63 -0
- data/spec/models/api_mfa_resource_ids_response_spec.rb +69 -0
- data/spec/models/api_migrate_hosts_info_spec.rb +63 -0
- data/spec/models/api_migration_spec.rb +117 -0
- data/spec/models/api_object_metadata_spec.rb +6 -0
- data/spec/models/api_patch_rule_operation_v1_spec.rb +63 -0
- data/spec/models/api_patch_rule_search_v1_spec.rb +69 -0
- data/spec/models/api_post_enrollment_details_v4_spec.rb +63 -0
- data/spec/models/api_resp_certificates_v1_spec.rb +63 -0
- data/spec/models/api_rule_create_request_v1_spec.rb +111 -0
- data/spec/models/api_rule_operation_v1_spec.rb +69 -0
- data/spec/models/api_rule_patch_request_v1_spec.rb +99 -0
- data/spec/models/api_rule_schedule_v1_patch_spec.rb +51 -0
- data/spec/models/api_rule_schedule_v1_spec.rb +51 -0
- data/spec/models/api_rule_search_v1_spec.rb +69 -0
- data/spec/models/api_rule_update_v2_spec.rb +93 -0
- data/spec/models/api_rule_updates_request_v2_spec.rb +69 -0
- data/spec/models/api_rule_v1_spec.rb +16 -34
- data/spec/models/api_weekly_average_response_spec.rb +63 -0
- data/spec/models/apidomain_query_response_v1_spec.rb +6 -0
- data/spec/models/apidomain_saved_search_execute_request_v1_spec.rb +0 -6
- data/spec/models/assets_get_resource_ids_response_spec.rb +63 -0
- data/spec/models/assets_get_resources_response_spec.rb +63 -0
- data/spec/models/base_set_content_update_policy_precedence_req_v1_spec.rb +51 -0
- data/spec/models/changes_change_spec.rb +12 -0
- data/spec/models/changes_host_spec.rb +6 -0
- data/spec/models/changes_permissions_mac_spec.rb +81 -0
- data/spec/models/client_job_status_spec.rb +6 -0
- data/spec/models/common_count_as_resource_spec.rb +0 -6
- data/spec/models/common_count_response_spec.rb +3 -3
- data/spec/models/common_credentials_spec.rb +51 -0
- data/spec/models/common_entities_response_spec.rb +63 -0
- data/spec/models/common_registry_credentials_response_spec.rb +63 -0
- data/spec/models/content_update_create_policies_req_v1_spec.rb +51 -0
- data/spec/models/content_update_create_policy_req_v1_spec.rb +63 -0
- data/spec/models/content_update_ring_assignment_settings_v1_spec.rb +57 -0
- data/spec/models/content_update_settings_v1_spec.rb +51 -0
- data/spec/models/content_update_update_policies_req_v1_spec.rb +51 -0
- data/spec/models/content_update_update_policy_req_v1_spec.rb +69 -0
- data/spec/models/contentchanges_change_contents_response_spec.rb +63 -0
- data/spec/models/contentchanges_content_diff_spec.rb +69 -0
- data/spec/models/contentchanges_content_spec.rb +57 -0
- data/spec/models/custom_storage_object_keys_spec.rb +63 -0
- data/spec/models/custom_storage_response_spec.rb +63 -0
- data/spec/models/dataclassifications_label_spec.rb +63 -0
- data/spec/models/dataclassifications_response_spec.rb +75 -0
- data/spec/models/dataclassifications_tag_spec.rb +69 -0
- data/spec/models/definitions_definition_ext_spec.rb +103 -1
- data/spec/models/deployments_api_deployment_ring_view_spec.rb +87 -0
- data/spec/models/deployments_api_deployment_view_spec.rb +93 -0
- data/spec/models/deployments_api_deployment_view_wrapper_spec.rb +63 -0
- data/spec/models/deployments_entity_response_spec.rb +63 -0
- data/spec/models/destination_spec.rb +57 -0
- data/spec/models/destinations_migration_destination_spec.rb +57 -0
- data/spec/models/detections_api_assessment_detections_spec.rb +3 -3
- data/spec/models/detections_api_combined_detections_spec.rb +3 -3
- data/spec/models/detections_api_detections_count_spec.rb +3 -3
- data/spec/models/detects_external_alert_spec.rb +273 -0
- data/spec/models/detectsapi_post_combined_alerts_v1_meta_spec.rb +69 -0
- data/spec/models/detectsapi_post_combined_alerts_v1_paging_spec.rb +63 -0
- data/spec/models/detectsapi_post_combined_alerts_v1_request_swagger_spec.rb +69 -0
- data/spec/models/detectsapi_post_combined_alerts_v1_response_swagger_spec.rb +63 -0
- data/spec/models/detectsapi_post_entities_alerts_v1_response_swagger_spec.rb +63 -0
- data/spec/models/detectsapi_post_entities_alerts_v2_response_swagger_spec.rb +63 -0
- data/spec/models/device_control_usb_class_exceptions_req_v1_spec.rb +1 -1
- data/spec/models/device_control_usb_class_exceptions_response_spec.rb +1 -1
- data/spec/models/device_device_spec.rb +36 -0
- data/spec/models/device_mapped_device_policies_spec.rb +24 -0
- data/spec/models/deviceapi_device_swagger_spec.rb +24 -0
- data/spec/models/devicecontent_content_category_spec.rb +51 -0
- data/spec/models/devicecontent_state_spec.rb +117 -0
- data/spec/models/devicecontentapi_entities_response_v1_spec.rb +63 -0
- data/spec/models/devicecontentapi_query_response_v1_spec.rb +63 -0
- data/spec/models/domain_aggregate_cluster_assessments_response_spec.rb +63 -0
- data/spec/models/domain_aggregate_failed_asset_count_by_severity_response_spec.rb +63 -0
- data/spec/models/domain_aggregate_failed_assets_by_rules_response_spec.rb +63 -0
- data/spec/models/domain_aggregate_failed_rules_by_clusters_response_spec.rb +63 -0
- data/spec/models/domain_aggregate_failed_rules_by_images_response_spec.rb +63 -0
- data/spec/models/domain_aggregate_failed_rules_count_by_severity_response_spec.rb +63 -0
- data/spec/models/domain_aggregate_image_assessments_response_spec.rb +63 -0
- data/spec/models/domain_aggregate_rules_assessments_response_spec.rb +63 -0
- data/spec/models/domain_aggregate_rules_by_status_response_spec.rb +63 -0
- data/spec/models/domain_api_compliance_control_v1_spec.rb +57 -0
- data/spec/models/domain_api_compliance_mapping_v1_spec.rb +63 -0
- data/spec/models/domain_api_error_spec.rb +3 -3
- data/spec/models/domain_api_evaluation_logic_item_v1_spec.rb +6 -6
- data/spec/models/domain_api_evaluation_logic_v1_spec.rb +2 -14
- data/spec/models/domain_api_finding_rule_v1_spec.rb +6 -0
- data/spec/models/domain_api_host_info_facet_v1_spec.rb +6 -0
- data/spec/models/domain_api_remediation_info_spec.rb +63 -0
- data/spec/models/domain_api_remediation_v2_spec.rb +12 -0
- data/spec/models/domain_api_rule_details_v1_spec.rb +6 -0
- data/spec/models/domain_api_vulnerability_app_v2_spec.rb +6 -0
- data/spec/models/domain_api_vulnerability_cve_details_facet_v2_spec.rb +6 -0
- data/spec/models/domain_api_vulnerability_extended_app_v2_spec.rb +18 -0
- data/spec/models/domain_api_vulnerability_host_facet_v2_spec.rb +18 -0
- data/spec/models/domain_api_vulnerability_service_v2_spec.rb +63 -0
- data/spec/models/domain_api_vulnerability_v2_spec.rb +12 -0
- data/spec/models/domain_assessment_paging_spec.rb +69 -0
- data/spec/models/domain_aws_account_resource_metadata_spec.rb +117 -0
- data/spec/models/domain_aws_account_v2_spec.rb +30 -0
- data/spec/models/domain_aws_inventory_filter_setting_spec.rb +63 -0
- data/spec/models/domain_base_api_vulnerability_v2_spec.rb +12 -0
- data/spec/models/domain_behavior_spec.rb +6 -0
- data/spec/models/domain_benchmark_spec.rb +6 -0
- data/spec/models/domain_case_creation_request_v2_spec.rb +12 -0
- data/spec/models/domain_cipher_spec.rb +63 -0
- data/spec/models/domain_cisa_known_exploited_vulnerabilities_info_spec.rb +57 -0
- data/spec/models/domain_cloud_aws_account_v1_spec.rb +189 -0
- data/spec/models/domain_cloud_condition_spec.rb +93 -0
- data/spec/models/domain_compliance_findings_grouped_by_images_with_scroll_spec.rb +57 -0
- data/spec/models/domain_compliance_spec.rb +75 -0
- data/spec/models/domain_condition_spec.rb +12 -0
- data/spec/models/domain_config_v1_spec.rb +75 -0
- data/spec/models/domain_configs_v1_spec.rb +63 -0
- data/spec/models/domain_content_package_spec.rb +51 -0
- data/spec/models/domain_content_update_policy_resp_v1_spec.rb +153 -0
- data/spec/models/domain_content_update_settings_v1_spec.rb +51 -0
- data/spec/models/domain_control_benchmark_spec.rb +57 -0
- data/spec/models/domain_control_spec.rb +81 -0
- data/spec/models/domain_cps_rating_history_entry_spec.rb +57 -0
- data/spec/models/domain_cps_rating_indicator_spec.rb +63 -0
- data/spec/models/domain_cps_rating_spec.rb +75 -0
- data/spec/models/domain_create_submission_v1_error_response_spec.rb +71 -0
- data/spec/models/domain_credentials_spec.rb +1 -13
- data/spec/models/domain_cve_exploit_reference_spec.rb +63 -0
- data/spec/models/domain_cve_exploit_source_spec.rb +69 -0
- data/spec/models/domain_cve_exploit_spec.rb +69 -0
- data/spec/models/domain_cve_spec.rb +195 -0
- data/spec/models/domain_cvssv2_spec.rb +75 -0
- data/spec/models/domain_cvssv3_spec.rb +123 -0
- data/spec/models/domain_denormalized_adversary_reference_spec.rb +63 -0
- data/spec/models/domain_denormalized_country_spec.rb +57 -0
- data/spec/models/domain_denormalized_customer_target_spec.rb +51 -0
- data/spec/models/domain_denormalized_report_reference_spec.rb +63 -0
- data/spec/models/domain_denormalized_sector_spec.rb +57 -0
- data/spec/models/domain_denormalized_threat_reference_spec.rb +57 -0
- data/spec/models/domain_denormalized_threat_used_mitre_spec.rb +87 -0
- data/spec/models/domain_device_spec.rb +1 -1
- data/spec/models/domain_discover_api_active_discovery_host_spec.rb +12 -0
- data/spec/models/domain_discover_api_application_browser_extension_installation_spec.rb +99 -0
- data/spec/models/domain_discover_api_application_browser_extension_spec.rb +93 -0
- data/spec/models/domain_discover_api_application_host_spec.rb +6 -0
- data/spec/models/domain_discover_api_application_spec.rb +12 -0
- data/spec/models/domain_discover_api_combined_applications_response_spec.rb +63 -0
- data/spec/models/domain_discover_api_combined_hosts_response_spec.rb +63 -0
- data/spec/models/domain_discover_api_host_spec.rb +168 -0
- data/spec/models/domain_discover_api_meta_info_spec.rb +75 -0
- data/spec/models/domain_discover_api_paging_spec.rb +63 -0
- data/spec/models/domain_discover_api_response_spec.rb +63 -0
- data/spec/models/domain_discover_apiio_t_host_spec.rb +308 -20
- data/spec/models/domain_discover_apiio_t_host_triage_spec.rb +81 -0
- data/spec/models/domain_discover_params_spec.rb +6 -0
- data/spec/models/domain_execute_command_request_v1_spec.rb +51 -0
- data/spec/models/domain_execute_command_result_v1_spec.rb +75 -0
- data/spec/models/domain_execute_command_results_v1_spec.rb +63 -0
- data/spec/models/domain_execute_command_v1_spec.rb +87 -0
- data/spec/models/domain_execution_metadata_summary_spec.rb +6 -0
- data/spec/models/domain_execution_metadata_v1_spec.rb +6 -0
- data/spec/models/domain_external_asset_api_delete_request_v1_spec.rb +51 -0
- data/spec/models/domain_external_asset_api_patch_request_v1_spec.rb +51 -0
- data/spec/models/domain_external_asset_application_spec.rb +75 -0
- data/spec/models/domain_external_asset_certificate_entity_identifiers_spec.rb +141 -0
- data/spec/models/domain_external_asset_certificate_spec.rb +105 -0
- data/spec/models/domain_external_asset_cloud_vm_spec.rb +117 -0
- data/spec/models/domain_external_asset_discovery_attributes_spec.rb +57 -0
- data/spec/models/domain_external_asset_discovery_path_attributes_spec.rb +51 -0
- data/spec/models/domain_external_asset_discovery_step_attributes_spec.rb +75 -0
- data/spec/models/domain_external_asset_geographical_location_spec.rb +99 -0
- data/spec/models/domain_external_asset_http_attributes_spec.rb +75 -0
- data/spec/models/domain_external_asset_redirect_step_attributes_spec.rb +69 -0
- data/spec/models/domain_external_asset_service_blobs_links_spec.rb +69 -0
- data/spec/models/domain_external_asset_service_spec.rb +153 -0
- data/spec/models/domain_external_asset_ssl_record_spec.rb +93 -0
- data/spec/models/domain_external_asset_subsidiary_spec.rb +57 -0
- data/spec/models/domain_external_assets_api_patch_spec.rb +75 -0
- data/spec/models/domain_external_assets_api_triage_patch_spec.rb +69 -0
- data/spec/models/domain_external_assets_api_triage_spec.rb +81 -0
- data/spec/models/domain_external_assets_api_type_v1_spec.rb +63 -0
- data/spec/models/domain_external_assets_blob_api_type_v1_spec.rb +63 -0
- data/spec/models/domain_external_export_job_spec.rb +81 -0
- data/spec/models/domain_feature_permission_spec.rb +57 -0
- data/spec/models/domain_feature_status_spec.rb +57 -0
- data/spec/models/domain_fem_dns_domain_spec.rb +81 -0
- data/spec/models/domain_fem_ecosystem_subsidiaries_entities_response_spec.rb +57 -0
- data/spec/models/domain_fem_ecosystem_subsidiaries_meta_spec.rb +57 -0
- data/spec/models/domain_fem_ecosystem_subsidiaries_query_response_spec.rb +57 -0
- data/spec/models/domain_fem_ecosystem_subsidiaries_response_fields_spec.rb +57 -0
- data/spec/models/domain_fem_ecosystem_subsidiary_spec.rb +99 -0
- data/spec/models/domain_fem_external_asset_spec.rb +183 -0
- data/spec/models/domain_fem_external_ip_spec.rb +105 -0
- data/spec/models/domain_gcp_account_v1_spec.rb +12 -0
- data/spec/models/domain_geo_point_spec.rb +57 -0
- data/spec/models/domain_incident_spec.rb +6 -0
- data/spec/models/domain_init_response_spec.rb +12 -0
- data/spec/models/domain_item_details_v1_spec.rb +6 -0
- data/spec/models/domain_kestrel_params_spec.rb +51 -0
- data/spec/models/domain_lookup_file_spec.rb +147 -0
- data/spec/models/domain_lookup_file_wrapper_spec.rb +63 -0
- data/spec/models/domain_malware_document_spec.rb +351 -0
- data/spec/models/domain_malware_environment_aggregates_spec.rb +63 -0
- data/spec/models/domain_malware_response_spec.rb +63 -0
- data/spec/models/domain_marketplace_credentials_spec.rb +63 -0
- data/spec/models/domain_meta_info_spec.rb +0 -12
- data/spec/models/domain_msa_meta_info_spec.rb +57 -0
- data/spec/models/domain_news_document_spec.rb +6 -0
- data/spec/models/domain_notification_v1_spec.rb +18 -0
- data/spec/models/domain_platform_spec.rb +1 -1
- data/spec/models/domain_policy_info_spec.rb +36 -0
- data/spec/models/domain_product_features_spec.rb +57 -0
- data/spec/models/domain_product_features_status_spec.rb +57 -0
- data/spec/models/domain_product_permission_spec.rb +57 -0
- data/spec/models/domain_reference_spec.rb +57 -0
- data/spec/models/domain_report_execution_summary_v1_spec.rb +6 -0
- data/spec/models/domain_report_execution_v1_spec.rb +6 -0
- data/spec/models/domain_report_metadata_spec.rb +6 -0
- data/spec/models/domain_report_params_spec.rb +12 -0
- data/spec/models/domain_request_spec.rb +51 -0
- data/spec/models/domain_ring_assignment_settings_v1_spec.rb +63 -0
- data/spec/models/domain_scan_metadata_spec.rb +6 -0
- data/spec/models/domain_scan_spec.rb +6 -6
- data/spec/models/domain_scan_v2_spec.rb +0 -6
- data/spec/models/domain_schedule_spec.rb +3 -3
- data/spec/models/domain_scheduled_report_v1_spec.rb +12 -0
- data/spec/models/domain_sensor_installer_v2_spec.rb +123 -0
- data/spec/models/domain_sensor_installers_v2_spec.rb +63 -0
- data/spec/models/domain_spotlight_params_spec.rb +63 -0
- data/spec/models/domain_update_rule_request_v1_spec.rb +12 -0
- data/spec/models/domain_user_metadata_spec.rb +6 -0
- data/spec/models/domain_user_spec.rb +25 -1
- data/spec/models/domain_vuln_spec.rb +51 -0
- data/spec/models/domain_vulnerability_spec.rb +3 -63
- data/spec/models/domain_xdr_params_spec.rb +24 -0
- data/spec/models/driftindicators_drift_indicators_count_value_spec.rb +3 -3
- data/spec/models/driftindicators_drift_indicators_field_value_spec.rb +3 -3
- data/spec/models/entities_ods_scan_request_spec.rb +0 -6
- data/spec/models/entities_rolling_average_spec.rb +105 -0
- data/spec/models/executions_execution_result_spec.rb +12 -0
- data/spec/models/executions_loop_result_spec.rb +6 -0
- data/spec/models/exports_exports_response_spec.rb +63 -0
- data/spec/models/exports_launch_export_request_spec.rb +69 -0
- data/spec/models/exports_launch_export_response_spec.rb +63 -0
- data/spec/models/falconx_report_v1_spec.rb +12 -0
- data/spec/models/falconx_sandbox_parameters_v1_spec.rb +6 -0
- data/spec/models/falconx_sandbox_report_v1_spec.rb +6 -0
- data/spec/models/falconx_summary_report_v1_spec.rb +6 -0
- data/spec/models/fielddata_field_source_option_spec.rb +57 -0
- data/spec/models/fielddata_field_source_spec.rb +75 -0
- data/spec/models/figapi_adversary_spec.rb +51 -0
- data/spec/models/figapi_country_spec.rb +57 -0
- data/spec/models/figapi_domain_spec.rb +117 -0
- data/spec/models/figapi_email_address_spec.rb +63 -0
- data/spec/models/figapi_file_spec.rb +87 -0
- data/spec/models/figapi_indicator_spec.rb +183 -0
- data/spec/models/figapi_ipv4_spec.rb +69 -0
- data/spec/models/figapi_ipv6_spec.rb +69 -0
- data/spec/models/figapi_mx_record_spec.rb +75 -0
- data/spec/models/figapi_name_server_spec.rb +63 -0
- data/spec/models/figapi_report_spec.rb +51 -0
- data/spec/models/figapi_sector_spec.rb +57 -0
- data/spec/models/figapi_threat_spec.rb +51 -0
- data/spec/models/figapi_url_spec.rb +57 -0
- data/spec/models/figapi_vulnerability_spec.rb +141 -0
- data/spec/models/figapi_who_is_spec.rb +69 -0
- data/spec/models/figapi_whois_record_spec.rb +99 -0
- data/spec/models/figapi_x509_certificate_spec.rb +93 -0
- data/spec/models/fwmgr_msa_aggregate_query_request_spec.rb +6 -0
- data/spec/models/fwmgr_msa_extended_bounds_spec_spec.rb +57 -0
- data/spec/models/graph_condition_spec.rb +2 -2
- data/spec/models/graph_configured_activity_spec.rb +6 -0
- data/spec/models/graph_end_spec.rb +12 -0
- data/spec/models/graph_multi_spec.rb +18 -0
- data/spec/models/graph_sub_model_spec.rb +0 -6
- data/spec/models/graph_validation_error_spec.rb +12 -0
- data/spec/models/help_spec.rb +51 -0
- data/spec/models/ingestion_cve_exploit_reference_spec.rb +63 -0
- data/spec/models/ingestion_cve_exploit_source_spec.rb +69 -0
- data/spec/models/ingestion_ex_prt_rating_factors_spec.rb +69 -0
- data/spec/models/ingestion_reference_spec.rb +57 -0
- data/spec/models/internal_sensor_status_spec.rb +6 -0
- data/spec/models/inventoryapi_surface_error_spec.rb +63 -0
- data/spec/models/inventoryapi_user_external_asset_create_request_v1_spec.rb +51 -0
- data/spec/models/inventoryapi_user_external_asset_create_response_v1_spec.rb +63 -0
- data/spec/models/inventoryapi_user_external_asset_create_spec.rb +57 -0
- data/spec/models/inventoryapi_user_external_asset_result_spec.rb +93 -0
- data/spec/models/inventoryapi_user_external_asset_spec.rb +57 -0
- data/spec/models/inventoryapidomain_subsidiary_spec.rb +57 -0
- data/spec/models/jsonschema_condition_group_fields_spec.rb +6 -0
- data/spec/models/jsonschema_duration_option_spec.rb +57 -0
- data/spec/models/jsonschema_pivot_spec.rb +12 -0
- data/spec/models/jsonschema_signals_extensions_spec.rb +12 -0
- data/spec/models/jsonschema_sub_schema_spec.rb +12 -0
- data/spec/models/jsonschema_ui_extensions_spec.rb +99 -0
- data/spec/models/jsonschema_workflow_extensions_spec.rb +6 -0
- data/spec/models/k8sassets_cluster_enrichment_data_spec.rb +6 -0
- data/spec/models/k8sioms_kubernetes_iom_count_value_spec.rb +3 -3
- data/spec/models/k8sioms_kubernetes_iom_field_value_spec.rb +3 -3
- data/spec/models/messages_case_spec.rb +18 -0
- data/spec/models/models_api_customer_and_image_spec.rb +36 -0
- data/spec/models/models_api_image_combined_export_spec.rb +30 -0
- data/spec/models/models_api_package_combined_spec.rb +6 -0
- data/spec/models/models_api_package_combined_v2_spec.rb +111 -0
- data/spec/models/models_api_vulnerability_combined_spec.rb +6 -0
- data/spec/models/models_application_library_spec.rb +6 -0
- data/spec/models/models_base_image_request_spec.rb +75 -0
- data/spec/models/models_cluster_info_spec.rb +81 -0
- data/spec/models/models_cluster_spec.rb +18 -0
- data/spec/models/models_cluster_with_failed_rules_spec.rb +81 -0
- data/spec/models/models_compliance_by_rules_spec.rb +63 -0
- data/spec/models/models_compliance_export_grouped_by_clusters_report_spec.rb +135 -0
- data/spec/models/models_compliance_export_grouped_by_images_report_spec.rb +111 -0
- data/spec/models/models_compliance_export_grouped_by_rules_report_spec.rb +123 -0
- data/spec/models/models_container_image_spec.rb +6 -0
- data/spec/models/models_container_spec.rb +16 -106
- data/spec/models/models_create_base_images_request_spec.rb +51 -0
- data/spec/models/models_create_deployment_input_spec.rb +51 -0
- data/spec/models/models_delivery_settings_entity_response_spec.rb +63 -0
- data/spec/models/models_delivery_settings_input_spec.rb +57 -0
- data/spec/models/models_delivery_settings_request_spec.rb +51 -0
- data/spec/models/models_delivery_settings_spec.rb +123 -0
- data/spec/models/models_deployment_resource_spec.rb +69 -0
- data/spec/models/models_deployment_spec.rb +129 -9
- data/spec/models/models_detection_engine_info_type_spec.rb +63 -0
- data/spec/models/models_detection_info_type_spec.rb +51 -0
- data/spec/models/models_detection_spec.rb +105 -0
- data/spec/models/models_elf_binary_spec.rb +69 -0
- data/spec/models/models_ext_api_image_combined_spec.rb +12 -0
- data/spec/models/models_image_details_spec.rb +69 -0
- data/spec/models/models_image_with_rules_failed_spec.rb +93 -0
- data/spec/models/models_images_with_rules_failed_spec.rb +57 -0
- data/spec/models/models_job_meta_data_spec.rb +93 -0
- data/spec/models/models_message_spec.rb +51 -0
- data/spec/models/models_mock_execution_create_request_v1_spec.rb +63 -0
- data/spec/models/models_node_spec.rb +24 -0
- data/spec/models/models_non_compliant_assets_by_severity_spec.rb +75 -0
- data/spec/models/models_os_info_type_spec.rb +57 -0
- data/spec/models/models_package_vulnerability_type_spec.rb +51 -0
- data/spec/models/models_partial_fingerprints_spec.rb +51 -0
- data/spec/models/models_pod_spec.rb +24 -0
- data/spec/models/models_policy_entity_response_spec.rb +3 -3
- data/spec/models/models_policy_exclusion_entity_response_spec.rb +3 -3
- data/spec/models/models_policy_group_entity_response_spec.rb +3 -3
- data/spec/models/models_result_location_properties_spec.rb +57 -0
- data/spec/models/models_result_location_spec.rb +57 -0
- data/spec/models/models_result_physical_location_artifact_location_spec.rb +51 -0
- data/spec/models/models_result_physical_location_region_spec.rb +51 -0
- data/spec/models/models_result_physical_location_spec.rb +57 -0
- data/spec/models/models_result_properties_spec.rb +105 -0
- data/spec/models/models_result_spec.rb +93 -0
- data/spec/models/models_rule_default_configuration_spec.rb +51 -0
- data/spec/models/models_rule_properties_spec.rb +231 -0
- data/spec/models/models_rule_spec.rb +93 -0
- data/spec/models/models_rule_status_spec.rb +63 -0
- data/spec/models/models_rule_with_non_compliant_assets_spec.rb +69 -0
- data/spec/models/models_rules_failed_by_severity_spec.rb +69 -0
- data/spec/models/models_rules_with_non_compliant_assets_spec.rb +57 -0
- data/spec/models/models_run_spec.rb +57 -0
- data/spec/models/models_run_tool_driver_spec.rb +69 -0
- data/spec/models/models_run_tool_spec.rb +51 -0
- data/spec/models/models_scan_report_type_spec.rb +93 -0
- data/spec/models/models_scan_results_spec.rb +69 -0
- data/spec/models/models_snapshot_inventory_application_spec.rb +99 -0
- data/spec/models/models_vulnerabilities_type_spec.rb +51 -0
- data/spec/models/models_vulnerability_product_spec.rb +111 -0
- data/spec/models/models_vulnerability_sarif_spec.rb +63 -0
- data/spec/models/models_vulnerability_type_spec.rb +87 -0
- data/spec/models/msa_aggregate_query_request_spec.rb +6 -0
- data/spec/models/msa_entity_action_request_v3_spec.rb +63 -0
- data/spec/models/msa_extended_bounds_spec_spec.rb +57 -0
- data/spec/models/packages_api_combined_package_v2_spec.rb +63 -0
- data/spec/models/parameter_activity_config_parameter_value_spec.rb +6 -0
- data/spec/models/parameter_condition_field_parameter_spec.rb +6 -0
- data/spec/models/parameter_condition_field_provision_parameter_spec.rb +6 -0
- data/spec/models/patterndisposition_pattern_disposition_spec.rb +36 -0
- data/spec/models/policies_policy_spec.rb +6 -0
- data/spec/models/policyframework_benchmark_spec.rb +57 -0
- data/spec/models/policyframework_control_spec.rb +87 -0
- data/spec/models/public_get_changes_response_spec.rb +63 -0
- data/spec/models/quickscanpro_delete_file_response_spec.rb +63 -0
- data/spec/models/quickscanpro_file_result_spec.rb +73 -0
- data/spec/models/quickscanpro_file_upload_resource_spec.rb +57 -0
- data/spec/models/quickscanpro_file_upload_response_spec.rb +69 -0
- data/spec/models/quickscanpro_get_scan_result_resource_spec.rb +63 -0
- data/spec/models/quickscanpro_get_scan_result_response_spec.rb +63 -0
- data/spec/models/quickscanpro_launch_scan_request_resource_spec.rb +51 -0
- data/spec/models/quickscanpro_launch_scan_request_spec.rb +51 -0
- data/spec/models/quickscanpro_launch_scan_resource_spec.rb +63 -0
- data/spec/models/quickscanpro_launch_scan_response_spec.rb +69 -0
- data/spec/models/quickscanpro_mitre_attack_parent_spec.rb +63 -0
- data/spec/models/quickscanpro_mitre_attack_spec.rb +87 -0
- data/spec/models/quickscanpro_query_scan_results_response_spec.rb +69 -0
- data/spec/models/quickscanpro_quota_resource_spec.rb +63 -0
- data/spec/models/quickscanpro_scan_metadata_spec.rb +69 -0
- data/spec/models/quickscanpro_scan_result_spec.rb +91 -0
- data/spec/models/quickscanpro_url_result_spec.rb +67 -0
- data/spec/models/registration_aws_account_ext_v2_spec.rb +30 -0
- data/spec/models/registration_aws_account_patch_spec.rb +30 -0
- data/spec/models/registration_aws_console_url_response_v2_spec.rb +63 -0
- data/spec/models/registration_gcp_account_patch_request_v1_spec.rb +51 -0
- data/spec/models/registration_gcp_account_patch_v1_spec.rb +63 -0
- data/spec/models/registration_gcp_account_req_obj_v2_spec.rb +6 -0
- data/spec/models/registration_gcp_account_rsp_obj_v2_spec.rb +6 -0
- data/spec/models/registration_gcp_account_validated_v1_spec.rb +81 -0
- data/spec/models/registration_gcp_account_validation_req_obj_v1_spec.rb +51 -0
- data/spec/models/registration_gcp_account_validation_request_v1_spec.rb +51 -0
- data/spec/models/registration_gcp_account_validation_response_v1_spec.rb +63 -0
- data/spec/models/registration_gcp_service_account_ext_v1_spec.rb +6 -0
- data/spec/models/registration_gcp_service_account_patch_request_v1_spec.rb +51 -0
- data/spec/models/registration_gcp_service_account_patch_v1_spec.rb +87 -0
- data/spec/models/registration_gcp_service_account_validation_request_obj_v1_spec.rb +87 -0
- data/spec/models/registration_gcp_service_account_validation_request_v1_spec.rb +51 -0
- data/spec/models/registration_gcp_service_account_validation_response_v1_spec.rb +63 -0
- data/spec/models/registration_iom_event_v2_spec.rb +6 -0
- data/spec/models/releasecontents_release_content_spec.rb +93 -0
- data/spec/models/releasecontents_release_content_version_spec.rb +63 -0
- data/spec/models/releasenotes_entities_get_request_spec.rb +51 -0
- data/spec/models/releasenotes_entities_get_response_wrapper_spec.rb +63 -0
- data/spec/models/releasenotes_note_detail_spec.rb +69 -0
- data/spec/models/releasenotes_release_note_v1_spec.rb +81 -0
- data/spec/models/releasenotes_release_note_wrapper_v1_spec.rb +63 -0
- data/spec/models/releases_release_spec.rb +99 -0
- data/spec/models/releases_release_wrapper_spec.rb +63 -0
- data/spec/models/resources_app_spec.rb +57 -0
- data/spec/models/resources_asset_graph_spec.rb +57 -0
- data/spec/models/resources_cloud_context_spec.rb +147 -0
- data/spec/models/resources_cloud_resource_spec.rb +291 -0
- data/spec/models/resources_compliance_spec.rb +87 -0
- data/spec/models/resources_detections_spec.rb +81 -0
- data/spec/models/resources_host_spec.rb +147 -0
- data/spec/models/resources_relationship_spec.rb +69 -0
- data/spec/models/resources_vulnerability_spec.rb +63 -0
- data/spec/models/rest_account_product_upsert_request_ext_v1_spec.rb +57 -0
- data/spec/models/rest_aws_account_create_request_extv1_spec.rb +51 -0
- data/spec/models/rest_aws_account_create_response_ext_v1_spec.rb +63 -0
- data/spec/models/rest_aws_account_validated_spec.rb +69 -0
- data/spec/models/rest_aws_account_validation_response_spec.rb +63 -0
- data/spec/models/rest_azure_download_script_request_data_spec.rb +51 -0
- data/spec/models/rest_azure_download_script_request_v1_spec.rb +51 -0
- data/spec/models/rest_azure_provision_get_account_script_response_v1_spec.rb +63 -0
- data/spec/models/rest_azure_script_spec.rb +69 -0
- data/spec/models/rest_cloud_aws_account_create_ext_v1_spec.rb +81 -0
- data/spec/models/rest_cursor_and_limit_meta_info_spec.rb +81 -0
- data/spec/models/rest_cursor_meta_info_spec.rb +75 -0
- data/spec/models/rest_cursor_response_fields_spec.rb +57 -0
- data/spec/models/rest_paging_spec.rb +63 -0
- data/spec/models/restapi_indicator_response_spec.rb +63 -0
- data/spec/models/restapi_indicators_query_request_spec.rb +57 -0
- data/spec/models/restapi_indicators_query_sort_request_spec.rb +63 -0
- data/spec/models/rulegroups_rule_spec.rb +12 -0
- data/spec/models/sadomain_create_rule_request_v1_spec.rb +18 -0
- data/spec/models/sadomain_rule_spec.rb +30 -0
- data/spec/models/sadomain_typosquatting_base_domain_spec.rb +12 -0
- data/spec/models/sadomain_typosquatting_component_spec.rb +6 -0
- data/spec/models/sadomain_typosquatting_subdomain_spec.rb +75 -0
- data/spec/models/scanreports_entities_response_spec.rb +63 -0
- data/spec/models/source_endpoint_spec.rb +57 -0
- data/spec/models/source_user_spec.rb +57 -0
- data/spec/models/string_wrapper_spec.rb +63 -0
- data/spec/models/threatgraph_meta_spec.rb +69 -0
- data/spec/models/threatgraph_paging_spec.rb +63 -0
- data/spec/models/threatgraph_vertex_details_response_spec.rb +63 -0
- data/spec/models/threatgraph_vertex_details_spec.rb +93 -0
- data/spec/models/triggers_trigger_ext_field_spec.rb +87 -0
- data/spec/models/triggers_trigger_ext_spec.rb +87 -0
- data/spec/models/triggers_trigger_external_response_spec.rb +63 -0
- data/spec/models/types_action_run_event_data_spec.rb +135 -0
- data/spec/models/types_action_run_event_spec.rb +105 -0
- data/spec/models/types_action_run_metadata_spec.rb +87 -0
- data/spec/models/types_action_run_spec.rb +93 -0
- data/spec/models/types_artifact_spec.rb +69 -0
- data/spec/models/types_aws_api_gateway_reason_tag_spec.rb +69 -0
- data/spec/models/types_aws_elastic_ip_reason_tag_spec.rb +63 -0
- data/spec/models/types_aws_lambda_api_gateway_reason_tag_spec.rb +69 -0
- data/spec/models/types_aws_load_balancer_reason_tag_spec.rb +57 -0
- data/spec/models/types_aws_metadata_spec.rb +57 -0
- data/spec/models/types_azure_application_gateway_reason_tag_spec.rb +75 -0
- data/spec/models/types_azure_load_balancer_reason_tag_spec.rb +69 -0
- data/spec/models/types_azure_site_metadata_spec.rb +81 -0
- data/spec/models/types_azure_vm_metadata_spec.rb +75 -0
- data/spec/models/types_business_application_spec.rb +57 -0
- data/spec/models/types_cloud_function_metadata_spec.rb +51 -0
- data/spec/models/types_composed_schedule_spec.rb +93 -0
- data/spec/models/types_configuration_spec.rb +81 -0
- data/spec/models/types_create_integration_request_spec.rb +51 -0
- data/spec/models/types_create_integration_task_request_spec.rb +51 -0
- data/spec/models/types_crowd_strike_cloud_security_metadata_spec.rb +87 -0
- data/spec/models/types_data_type_db_reason_tag_spec.rb +63 -0
- data/spec/models/types_data_type_mq_reason_tag_spec.rb +57 -0
- data/spec/models/types_dependency_spec.rb +99 -0
- data/spec/models/types_deployment_unit_descriptor_spec.rb +69 -0
- data/spec/models/types_deployment_unit_service_spec.rb +63 -0
- data/spec/models/types_deployment_units_tuple_filters_spec.rb +57 -0
- data/spec/models/types_ec2_metadata_spec.rb +57 -0
- data/spec/models/types_ecs_metadata_spec.rb +75 -0
- data/spec/models/types_edit_tag_request_spec.rb +57 -0
- data/spec/models/types_edit_unique_tag_request_spec.rb +51 -0
- data/spec/models/types_error_message_spec.rb +57 -0
- data/spec/models/types_executor_node_spec.rb +123 -0
- data/spec/models/types_framework_spec.rb +75 -0
- data/spec/models/types_gcp_metadata_spec.rb +57 -0
- data/spec/models/types_generic_user_facing_request_spec.rb +63 -0
- data/spec/models/types_get_executor_nodes_metadata_response_spec.rb +75 -0
- data/spec/models/types_get_integration_tasks_metadata_response_spec.rb +69 -0
- data/spec/models/types_get_services_related_entity_filters_spec.rb +63 -0
- data/spec/models/types_get_services_related_entity_group_by_fields_spec.rb +51 -0
- data/spec/models/types_get_services_related_entity_spec.rb +69 -0
- data/spec/models/types_get_services_request_spec.rb +105 -0
- data/spec/models/types_get_violation_types_response_spec.rb +57 -0
- data/spec/models/types_host_metadata_spec.rb +51 -0
- data/spec/models/types_integration_response_spec.rb +57 -0
- data/spec/models/types_integration_spec.rb +93 -0
- data/spec/models/types_integration_task_response_spec.rb +57 -0
- data/spec/models/types_integration_task_spec.rb +141 -0
- data/spec/models/types_integration_task_test_connection_response_spec.rb +51 -0
- data/spec/models/types_integration_task_type_spec.rb +81 -0
- data/spec/models/types_integration_type_spec.rb +75 -0
- data/spec/models/types_interface_service_spec.rb +69 -0
- data/spec/models/types_interface_spec.rb +249 -0
- data/spec/models/types_k8_s_load_balancer_reason_tag_spec.rb +69 -0
- data/spec/models/types_k8_s_metadata_spec.rb +63 -0
- data/spec/models/types_k8_s_pod_settings_spec.rb +63 -0
- data/spec/models/types_key_value_spec.rb +57 -0
- data/spec/models/types_lambda_metadata_spec.rb +57 -0
- data/spec/models/types_library_spec.rb +87 -0
- data/spec/models/types_list_executor_nodes_response_spec.rb +51 -0
- data/spec/models/types_list_integration_tasks_response_spec.rb +51 -0
- data/spec/models/types_list_integration_types_response_spec.rb +51 -0
- data/spec/models/types_list_integrations_response_spec.rb +51 -0
- data/spec/models/types_order_by_spec.rb +57 -0
- data/spec/models/types_paginate_spec.rb +69 -0
- data/spec/models/types_pagination_spec.rb +69 -0
- data/spec/models/types_policy_rules_condition_spec.rb +57 -0
- data/spec/models/types_policy_rules_create_body_spec.rb +99 -0
- data/spec/models/types_query_request_select_fields_spec.rb +63 -0
- data/spec/models/types_query_request_spec.rb +69 -0
- data/spec/models/types_query_result_spec.rb +57 -0
- data/spec/models/types_reason_tag_spec.rb +105 -0
- data/spec/models/types_remediation_spec.rb +57 -0
- data/spec/models/types_results_filter_spec.rb +57 -0
- data/spec/models/types_run_integration_task_request_spec.rb +81 -0
- data/spec/models/types_service_now_deployment_spec.rb +57 -0
- data/spec/models/types_service_now_deployments_response_spec.rb +63 -0
- data/spec/models/types_service_now_service_data_spec.rb +99 -0
- data/spec/models/types_service_now_service_deployments_spec.rb +57 -0
- data/spec/models/types_service_now_service_spec.rb +183 -0
- data/spec/models/types_service_now_services_response_spec.rb +63 -0
- data/spec/models/types_service_service_artifact_spec.rb +57 -0
- data/spec/models/types_service_service_business_application_spec.rb +57 -0
- data/spec/models/types_service_service_configuration_spec.rb +57 -0
- data/spec/models/types_service_service_dependency_spec.rb +57 -0
- data/spec/models/types_service_service_framework_spec.rb +57 -0
- data/spec/models/types_service_service_interface_spec.rb +57 -0
- data/spec/models/types_service_service_library_spec.rb +57 -0
- data/spec/models/types_service_service_tag_spec.rb +57 -0
- data/spec/models/types_service_service_traits_spec.rb +57 -0
- data/spec/models/types_snyk_metadata_spec.rb +63 -0
- data/spec/models/types_sonatype_metadata_spec.rb +69 -0
- data/spec/models/types_struct_spec.rb +51 -0
- data/spec/models/types_tag_data_spec.rb +75 -0
- data/spec/models/types_tag_entry_spec.rb +63 -0
- data/spec/models/types_tag_spec.rb +99 -0
- data/spec/models/types_tags_data_response_spec.rb +57 -0
- data/spec/models/types_timestamp_spec.rb +57 -0
- data/spec/models/types_trait_spec.rb +63 -0
- data/spec/models/types_tuple_to_string_spec.rb +57 -0
- data/spec/models/types_unique_tag_entry_spec.rb +69 -0
- data/spec/models/types_update_integration_request_spec.rb +57 -0
- data/spec/models/types_update_integration_task_request_spec.rb +51 -0
- data/spec/models/types_upsert_business_application_request_spec.rb +57 -0
- data/spec/models/v2_activity_spec.rb +6 -0
- data/spec/models/v2_condition_groups_spec.rb +57 -0
- data/spec/models/v2_condition_spec.rb +6 -0
- data/spec/models/v2_definition_spec.rb +30 -0
- data/spec/models/v2_for_loop_spec.rb +36 -0
- data/spec/models/v2_loop_spec.rb +6 -0
- data/spec/models/v2_model_spec.rb +99 -0
- data/spec/models/vulncheck_epss_spec.rb +57 -0
- data/spec/models/vulncheck_exploit_botnets_spec.rb +63 -0
- data/spec/models/vulncheck_exploit_counts_spec.rb +63 -0
- data/spec/models/vulncheck_exploit_cve_reference_spec.rb +63 -0
- data/spec/models/vulncheck_exploit_details_spec.rb +129 -0
- data/spec/models/vulncheck_exploit_ransomware_data_spec.rb +57 -0
- data/spec/models/vulncheck_exploit_ransomware_spec.rb +57 -0
- data/spec/models/vulncheck_exploit_record_spec.rb +93 -0
- data/spec/models/vulncheck_exploit_threat_actor_spec.rb +93 -0
- data/spec/models/vulncheck_exploit_timeline_spec.rb +123 -0
- data/spec/models/vulncheck_exploit_trending_spec.rb +51 -0
- data/spec/models/vulncheck_threat_actor_vendor_name_spec.rb +63 -0
- data/spec/models/vulnerabilities_vulnerability_entity_sarif_response_spec.rb +63 -0
- data/spec/models/workflow_request_spec.rb +51 -0
- data/spec/models/workflow_response_spec.rb +63 -0
- data/spec/spec_helper.rb +8 -0
- metadata +2858 -1418
- data/lib/crimson-falcon/api/alerts_api.rb +0 -603
- data/lib/crimson-falcon/api/cloud_connect_aws_api.rb +0 -623
- data/lib/crimson-falcon/api/cloud_snapshots_api.rb +0 -105
- data/lib/crimson-falcon/api/configuration_assessment_api.rb +0 -183
- data/lib/crimson-falcon/api/configuration_assessment_evaluation_logic_api.rb +0 -101
- data/lib/crimson-falcon/api/container_alerts_api.rb +0 -222
- data/lib/crimson-falcon/api/container_detections_api.rb +0 -408
- data/lib/crimson-falcon/api/container_images_api.rb +0 -711
- data/lib/crimson-falcon/api/container_packages_api.rb +0 -365
- data/lib/crimson-falcon/api/container_vulnerabilities_api.rb +0 -693
- data/lib/crimson-falcon/api/cspm_registration_api.rb +0 -2516
- data/lib/crimson-falcon/api/custom_ioa_api.rb +0 -1287
- data/lib/crimson-falcon/api/custom_storage_api.rb +0 -590
- data/lib/crimson-falcon/api/d4c_registration_api.rb +0 -1485
- data/lib/crimson-falcon/api/detects_api.rb +0 -315
- data/lib/crimson-falcon/api/device_control_policies_api.rb +0 -890
- data/lib/crimson-falcon/api/discover_api.rb +0 -603
- data/lib/crimson-falcon/api/discover_iot_api.rb +0 -180
- data/lib/crimson-falcon/api/drift_indicators_api.rb +0 -350
- data/lib/crimson-falcon/api/event_schema_api.rb +0 -219
- data/lib/crimson-falcon/api/event_streams_api.rb +0 -179
- data/lib/crimson-falcon/api/falcon_complete_dashboard_api.rb +0 -1303
- data/lib/crimson-falcon/api/falcon_container_api.rb +0 -94
- data/lib/crimson-falcon/api/falcon_container_cli_api.rb +0 -105
- data/lib/crimson-falcon/api/falcon_container_image_api.rb +0 -366
- data/lib/crimson-falcon/api/falconx_sandbox_api.rb +0 -1032
- data/lib/crimson-falcon/api/field_schema_api.rb +0 -164
- data/lib/crimson-falcon/api/filevantage_api.rb +0 -1861
- data/lib/crimson-falcon/api/firewall_management_api.rb +0 -2259
- data/lib/crimson-falcon/api/firewall_policies_api.rb +0 -780
- data/lib/crimson-falcon/api/foundry_logscale_api.rb +0 -959
- data/lib/crimson-falcon/api/host_group_api.rb +0 -706
- data/lib/crimson-falcon/api/hosts_api.rb +0 -859
- data/lib/crimson-falcon/api/identity_entities_api.rb +0 -238
- data/lib/crimson-falcon/api/identity_protection_api.rb +0 -101
- data/lib/crimson-falcon/api/image_assessment_policies_api.rb +0 -738
- data/lib/crimson-falcon/api/incidents_api.rb +0 -456
- data/lib/crimson-falcon/api/installation_tokens_api.rb +0 -545
- data/lib/crimson-falcon/api/installation_tokens_settings_api.rb +0 -105
- data/lib/crimson-falcon/api/intel_api.rb +0 -1359
- data/lib/crimson-falcon/api/ioa_exclusions_api.rb +0 -369
- data/lib/crimson-falcon/api/ioc_api.rb +0 -1132
- data/lib/crimson-falcon/api/iocs_api.rb +0 -327
- data/lib/crimson-falcon/api/kubernetes_protection_api.rb +0 -3875
- data/lib/crimson-falcon/api/malquery_api.rb +0 -606
- data/lib/crimson-falcon/api/message_center_api.rb +0 -729
- data/lib/crimson-falcon/api/ml_exclusions_api.rb +0 -369
- data/lib/crimson-falcon/api/mobile_enrollment_api.rb +0 -115
- data/lib/crimson-falcon/api/mssp_api.rb +0 -2015
- data/lib/crimson-falcon/api/oauth2_api.rb +0 -186
- data/lib/crimson-falcon/api/ods_api.rb +0 -1094
- data/lib/crimson-falcon/api/overwatch_dashboard_api.rb +0 -357
- data/lib/crimson-falcon/api/prevention_policies_api.rb +0 -769
- data/lib/crimson-falcon/api/provision_api.rb +0 -94
- data/lib/crimson-falcon/api/quarantine_api.rb +0 -435
- data/lib/crimson-falcon/api/quick_scan_api.rb +0 -300
- data/lib/crimson-falcon/api/real_time_response_admin_api.rb +0 -1173
- data/lib/crimson-falcon/api/real_time_response_api.rb +0 -1617
- data/lib/crimson-falcon/api/real_time_response_audit_api.rb +0 -113
- data/lib/crimson-falcon/api/recon_api.rb +0 -1754
- data/lib/crimson-falcon/api/report_executions_api.rb +0 -299
- data/lib/crimson-falcon/api/response_policies_api.rb +0 -769
- data/lib/crimson-falcon/api/runtime_detections_api.rb +0 -106
- data/lib/crimson-falcon/api/sample_uploads_api.rb +0 -805
- data/lib/crimson-falcon/api/scheduled_reports_api.rb +0 -237
- data/lib/crimson-falcon/api/sensor_download_api.rb +0 -352
- data/lib/crimson-falcon/api/sensor_update_policies_api.rb +0 -1339
- data/lib/crimson-falcon/api/sensor_visibility_exclusions_api.rb +0 -369
- data/lib/crimson-falcon/api/spotlight_evaluation_logic_api.rb +0 -243
- data/lib/crimson-falcon/api/spotlight_vulnerabilities_api.rb +0 -324
- data/lib/crimson-falcon/api/tailored_intelligence_api.rb +0 -373
- data/lib/crimson-falcon/api/unidentified_containers_api.rb +0 -222
- data/lib/crimson-falcon/api/user_management_api.rb +0 -1505
- data/lib/crimson-falcon/api/workflows_api.rb +0 -1037
- data/lib/crimson-falcon/api/zero_trust_assessment_api.rb +0 -227
- data/lib/crimson-falcon/models/changes_get_changes_response.rb +0 -266
- data/lib/crimson-falcon/models/custom_type1255839303.rb +0 -271
- data/lib/crimson-falcon/models/custom_type3191042536.rb +0 -271
- data/lib/crimson-falcon/models/detects_alert.rb +0 -651
- data/lib/crimson-falcon/models/detectsapi_post_entities_alerts_v1_response.rb +0 -267
- data/lib/crimson-falcon/models/detectsapi_post_entities_alerts_v2_response.rb +0 -267
- data/lib/crimson-falcon/models/domain_api_entity_matched_v1.rb +0 -252
- data/lib/crimson-falcon/models/domain_api_evaluation_logic_host_info_v1.rb +0 -242
- data/lib/crimson-falcon/models/domain_botnet_config_source.rb +0 -351
- data/lib/crimson-falcon/models/domain_botnet_inject.rb +0 -255
- data/lib/crimson-falcon/models/domain_ddos_attack_source.rb +0 -423
- data/lib/crimson-falcon/models/domain_ddos_target_details.rb +0 -376
- data/lib/crimson-falcon/models/domain_entity.rb +0 -270
- data/lib/crimson-falcon/models/domain_event.rb +0 -400
- data/lib/crimson-falcon/models/domain_event_entities_response.rb +0 -266
- data/lib/crimson-falcon/models/domain_key_value_pair.rb +0 -253
- data/lib/crimson-falcon/models/domain_matched_rule.rb +0 -255
- data/lib/crimson-falcon/models/domain_pastebin_text_source.rb +0 -294
- data/lib/crimson-falcon/models/domain_rule_entities_response.rb +0 -266
- data/lib/crimson-falcon/models/domain_tweet_source.rb +0 -294
- data/lib/crimson-falcon/models/domain_vulnerability_actor.rb +0 -245
- data/lib/crimson-falcon/models/domain_vulnerability_affected_product.rb +0 -245
- data/lib/crimson-falcon/models/domain_vulnerability_related_threat.rb +0 -247
- data/lib/crimson-falcon/models/domain_vulnerability_report.rb +0 -245
- data/lib/crimson-falcon/models/msaspec_error.rb +0 -262
- data/lib/crimson-falcon/models/msaspec_meta_info.rb +0 -280
- data/lib/crimson-falcon/models/msaspec_paging.rb +0 -267
- data/lib/crimson-falcon/models/registration_gcp_account_patch.rb +0 -248
- data/lib/crimson-falcon/models/registration_gcp_account_patch_request.rb +0 -241
- data/lib/crimson-falcon/models/v2_condition_parameters.rb +0 -241
- data/spec/api/alerts_api_spec.rb +0 -152
- data/spec/api/cloud_connect_aws_api_spec.rb +0 -157
- data/spec/api/cloud_snapshots_api_spec.rb +0 -63
- data/spec/api/configuration_assessment_api_spec.rb +0 -78
- data/spec/api/configuration_assessment_evaluation_logic_api_spec.rb +0 -63
- data/spec/api/container_alerts_api_spec.rb +0 -88
- data/spec/api/container_detections_api_spec.rb +0 -125
- data/spec/api/container_images_api_spec.rb +0 -182
- data/spec/api/container_packages_api_spec.rb +0 -119
- data/spec/api/container_vulnerabilities_api_spec.rb +0 -184
- data/spec/api/cspm_registration_api_spec.rb +0 -480
- data/spec/api/custom_ioa_api_spec.rb +0 -279
- data/spec/api/custom_storage_api_spec.rb +0 -133
- data/spec/api/d4c_registration_api_spec.rb +0 -300
- data/spec/api/detects_api_spec.rb +0 -100
- data/spec/api/device_control_policies_api_spec.rb +0 -198
- data/spec/api/discover_api_spec.rb +0 -152
- data/spec/api/discover_iot_api_spec.rb +0 -77
- data/spec/api/drift_indicators_api_spec.rb +0 -114
- data/spec/api/event_schema_api_spec.rb +0 -87
- data/spec/api/event_streams_api_spec.rb +0 -77
- data/spec/api/falcon_complete_dashboard_api_spec.rb +0 -286
- data/spec/api/falcon_container_api_spec.rb +0 -62
- data/spec/api/falcon_container_cli_api_spec.rb +0 -63
- data/spec/api/falcon_container_image_api_spec.rb +0 -110
- data/spec/api/falconx_sandbox_api_spec.rb +0 -235
- data/spec/api/field_schema_api_spec.rb +0 -77
- data/spec/api/filevantage_api_spec.rb +0 -386
- data/spec/api/firewall_management_api_spec.rb +0 -462
- data/spec/api/firewall_policies_api_spec.rb +0 -178
- data/spec/api/foundry_logscale_api_spec.rb +0 -226
- data/spec/api/host_group_api_spec.rb +0 -167
- data/spec/api/hosts_api_spec.rb +0 -197
- data/spec/api/identity_entities_api_spec.rb +0 -88
- data/spec/api/identity_protection_api_spec.rb +0 -63
- data/spec/api/image_assessment_policies_api_spec.rb +0 -172
- data/spec/api/incidents_api_spec.rb +0 -129
- data/spec/api/installation_tokens_api_spec.rb +0 -146
- data/spec/api/installation_tokens_settings_api_spec.rb +0 -63
- data/spec/api/intel_api_spec.rb +0 -315
- data/spec/api/ioa_exclusions_api_spec.rb +0 -111
- data/spec/api/ioc_api_spec.rb +0 -259
- data/spec/api/iocs_api_spec.rb +0 -104
- data/spec/api/kubernetes_protection_api_spec.rb +0 -757
- data/spec/api/malquery_api_spec.rb +0 -150
- data/spec/api/message_center_api_spec.rb +0 -172
- data/spec/api/ml_exclusions_api_spec.rb +0 -111
- data/spec/api/mobile_enrollment_api_spec.rb +0 -65
- data/spec/api/mssp_api_spec.rb +0 -402
- data/spec/api/oauth2_api_spec.rb +0 -77
- data/spec/api/ods_api_spec.rb +0 -241
- data/spec/api/overwatch_dashboard_api_spec.rb +0 -107
- data/spec/api/prevention_policies_api_spec.rb +0 -177
- data/spec/api/provision_api_spec.rb +0 -62
- data/spec/api/quarantine_api_spec.rb +0 -122
- data/spec/api/quick_scan_api_spec.rb +0 -99
- data/spec/api/real_time_response_admin_api_spec.rb +0 -257
- data/spec/api/real_time_response_api_spec.rb +0 -333
- data/spec/api/real_time_response_audit_api_spec.rb +0 -67
- data/spec/api/recon_api_spec.rb +0 -355
- data/spec/api/report_executions_api_spec.rb +0 -100
- data/spec/api/response_policies_api_spec.rb +0 -177
- data/spec/api/runtime_detections_api_spec.rb +0 -66
- data/spec/api/sample_uploads_api_spec.rb +0 -191
- data/spec/api/scheduled_reports_api_spec.rb +0 -89
- data/spec/api/sensor_download_api_spec.rb +0 -112
- data/spec/api/sensor_update_policies_api_spec.rb +0 -274
- data/spec/api/sensor_visibility_exclusions_api_spec.rb +0 -111
- data/spec/api/spotlight_evaluation_logic_api_spec.rb +0 -91
- data/spec/api/spotlight_vulnerabilities_api_spec.rb +0 -103
- data/spec/api/tailored_intelligence_api_spec.rb +0 -115
- data/spec/api/unidentified_containers_api_spec.rb +0 -88
- data/spec/api/user_management_api_spec.rb +0 -308
- data/spec/api/workflows_api_spec.rb +0 -224
- data/spec/api/zero_trust_assessment_api_spec.rb +0 -87
- data/spec/api_client_spec.rb +0 -245
- data/spec/configuration_spec.rb +0 -59
- data/spec/models/changes_get_changes_response_spec.rb +0 -63
- data/spec/models/custom_type1255839303_spec.rb +0 -63
- data/spec/models/custom_type3191042536_spec.rb +0 -63
- data/spec/models/detects_alert_spec.rb +0 -291
- data/spec/models/detectsapi_post_entities_alerts_v1_response_spec.rb +0 -63
- data/spec/models/detectsapi_post_entities_alerts_v2_response_spec.rb +0 -63
- data/spec/models/domain_api_entity_matched_v1_spec.rb +0 -63
- data/spec/models/domain_api_evaluation_logic_host_info_v1_spec.rb +0 -51
- data/spec/models/domain_botnet_config_source_spec.rb +0 -93
- data/spec/models/domain_botnet_inject_spec.rb +0 -57
- data/spec/models/domain_ddos_attack_source_spec.rb +0 -123
- data/spec/models/domain_ddos_target_details_spec.rb +0 -105
- data/spec/models/domain_entity_spec.rb +0 -69
- data/spec/models/domain_event_entities_response_spec.rb +0 -63
- data/spec/models/domain_event_spec.rb +0 -129
- data/spec/models/domain_key_value_pair_spec.rb +0 -57
- data/spec/models/domain_matched_rule_spec.rb +0 -63
- data/spec/models/domain_pastebin_text_source_spec.rb +0 -75
- data/spec/models/domain_rule_entities_response_spec.rb +0 -63
- data/spec/models/domain_tweet_source_spec.rb +0 -75
- data/spec/models/domain_vulnerability_actor_spec.rb +0 -57
- data/spec/models/domain_vulnerability_affected_product_spec.rb +0 -57
- data/spec/models/domain_vulnerability_related_threat_spec.rb +0 -57
- data/spec/models/domain_vulnerability_report_spec.rb +0 -57
- data/spec/models/msaspec_error_spec.rb +0 -63
- data/spec/models/msaspec_meta_info_spec.rb +0 -75
- data/spec/models/msaspec_paging_spec.rb +0 -63
- data/spec/models/registration_gcp_account_patch_request_spec.rb +0 -51
- data/spec/models/registration_gcp_account_patch_spec.rb +0 -57
- data/spec/models/v2_condition_parameters_spec.rb +0 -51
|
@@ -0,0 +1,1628 @@
|
|
|
1
|
+
=begin
|
|
2
|
+
Crimson Falcon - Ruby Client SDK
|
|
3
|
+
|
|
4
|
+
Code auto-generated by OpenAPI Generator; DO NOT EDIT.
|
|
5
|
+
|
|
6
|
+
MIT License
|
|
7
|
+
|
|
8
|
+
Copyright (c) 2023 Crowdstrike
|
|
9
|
+
|
|
10
|
+
Permission is hereby granted, free of charge, to any person obtaining a copy
|
|
11
|
+
of this software and associated documentation files (the "Software"), to deal
|
|
12
|
+
in the Software without restriction, including without limitation the rights
|
|
13
|
+
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
|
|
14
|
+
copies of the Software, and to permit persons to whom the Software is
|
|
15
|
+
furnished to do so, subject to the following conditions:
|
|
16
|
+
|
|
17
|
+
The above copyright notice and this permission notice shall be included in all
|
|
18
|
+
copies or substantial portions of the Software.
|
|
19
|
+
|
|
20
|
+
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
|
21
|
+
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
|
22
|
+
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
|
23
|
+
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
|
24
|
+
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
|
25
|
+
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
26
|
+
SOFTWARE.
|
|
27
|
+
|
|
28
|
+
=end
|
|
29
|
+
|
|
30
|
+
require 'cgi'
|
|
31
|
+
|
|
32
|
+
module Falcon
|
|
33
|
+
class Intel
|
|
34
|
+
attr_accessor :api_client
|
|
35
|
+
|
|
36
|
+
def initialize(api_client = ApiClient.default)
|
|
37
|
+
@api_client = api_client
|
|
38
|
+
end
|
|
39
|
+
# Retrieve specific actors using their actor IDs.
|
|
40
|
+
# @param ids [Array<String>] The IDs of the actors you want to retrieve.
|
|
41
|
+
# @param [Hash] opts the optional parameters
|
|
42
|
+
# @option opts [Array<String>] :fields The fields to return, or a predefined set of fields in the form of the collection name surrounded by two underscores like: \\_\\_\\<collection\\>\\_\\_. Ex: slug \\_\\_full\\_\\_. Defaults to \\_\\_basic\\_\\_.
|
|
43
|
+
# @return [DomainActorsResponse]
|
|
44
|
+
def get_intel_actor_entities(ids, opts = {})
|
|
45
|
+
data, _status_code, _headers = get_intel_actor_entities_with_http_info(ids, opts)
|
|
46
|
+
data
|
|
47
|
+
end
|
|
48
|
+
|
|
49
|
+
# Retrieve specific actors using their actor IDs.
|
|
50
|
+
# @param ids [Array<String>] The IDs of the actors you want to retrieve.
|
|
51
|
+
# @param [Hash] opts the optional parameters
|
|
52
|
+
# @option opts [Array<String>] :fields The fields to return, or a predefined set of fields in the form of the collection name surrounded by two underscores like: \\_\\_\\<collection\\>\\_\\_. Ex: slug \\_\\_full\\_\\_. Defaults to \\_\\_basic\\_\\_.
|
|
53
|
+
# @return [Array<(DomainActorsResponse, Integer, Hash)>] DomainActorsResponse data, response status code and response headers
|
|
54
|
+
def get_intel_actor_entities_with_http_info(ids, opts = {})
|
|
55
|
+
if @api_client.config.debugging
|
|
56
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_intel_actor_entities ...'
|
|
57
|
+
end
|
|
58
|
+
# verify the required parameter 'ids' is set
|
|
59
|
+
if @api_client.config.client_side_validation && ids.nil?
|
|
60
|
+
fail ArgumentError, "Missing the required parameter 'ids' when calling Intel.get_intel_actor_entities"
|
|
61
|
+
end
|
|
62
|
+
# resource path
|
|
63
|
+
local_var_path = '/intel/entities/actors/v1'
|
|
64
|
+
|
|
65
|
+
# query parameters
|
|
66
|
+
query_params = opts[:query_params] || {}
|
|
67
|
+
query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)
|
|
68
|
+
query_params[:'fields'] = @api_client.build_collection_param(opts[:'fields'], :multi) if !opts[:'fields'].nil?
|
|
69
|
+
|
|
70
|
+
# header parameters
|
|
71
|
+
header_params = opts[:header_params] || {}
|
|
72
|
+
# HTTP header 'Accept' (if needed)
|
|
73
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
74
|
+
|
|
75
|
+
# form parameters
|
|
76
|
+
form_params = opts[:form_params] || {}
|
|
77
|
+
|
|
78
|
+
# http body (model)
|
|
79
|
+
post_body = opts[:debug_body]
|
|
80
|
+
|
|
81
|
+
# return_type
|
|
82
|
+
return_type = opts[:debug_return_type] || 'DomainActorsResponse'
|
|
83
|
+
|
|
84
|
+
# auth_names
|
|
85
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
86
|
+
|
|
87
|
+
new_options = opts.merge(
|
|
88
|
+
:operation => :"Intel.get_intel_actor_entities",
|
|
89
|
+
:header_params => header_params,
|
|
90
|
+
:query_params => query_params,
|
|
91
|
+
:form_params => form_params,
|
|
92
|
+
:body => post_body,
|
|
93
|
+
:auth_names => auth_names,
|
|
94
|
+
:return_type => return_type
|
|
95
|
+
)
|
|
96
|
+
|
|
97
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
98
|
+
if @api_client.config.debugging
|
|
99
|
+
@api_client.config.logger.debug "API called: Intel#get_intel_actor_entities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
100
|
+
end
|
|
101
|
+
return data, status_code, headers
|
|
102
|
+
end
|
|
103
|
+
|
|
104
|
+
# Retrieve specific indicators using their indicator IDs.
|
|
105
|
+
# @param body [MsaIdsRequest]
|
|
106
|
+
# @param [Hash] opts the optional parameters
|
|
107
|
+
# @return [DomainPublicIndicatorsV3Response]
|
|
108
|
+
def get_intel_indicator_entities(body, opts = {})
|
|
109
|
+
data, _status_code, _headers = get_intel_indicator_entities_with_http_info(body, opts)
|
|
110
|
+
data
|
|
111
|
+
end
|
|
112
|
+
|
|
113
|
+
# Retrieve specific indicators using their indicator IDs.
|
|
114
|
+
# @param body [MsaIdsRequest]
|
|
115
|
+
# @param [Hash] opts the optional parameters
|
|
116
|
+
# @return [Array<(DomainPublicIndicatorsV3Response, Integer, Hash)>] DomainPublicIndicatorsV3Response data, response status code and response headers
|
|
117
|
+
def get_intel_indicator_entities_with_http_info(body, opts = {})
|
|
118
|
+
if @api_client.config.debugging
|
|
119
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_intel_indicator_entities ...'
|
|
120
|
+
end
|
|
121
|
+
# verify the required parameter 'body' is set
|
|
122
|
+
if @api_client.config.client_side_validation && body.nil?
|
|
123
|
+
fail ArgumentError, "Missing the required parameter 'body' when calling Intel.get_intel_indicator_entities"
|
|
124
|
+
end
|
|
125
|
+
# resource path
|
|
126
|
+
local_var_path = '/intel/entities/indicators/GET/v1'
|
|
127
|
+
|
|
128
|
+
# query parameters
|
|
129
|
+
query_params = opts[:query_params] || {}
|
|
130
|
+
|
|
131
|
+
# header parameters
|
|
132
|
+
header_params = opts[:header_params] || {}
|
|
133
|
+
# HTTP header 'Accept' (if needed)
|
|
134
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
135
|
+
# HTTP header 'Content-Type'
|
|
136
|
+
content_type = @api_client.select_header_content_type(['application/json'])
|
|
137
|
+
if !content_type.nil?
|
|
138
|
+
header_params['Content-Type'] = content_type
|
|
139
|
+
end
|
|
140
|
+
|
|
141
|
+
# form parameters
|
|
142
|
+
form_params = opts[:form_params] || {}
|
|
143
|
+
|
|
144
|
+
# http body (model)
|
|
145
|
+
post_body = opts[:debug_body] || @api_client.object_to_http_body(body)
|
|
146
|
+
|
|
147
|
+
# return_type
|
|
148
|
+
return_type = opts[:debug_return_type] || 'DomainPublicIndicatorsV3Response'
|
|
149
|
+
|
|
150
|
+
# auth_names
|
|
151
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
152
|
+
|
|
153
|
+
new_options = opts.merge(
|
|
154
|
+
:operation => :"Intel.get_intel_indicator_entities",
|
|
155
|
+
:header_params => header_params,
|
|
156
|
+
:query_params => query_params,
|
|
157
|
+
:form_params => form_params,
|
|
158
|
+
:body => post_body,
|
|
159
|
+
:auth_names => auth_names,
|
|
160
|
+
:return_type => return_type
|
|
161
|
+
)
|
|
162
|
+
|
|
163
|
+
data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
|
|
164
|
+
if @api_client.config.debugging
|
|
165
|
+
@api_client.config.logger.debug "API called: Intel#get_intel_indicator_entities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
166
|
+
end
|
|
167
|
+
return data, status_code, headers
|
|
168
|
+
end
|
|
169
|
+
|
|
170
|
+
# Retrieve specific reports using their report IDs.
|
|
171
|
+
# @param ids [Array<String>] The IDs of the reports you want to retrieve.
|
|
172
|
+
# @param [Hash] opts the optional parameters
|
|
173
|
+
# @option opts [Array<String>] :fields The fields to return, or a predefined set of fields in the form of the collection name surrounded by two underscores like: \\_\\_\\<collection\\>\\_\\_. Ex: slug \\_\\_full\\_\\_. Defaults to \\_\\_basic\\_\\_.
|
|
174
|
+
# @return [DomainNewsResponse]
|
|
175
|
+
def get_intel_report_entities(ids, opts = {})
|
|
176
|
+
data, _status_code, _headers = get_intel_report_entities_with_http_info(ids, opts)
|
|
177
|
+
data
|
|
178
|
+
end
|
|
179
|
+
|
|
180
|
+
# Retrieve specific reports using their report IDs.
|
|
181
|
+
# @param ids [Array<String>] The IDs of the reports you want to retrieve.
|
|
182
|
+
# @param [Hash] opts the optional parameters
|
|
183
|
+
# @option opts [Array<String>] :fields The fields to return, or a predefined set of fields in the form of the collection name surrounded by two underscores like: \\_\\_\\<collection\\>\\_\\_. Ex: slug \\_\\_full\\_\\_. Defaults to \\_\\_basic\\_\\_.
|
|
184
|
+
# @return [Array<(DomainNewsResponse, Integer, Hash)>] DomainNewsResponse data, response status code and response headers
|
|
185
|
+
def get_intel_report_entities_with_http_info(ids, opts = {})
|
|
186
|
+
if @api_client.config.debugging
|
|
187
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_intel_report_entities ...'
|
|
188
|
+
end
|
|
189
|
+
# verify the required parameter 'ids' is set
|
|
190
|
+
if @api_client.config.client_side_validation && ids.nil?
|
|
191
|
+
fail ArgumentError, "Missing the required parameter 'ids' when calling Intel.get_intel_report_entities"
|
|
192
|
+
end
|
|
193
|
+
# resource path
|
|
194
|
+
local_var_path = '/intel/entities/reports/v1'
|
|
195
|
+
|
|
196
|
+
# query parameters
|
|
197
|
+
query_params = opts[:query_params] || {}
|
|
198
|
+
query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)
|
|
199
|
+
query_params[:'fields'] = @api_client.build_collection_param(opts[:'fields'], :multi) if !opts[:'fields'].nil?
|
|
200
|
+
|
|
201
|
+
# header parameters
|
|
202
|
+
header_params = opts[:header_params] || {}
|
|
203
|
+
# HTTP header 'Accept' (if needed)
|
|
204
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
205
|
+
|
|
206
|
+
# form parameters
|
|
207
|
+
form_params = opts[:form_params] || {}
|
|
208
|
+
|
|
209
|
+
# http body (model)
|
|
210
|
+
post_body = opts[:debug_body]
|
|
211
|
+
|
|
212
|
+
# return_type
|
|
213
|
+
return_type = opts[:debug_return_type] || 'DomainNewsResponse'
|
|
214
|
+
|
|
215
|
+
# auth_names
|
|
216
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
217
|
+
|
|
218
|
+
new_options = opts.merge(
|
|
219
|
+
:operation => :"Intel.get_intel_report_entities",
|
|
220
|
+
:header_params => header_params,
|
|
221
|
+
:query_params => query_params,
|
|
222
|
+
:form_params => form_params,
|
|
223
|
+
:body => post_body,
|
|
224
|
+
:auth_names => auth_names,
|
|
225
|
+
:return_type => return_type
|
|
226
|
+
)
|
|
227
|
+
|
|
228
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
229
|
+
if @api_client.config.debugging
|
|
230
|
+
@api_client.config.logger.debug "API called: Intel#get_intel_report_entities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
231
|
+
end
|
|
232
|
+
return data, status_code, headers
|
|
233
|
+
end
|
|
234
|
+
|
|
235
|
+
# Return a Report PDF attachment
|
|
236
|
+
# @param [Hash] opts the optional parameters
|
|
237
|
+
# @option opts [String] :id The ID of the report you want to download as a PDF.
|
|
238
|
+
# @option opts [String] :ids The ID of the report you want to download as a PDF. This parameter is used only if no id parameter given.
|
|
239
|
+
# @return [File]
|
|
240
|
+
def get_intel_report_pdf(opts = {})
|
|
241
|
+
data, _status_code, _headers = get_intel_report_pdf_with_http_info(opts)
|
|
242
|
+
data
|
|
243
|
+
end
|
|
244
|
+
|
|
245
|
+
# Return a Report PDF attachment
|
|
246
|
+
# @param [Hash] opts the optional parameters
|
|
247
|
+
# @option opts [String] :id The ID of the report you want to download as a PDF.
|
|
248
|
+
# @option opts [String] :ids The ID of the report you want to download as a PDF. This parameter is used only if no id parameter given.
|
|
249
|
+
# @return [Array<(File, Integer, Hash)>] File data, response status code and response headers
|
|
250
|
+
def get_intel_report_pdf_with_http_info(opts = {})
|
|
251
|
+
if @api_client.config.debugging
|
|
252
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_intel_report_pdf ...'
|
|
253
|
+
end
|
|
254
|
+
# resource path
|
|
255
|
+
local_var_path = '/intel/entities/report-files/v1'
|
|
256
|
+
|
|
257
|
+
# query parameters
|
|
258
|
+
query_params = opts[:query_params] || {}
|
|
259
|
+
query_params[:'id'] = opts[:'id'] if !opts[:'id'].nil?
|
|
260
|
+
query_params[:'ids'] = opts[:'ids'] if !opts[:'ids'].nil?
|
|
261
|
+
|
|
262
|
+
# header parameters
|
|
263
|
+
header_params = opts[:header_params] || {}
|
|
264
|
+
# HTTP header 'Accept' (if needed)
|
|
265
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/octet-stream', 'application/json', 'application/pdf'])
|
|
266
|
+
|
|
267
|
+
# form parameters
|
|
268
|
+
form_params = opts[:form_params] || {}
|
|
269
|
+
|
|
270
|
+
# http body (model)
|
|
271
|
+
post_body = opts[:debug_body]
|
|
272
|
+
|
|
273
|
+
# return_type
|
|
274
|
+
return_type = opts[:debug_return_type] || 'File'
|
|
275
|
+
|
|
276
|
+
# auth_names
|
|
277
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
278
|
+
|
|
279
|
+
new_options = opts.merge(
|
|
280
|
+
:operation => :"Intel.get_intel_report_pdf",
|
|
281
|
+
:header_params => header_params,
|
|
282
|
+
:query_params => query_params,
|
|
283
|
+
:form_params => form_params,
|
|
284
|
+
:body => post_body,
|
|
285
|
+
:auth_names => auth_names,
|
|
286
|
+
:return_type => return_type
|
|
287
|
+
)
|
|
288
|
+
|
|
289
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
290
|
+
if @api_client.config.debugging
|
|
291
|
+
@api_client.config.logger.debug "API called: Intel#get_intel_report_pdf\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
292
|
+
end
|
|
293
|
+
return data, status_code, headers
|
|
294
|
+
end
|
|
295
|
+
|
|
296
|
+
# Retrieve details for rule sets for the specified ids.
|
|
297
|
+
# @param ids [Array<String>] The ids of rules to return.
|
|
298
|
+
# @param [Hash] opts the optional parameters
|
|
299
|
+
# @return [DomainRulesResponse]
|
|
300
|
+
def get_intel_rule_entities(ids, opts = {})
|
|
301
|
+
data, _status_code, _headers = get_intel_rule_entities_with_http_info(ids, opts)
|
|
302
|
+
data
|
|
303
|
+
end
|
|
304
|
+
|
|
305
|
+
# Retrieve details for rule sets for the specified ids.
|
|
306
|
+
# @param ids [Array<String>] The ids of rules to return.
|
|
307
|
+
# @param [Hash] opts the optional parameters
|
|
308
|
+
# @return [Array<(DomainRulesResponse, Integer, Hash)>] DomainRulesResponse data, response status code and response headers
|
|
309
|
+
def get_intel_rule_entities_with_http_info(ids, opts = {})
|
|
310
|
+
if @api_client.config.debugging
|
|
311
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_intel_rule_entities ...'
|
|
312
|
+
end
|
|
313
|
+
# verify the required parameter 'ids' is set
|
|
314
|
+
if @api_client.config.client_side_validation && ids.nil?
|
|
315
|
+
fail ArgumentError, "Missing the required parameter 'ids' when calling Intel.get_intel_rule_entities"
|
|
316
|
+
end
|
|
317
|
+
# resource path
|
|
318
|
+
local_var_path = '/intel/entities/rules/v1'
|
|
319
|
+
|
|
320
|
+
# query parameters
|
|
321
|
+
query_params = opts[:query_params] || {}
|
|
322
|
+
query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)
|
|
323
|
+
|
|
324
|
+
# header parameters
|
|
325
|
+
header_params = opts[:header_params] || {}
|
|
326
|
+
# HTTP header 'Accept' (if needed)
|
|
327
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
328
|
+
|
|
329
|
+
# form parameters
|
|
330
|
+
form_params = opts[:form_params] || {}
|
|
331
|
+
|
|
332
|
+
# http body (model)
|
|
333
|
+
post_body = opts[:debug_body]
|
|
334
|
+
|
|
335
|
+
# return_type
|
|
336
|
+
return_type = opts[:debug_return_type] || 'DomainRulesResponse'
|
|
337
|
+
|
|
338
|
+
# auth_names
|
|
339
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
340
|
+
|
|
341
|
+
new_options = opts.merge(
|
|
342
|
+
:operation => :"Intel.get_intel_rule_entities",
|
|
343
|
+
:header_params => header_params,
|
|
344
|
+
:query_params => query_params,
|
|
345
|
+
:form_params => form_params,
|
|
346
|
+
:body => post_body,
|
|
347
|
+
:auth_names => auth_names,
|
|
348
|
+
:return_type => return_type
|
|
349
|
+
)
|
|
350
|
+
|
|
351
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
352
|
+
if @api_client.config.debugging
|
|
353
|
+
@api_client.config.logger.debug "API called: Intel#get_intel_rule_entities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
354
|
+
end
|
|
355
|
+
return data, status_code, headers
|
|
356
|
+
end
|
|
357
|
+
|
|
358
|
+
# Download earlier rule sets.
|
|
359
|
+
# @param id [Integer] The ID of the rule set.
|
|
360
|
+
# @param [Hash] opts the optional parameters
|
|
361
|
+
# @option opts [String] :accept Choose the format you want the rule set in.
|
|
362
|
+
# @option opts [String] :format Choose the format you want the rule set in. Valid formats are zip and gzip. Defaults to zip.
|
|
363
|
+
# @return [File]
|
|
364
|
+
def get_intel_rule_file(id, opts = {})
|
|
365
|
+
data, _status_code, _headers = get_intel_rule_file_with_http_info(id, opts)
|
|
366
|
+
data
|
|
367
|
+
end
|
|
368
|
+
|
|
369
|
+
# Download earlier rule sets.
|
|
370
|
+
# @param id [Integer] The ID of the rule set.
|
|
371
|
+
# @param [Hash] opts the optional parameters
|
|
372
|
+
# @option opts [String] :accept Choose the format you want the rule set in.
|
|
373
|
+
# @option opts [String] :format Choose the format you want the rule set in. Valid formats are zip and gzip. Defaults to zip.
|
|
374
|
+
# @return [Array<(File, Integer, Hash)>] File data, response status code and response headers
|
|
375
|
+
def get_intel_rule_file_with_http_info(id, opts = {})
|
|
376
|
+
if @api_client.config.debugging
|
|
377
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_intel_rule_file ...'
|
|
378
|
+
end
|
|
379
|
+
# verify the required parameter 'id' is set
|
|
380
|
+
if @api_client.config.client_side_validation && id.nil?
|
|
381
|
+
fail ArgumentError, "Missing the required parameter 'id' when calling Intel.get_intel_rule_file"
|
|
382
|
+
end
|
|
383
|
+
# resource path
|
|
384
|
+
local_var_path = '/intel/entities/rules-files/v1'
|
|
385
|
+
|
|
386
|
+
# query parameters
|
|
387
|
+
query_params = opts[:query_params] || {}
|
|
388
|
+
query_params[:'id'] = id
|
|
389
|
+
query_params[:'format'] = opts[:'format'] if !opts[:'format'].nil?
|
|
390
|
+
|
|
391
|
+
# header parameters
|
|
392
|
+
header_params = opts[:header_params] || {}
|
|
393
|
+
# HTTP header 'Accept' (if needed)
|
|
394
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/zip', 'application/gzip', 'application/octet-stream', 'application/json', '*/*'])
|
|
395
|
+
header_params[:'Accept'] = opts[:'accept'] if !opts[:'accept'].nil?
|
|
396
|
+
|
|
397
|
+
# form parameters
|
|
398
|
+
form_params = opts[:form_params] || {}
|
|
399
|
+
|
|
400
|
+
# http body (model)
|
|
401
|
+
post_body = opts[:debug_body]
|
|
402
|
+
|
|
403
|
+
# return_type
|
|
404
|
+
return_type = opts[:debug_return_type] || 'File'
|
|
405
|
+
|
|
406
|
+
# auth_names
|
|
407
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
408
|
+
|
|
409
|
+
new_options = opts.merge(
|
|
410
|
+
:operation => :"Intel.get_intel_rule_file",
|
|
411
|
+
:header_params => header_params,
|
|
412
|
+
:query_params => query_params,
|
|
413
|
+
:form_params => form_params,
|
|
414
|
+
:body => post_body,
|
|
415
|
+
:auth_names => auth_names,
|
|
416
|
+
:return_type => return_type
|
|
417
|
+
)
|
|
418
|
+
|
|
419
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
420
|
+
if @api_client.config.debugging
|
|
421
|
+
@api_client.config.logger.debug "API called: Intel#get_intel_rule_file\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
422
|
+
end
|
|
423
|
+
return data, status_code, headers
|
|
424
|
+
end
|
|
425
|
+
|
|
426
|
+
# Download the latest rule set.
|
|
427
|
+
# @param type [String] The rule news report type. Accepted values: snort-suricata-master snort-suricata-update snort-suricata-changelog yara-master yara-update yara-changelog common-event-format netwitness cql-master cql-update cql-changelog
|
|
428
|
+
# @param [Hash] opts the optional parameters
|
|
429
|
+
# @option opts [String] :accept Choose the format you want the rule set in.
|
|
430
|
+
# @option opts [String] :if_none_match Download the latest rule set only if it doesn't have an ETag matching the given ones.
|
|
431
|
+
# @option opts [String] :if_modified_since Download the latest rule set only if the rule was modified after this date. http, ANSIC and RFC850 formats accepted
|
|
432
|
+
# @option opts [String] :format Choose the format you want the rule set in. Valid formats are zip and gzip. Defaults to zip.
|
|
433
|
+
# @option opts [String] :if_modified_since2 Download Only if changed since
|
|
434
|
+
# @return [File]
|
|
435
|
+
def get_latest_intel_rule_file(type, opts = {})
|
|
436
|
+
data, _status_code, _headers = get_latest_intel_rule_file_with_http_info(type, opts)
|
|
437
|
+
data
|
|
438
|
+
end
|
|
439
|
+
|
|
440
|
+
# Download the latest rule set.
|
|
441
|
+
# @param type [String] The rule news report type. Accepted values: snort-suricata-master snort-suricata-update snort-suricata-changelog yara-master yara-update yara-changelog common-event-format netwitness cql-master cql-update cql-changelog
|
|
442
|
+
# @param [Hash] opts the optional parameters
|
|
443
|
+
# @option opts [String] :accept Choose the format you want the rule set in.
|
|
444
|
+
# @option opts [String] :if_none_match Download the latest rule set only if it doesn't have an ETag matching the given ones.
|
|
445
|
+
# @option opts [String] :if_modified_since Download the latest rule set only if the rule was modified after this date. http, ANSIC and RFC850 formats accepted
|
|
446
|
+
# @option opts [String] :format Choose the format you want the rule set in. Valid formats are zip and gzip. Defaults to zip.
|
|
447
|
+
# @option opts [String] :if_modified_since2 Download Only if changed since
|
|
448
|
+
# @return [Array<(File, Integer, Hash)>] File data, response status code and response headers
|
|
449
|
+
def get_latest_intel_rule_file_with_http_info(type, opts = {})
|
|
450
|
+
if @api_client.config.debugging
|
|
451
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_latest_intel_rule_file ...'
|
|
452
|
+
end
|
|
453
|
+
# verify the required parameter 'type' is set
|
|
454
|
+
if @api_client.config.client_side_validation && type.nil?
|
|
455
|
+
fail ArgumentError, "Missing the required parameter 'type' when calling Intel.get_latest_intel_rule_file"
|
|
456
|
+
end
|
|
457
|
+
# resource path
|
|
458
|
+
local_var_path = '/intel/entities/rules-latest-files/v1'
|
|
459
|
+
|
|
460
|
+
# query parameters
|
|
461
|
+
query_params = opts[:query_params] || {}
|
|
462
|
+
query_params[:'type'] = type
|
|
463
|
+
query_params[:'format'] = opts[:'format'] if !opts[:'format'].nil?
|
|
464
|
+
|
|
465
|
+
# header parameters
|
|
466
|
+
header_params = opts[:header_params] || {}
|
|
467
|
+
# HTTP header 'Accept' (if needed)
|
|
468
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/zip', 'application/gzip', 'application/octet-stream', 'application/json', '*/*'])
|
|
469
|
+
header_params[:'Accept'] = opts[:'accept'] if !opts[:'accept'].nil?
|
|
470
|
+
header_params[:'If-None-Match'] = opts[:'if_none_match'] if !opts[:'if_none_match'].nil?
|
|
471
|
+
header_params[:'If-Modified-Since'] = opts[:'if_modified_since'] if !opts[:'if_modified_since'].nil?
|
|
472
|
+
header_params[:'If-Modified-Since'] = opts[:'if_modified_since2'] if !opts[:'if_modified_since2'].nil?
|
|
473
|
+
|
|
474
|
+
# form parameters
|
|
475
|
+
form_params = opts[:form_params] || {}
|
|
476
|
+
|
|
477
|
+
# http body (model)
|
|
478
|
+
post_body = opts[:debug_body]
|
|
479
|
+
|
|
480
|
+
# return_type
|
|
481
|
+
return_type = opts[:debug_return_type] || 'File'
|
|
482
|
+
|
|
483
|
+
# auth_names
|
|
484
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
485
|
+
|
|
486
|
+
new_options = opts.merge(
|
|
487
|
+
:operation => :"Intel.get_latest_intel_rule_file",
|
|
488
|
+
:header_params => header_params,
|
|
489
|
+
:query_params => query_params,
|
|
490
|
+
:form_params => form_params,
|
|
491
|
+
:body => post_body,
|
|
492
|
+
:auth_names => auth_names,
|
|
493
|
+
:return_type => return_type
|
|
494
|
+
)
|
|
495
|
+
|
|
496
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
497
|
+
if @api_client.config.debugging
|
|
498
|
+
@api_client.config.logger.debug "API called: Intel#get_latest_intel_rule_file\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
499
|
+
end
|
|
500
|
+
return data, status_code, headers
|
|
501
|
+
end
|
|
502
|
+
|
|
503
|
+
# Get malware entities for specified ids.
|
|
504
|
+
# @param ids [Array<String>] Malware family name in lower case with spaces, dots and slashes replaced with dashes
|
|
505
|
+
# @param [Hash] opts the optional parameters
|
|
506
|
+
# @return [DomainMalwareResponse]
|
|
507
|
+
def get_malware_entities(ids, opts = {})
|
|
508
|
+
data, _status_code, _headers = get_malware_entities_with_http_info(ids, opts)
|
|
509
|
+
data
|
|
510
|
+
end
|
|
511
|
+
|
|
512
|
+
# Get malware entities for specified ids.
|
|
513
|
+
# @param ids [Array<String>] Malware family name in lower case with spaces, dots and slashes replaced with dashes
|
|
514
|
+
# @param [Hash] opts the optional parameters
|
|
515
|
+
# @return [Array<(DomainMalwareResponse, Integer, Hash)>] DomainMalwareResponse data, response status code and response headers
|
|
516
|
+
def get_malware_entities_with_http_info(ids, opts = {})
|
|
517
|
+
if @api_client.config.debugging
|
|
518
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_malware_entities ...'
|
|
519
|
+
end
|
|
520
|
+
# verify the required parameter 'ids' is set
|
|
521
|
+
if @api_client.config.client_side_validation && ids.nil?
|
|
522
|
+
fail ArgumentError, "Missing the required parameter 'ids' when calling Intel.get_malware_entities"
|
|
523
|
+
end
|
|
524
|
+
# resource path
|
|
525
|
+
local_var_path = '/intel/entities/malware/v1'
|
|
526
|
+
|
|
527
|
+
# query parameters
|
|
528
|
+
query_params = opts[:query_params] || {}
|
|
529
|
+
query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)
|
|
530
|
+
|
|
531
|
+
# header parameters
|
|
532
|
+
header_params = opts[:header_params] || {}
|
|
533
|
+
# HTTP header 'Accept' (if needed)
|
|
534
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
535
|
+
|
|
536
|
+
# form parameters
|
|
537
|
+
form_params = opts[:form_params] || {}
|
|
538
|
+
|
|
539
|
+
# http body (model)
|
|
540
|
+
post_body = opts[:debug_body]
|
|
541
|
+
|
|
542
|
+
# return_type
|
|
543
|
+
return_type = opts[:debug_return_type] || 'DomainMalwareResponse'
|
|
544
|
+
|
|
545
|
+
# auth_names
|
|
546
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
547
|
+
|
|
548
|
+
new_options = opts.merge(
|
|
549
|
+
:operation => :"Intel.get_malware_entities",
|
|
550
|
+
:header_params => header_params,
|
|
551
|
+
:query_params => query_params,
|
|
552
|
+
:form_params => form_params,
|
|
553
|
+
:body => post_body,
|
|
554
|
+
:auth_names => auth_names,
|
|
555
|
+
:return_type => return_type
|
|
556
|
+
)
|
|
557
|
+
|
|
558
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
559
|
+
if @api_client.config.debugging
|
|
560
|
+
@api_client.config.logger.debug "API called: Intel#get_malware_entities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
561
|
+
end
|
|
562
|
+
return data, status_code, headers
|
|
563
|
+
end
|
|
564
|
+
|
|
565
|
+
# Export Mitre ATT&CK information for a given malware family.
|
|
566
|
+
# @param id [String] Malware family name in lower case with spaces replaced with dashes
|
|
567
|
+
# @param format [String] Supported report formats: CSV, JSON or JSON_NAVIGATOR
|
|
568
|
+
# @param [Hash] opts the optional parameters
|
|
569
|
+
# @option opts [String] :x_cs_useruuid User id
|
|
570
|
+
# @return [nil]
|
|
571
|
+
def get_malware_mitre_report(id, format, opts = {})
|
|
572
|
+
get_malware_mitre_report_with_http_info(id, format, opts)
|
|
573
|
+
nil
|
|
574
|
+
end
|
|
575
|
+
|
|
576
|
+
# Export Mitre ATT&CK information for a given malware family.
|
|
577
|
+
# @param id [String] Malware family name in lower case with spaces replaced with dashes
|
|
578
|
+
# @param format [String] Supported report formats: CSV, JSON or JSON_NAVIGATOR
|
|
579
|
+
# @param [Hash] opts the optional parameters
|
|
580
|
+
# @option opts [String] :x_cs_useruuid User id
|
|
581
|
+
# @return [Array<(nil, Integer, Hash)>] nil, response status code and response headers
|
|
582
|
+
def get_malware_mitre_report_with_http_info(id, format, opts = {})
|
|
583
|
+
if @api_client.config.debugging
|
|
584
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_malware_mitre_report ...'
|
|
585
|
+
end
|
|
586
|
+
# verify the required parameter 'id' is set
|
|
587
|
+
if @api_client.config.client_side_validation && id.nil?
|
|
588
|
+
fail ArgumentError, "Missing the required parameter 'id' when calling Intel.get_malware_mitre_report"
|
|
589
|
+
end
|
|
590
|
+
# verify the required parameter 'format' is set
|
|
591
|
+
if @api_client.config.client_side_validation && format.nil?
|
|
592
|
+
fail ArgumentError, "Missing the required parameter 'format' when calling Intel.get_malware_mitre_report"
|
|
593
|
+
end
|
|
594
|
+
# resource path
|
|
595
|
+
local_var_path = '/intel/entities/malware-mitre-reports/v1'
|
|
596
|
+
|
|
597
|
+
# query parameters
|
|
598
|
+
query_params = opts[:query_params] || {}
|
|
599
|
+
query_params[:'id'] = id
|
|
600
|
+
query_params[:'format'] = format
|
|
601
|
+
|
|
602
|
+
# header parameters
|
|
603
|
+
header_params = opts[:header_params] || {}
|
|
604
|
+
# HTTP header 'Accept' (if needed)
|
|
605
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json', 'text/csv'])
|
|
606
|
+
header_params[:'X-CS-USERUUID'] = opts[:'x_cs_useruuid'] if !opts[:'x_cs_useruuid'].nil?
|
|
607
|
+
|
|
608
|
+
# form parameters
|
|
609
|
+
form_params = opts[:form_params] || {}
|
|
610
|
+
|
|
611
|
+
# http body (model)
|
|
612
|
+
post_body = opts[:debug_body]
|
|
613
|
+
|
|
614
|
+
# return_type
|
|
615
|
+
return_type = opts[:debug_return_type]
|
|
616
|
+
|
|
617
|
+
# auth_names
|
|
618
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
619
|
+
|
|
620
|
+
new_options = opts.merge(
|
|
621
|
+
:operation => :"Intel.get_malware_mitre_report",
|
|
622
|
+
:header_params => header_params,
|
|
623
|
+
:query_params => query_params,
|
|
624
|
+
:form_params => form_params,
|
|
625
|
+
:body => post_body,
|
|
626
|
+
:auth_names => auth_names,
|
|
627
|
+
:return_type => return_type
|
|
628
|
+
)
|
|
629
|
+
|
|
630
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
631
|
+
if @api_client.config.debugging
|
|
632
|
+
@api_client.config.logger.debug "API called: Intel#get_malware_mitre_report\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
633
|
+
end
|
|
634
|
+
return data, status_code, headers
|
|
635
|
+
end
|
|
636
|
+
|
|
637
|
+
# Export Mitre ATT&CK information for a given actor.
|
|
638
|
+
# @param actor_id [String] Actor ID(derived from the actor's name)
|
|
639
|
+
# @param format [String] Supported report formats: CSV or JSON
|
|
640
|
+
# @param [Hash] opts the optional parameters
|
|
641
|
+
# @return [nil]
|
|
642
|
+
def get_mitre_report(actor_id, format, opts = {})
|
|
643
|
+
get_mitre_report_with_http_info(actor_id, format, opts)
|
|
644
|
+
nil
|
|
645
|
+
end
|
|
646
|
+
|
|
647
|
+
# Export Mitre ATT&CK information for a given actor.
|
|
648
|
+
# @param actor_id [String] Actor ID(derived from the actor's name)
|
|
649
|
+
# @param format [String] Supported report formats: CSV or JSON
|
|
650
|
+
# @param [Hash] opts the optional parameters
|
|
651
|
+
# @return [Array<(nil, Integer, Hash)>] nil, response status code and response headers
|
|
652
|
+
def get_mitre_report_with_http_info(actor_id, format, opts = {})
|
|
653
|
+
if @api_client.config.debugging
|
|
654
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_mitre_report ...'
|
|
655
|
+
end
|
|
656
|
+
# verify the required parameter 'actor_id' is set
|
|
657
|
+
if @api_client.config.client_side_validation && actor_id.nil?
|
|
658
|
+
fail ArgumentError, "Missing the required parameter 'actor_id' when calling Intel.get_mitre_report"
|
|
659
|
+
end
|
|
660
|
+
# verify the required parameter 'format' is set
|
|
661
|
+
if @api_client.config.client_side_validation && format.nil?
|
|
662
|
+
fail ArgumentError, "Missing the required parameter 'format' when calling Intel.get_mitre_report"
|
|
663
|
+
end
|
|
664
|
+
# resource path
|
|
665
|
+
local_var_path = '/intel/entities/mitre-reports/v1'
|
|
666
|
+
|
|
667
|
+
# query parameters
|
|
668
|
+
query_params = opts[:query_params] || {}
|
|
669
|
+
query_params[:'actor_id'] = actor_id
|
|
670
|
+
query_params[:'format'] = format
|
|
671
|
+
|
|
672
|
+
# header parameters
|
|
673
|
+
header_params = opts[:header_params] || {}
|
|
674
|
+
# HTTP header 'Accept' (if needed)
|
|
675
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/octet-stream', 'application/json', 'text/csv'])
|
|
676
|
+
|
|
677
|
+
# form parameters
|
|
678
|
+
form_params = opts[:form_params] || {}
|
|
679
|
+
|
|
680
|
+
# http body (model)
|
|
681
|
+
post_body = opts[:debug_body]
|
|
682
|
+
|
|
683
|
+
# return_type
|
|
684
|
+
return_type = opts[:debug_return_type]
|
|
685
|
+
|
|
686
|
+
# auth_names
|
|
687
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
688
|
+
|
|
689
|
+
new_options = opts.merge(
|
|
690
|
+
:operation => :"Intel.get_mitre_report",
|
|
691
|
+
:header_params => header_params,
|
|
692
|
+
:query_params => query_params,
|
|
693
|
+
:form_params => form_params,
|
|
694
|
+
:body => post_body,
|
|
695
|
+
:auth_names => auth_names,
|
|
696
|
+
:return_type => return_type
|
|
697
|
+
)
|
|
698
|
+
|
|
699
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
700
|
+
if @api_client.config.debugging
|
|
701
|
+
@api_client.config.logger.debug "API called: Intel#get_mitre_report\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
702
|
+
end
|
|
703
|
+
return data, status_code, headers
|
|
704
|
+
end
|
|
705
|
+
|
|
706
|
+
# Get vulnerabilities
|
|
707
|
+
# @param body [MsaIdsRequest]
|
|
708
|
+
# @param [Hash] opts the optional parameters
|
|
709
|
+
# @return [DomainVulnerabilityResponse]
|
|
710
|
+
def get_vulnerabilities(body, opts = {})
|
|
711
|
+
data, _status_code, _headers = get_vulnerabilities_with_http_info(body, opts)
|
|
712
|
+
data
|
|
713
|
+
end
|
|
714
|
+
|
|
715
|
+
# Get vulnerabilities
|
|
716
|
+
# @param body [MsaIdsRequest]
|
|
717
|
+
# @param [Hash] opts the optional parameters
|
|
718
|
+
# @return [Array<(DomainVulnerabilityResponse, Integer, Hash)>] DomainVulnerabilityResponse data, response status code and response headers
|
|
719
|
+
def get_vulnerabilities_with_http_info(body, opts = {})
|
|
720
|
+
if @api_client.config.debugging
|
|
721
|
+
@api_client.config.logger.debug 'Calling API: Intel.get_vulnerabilities ...'
|
|
722
|
+
end
|
|
723
|
+
# verify the required parameter 'body' is set
|
|
724
|
+
if @api_client.config.client_side_validation && body.nil?
|
|
725
|
+
fail ArgumentError, "Missing the required parameter 'body' when calling Intel.get_vulnerabilities"
|
|
726
|
+
end
|
|
727
|
+
# resource path
|
|
728
|
+
local_var_path = '/intel/entities/vulnerabilities/GET/v1'
|
|
729
|
+
|
|
730
|
+
# query parameters
|
|
731
|
+
query_params = opts[:query_params] || {}
|
|
732
|
+
|
|
733
|
+
# header parameters
|
|
734
|
+
header_params = opts[:header_params] || {}
|
|
735
|
+
# HTTP header 'Accept' (if needed)
|
|
736
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
737
|
+
# HTTP header 'Content-Type'
|
|
738
|
+
content_type = @api_client.select_header_content_type(['application/json'])
|
|
739
|
+
if !content_type.nil?
|
|
740
|
+
header_params['Content-Type'] = content_type
|
|
741
|
+
end
|
|
742
|
+
|
|
743
|
+
# form parameters
|
|
744
|
+
form_params = opts[:form_params] || {}
|
|
745
|
+
|
|
746
|
+
# http body (model)
|
|
747
|
+
post_body = opts[:debug_body] || @api_client.object_to_http_body(body)
|
|
748
|
+
|
|
749
|
+
# return_type
|
|
750
|
+
return_type = opts[:debug_return_type] || 'DomainVulnerabilityResponse'
|
|
751
|
+
|
|
752
|
+
# auth_names
|
|
753
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
754
|
+
|
|
755
|
+
new_options = opts.merge(
|
|
756
|
+
:operation => :"Intel.get_vulnerabilities",
|
|
757
|
+
:header_params => header_params,
|
|
758
|
+
:query_params => query_params,
|
|
759
|
+
:form_params => form_params,
|
|
760
|
+
:body => post_body,
|
|
761
|
+
:auth_names => auth_names,
|
|
762
|
+
:return_type => return_type
|
|
763
|
+
)
|
|
764
|
+
|
|
765
|
+
data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
|
|
766
|
+
if @api_client.config.debugging
|
|
767
|
+
@api_client.config.logger.debug "API called: Intel#get_vulnerabilities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
768
|
+
end
|
|
769
|
+
return data, status_code, headers
|
|
770
|
+
end
|
|
771
|
+
|
|
772
|
+
# Retrieves report and observable IDs associated with the given actor and attacks
|
|
773
|
+
# @param body [MsaIdsRequest]
|
|
774
|
+
# @param [Hash] opts the optional parameters
|
|
775
|
+
# @return [nil]
|
|
776
|
+
def post_mitre_attacks(body, opts = {})
|
|
777
|
+
post_mitre_attacks_with_http_info(body, opts)
|
|
778
|
+
nil
|
|
779
|
+
end
|
|
780
|
+
|
|
781
|
+
# Retrieves report and observable IDs associated with the given actor and attacks
|
|
782
|
+
# @param body [MsaIdsRequest]
|
|
783
|
+
# @param [Hash] opts the optional parameters
|
|
784
|
+
# @return [Array<(nil, Integer, Hash)>] nil, response status code and response headers
|
|
785
|
+
def post_mitre_attacks_with_http_info(body, opts = {})
|
|
786
|
+
if @api_client.config.debugging
|
|
787
|
+
@api_client.config.logger.debug 'Calling API: Intel.post_mitre_attacks ...'
|
|
788
|
+
end
|
|
789
|
+
# verify the required parameter 'body' is set
|
|
790
|
+
if @api_client.config.client_side_validation && body.nil?
|
|
791
|
+
fail ArgumentError, "Missing the required parameter 'body' when calling Intel.post_mitre_attacks"
|
|
792
|
+
end
|
|
793
|
+
# resource path
|
|
794
|
+
local_var_path = '/intel/entities/mitre/v1'
|
|
795
|
+
|
|
796
|
+
# query parameters
|
|
797
|
+
query_params = opts[:query_params] || {}
|
|
798
|
+
|
|
799
|
+
# header parameters
|
|
800
|
+
header_params = opts[:header_params] || {}
|
|
801
|
+
# HTTP header 'Accept' (if needed)
|
|
802
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
803
|
+
# HTTP header 'Content-Type'
|
|
804
|
+
content_type = @api_client.select_header_content_type(['application/json'])
|
|
805
|
+
if !content_type.nil?
|
|
806
|
+
header_params['Content-Type'] = content_type
|
|
807
|
+
end
|
|
808
|
+
|
|
809
|
+
# form parameters
|
|
810
|
+
form_params = opts[:form_params] || {}
|
|
811
|
+
|
|
812
|
+
# http body (model)
|
|
813
|
+
post_body = opts[:debug_body] || @api_client.object_to_http_body(body)
|
|
814
|
+
|
|
815
|
+
# return_type
|
|
816
|
+
return_type = opts[:debug_return_type]
|
|
817
|
+
|
|
818
|
+
# auth_names
|
|
819
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
820
|
+
|
|
821
|
+
new_options = opts.merge(
|
|
822
|
+
:operation => :"Intel.post_mitre_attacks",
|
|
823
|
+
:header_params => header_params,
|
|
824
|
+
:query_params => query_params,
|
|
825
|
+
:form_params => form_params,
|
|
826
|
+
:body => post_body,
|
|
827
|
+
:auth_names => auth_names,
|
|
828
|
+
:return_type => return_type
|
|
829
|
+
)
|
|
830
|
+
|
|
831
|
+
data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
|
|
832
|
+
if @api_client.config.debugging
|
|
833
|
+
@api_client.config.logger.debug "API called: Intel#post_mitre_attacks\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
834
|
+
end
|
|
835
|
+
return data, status_code, headers
|
|
836
|
+
end
|
|
837
|
+
|
|
838
|
+
# Get info about actors that match provided FQL filters.
|
|
839
|
+
# @param [Hash] opts the optional parameters
|
|
840
|
+
# @option opts [Integer] :offset Set the starting row number to return actors from. Defaults to 0.
|
|
841
|
+
# @option opts [Integer] :limit Set the number of actors to return. The value must be between 1 and 5000.
|
|
842
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
843
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: actor_type, capabilities, capability, capability.id, capability.slug, capability.value, created_date, description, ecrime_kill_chain.attribution, ecrime_kill_chain.crimes, ecrime_kill_chain.customers, ecrime_kill_chain.marketing, ecrime_kill_chain.monetization, ecrime_kill_chain.services_offered, ecrime_kill_chain.services_used, ecrime_kill_chain.technical_tradecraft, ecrime_kill_chain.victims, first_activity_date, group, group.id, group.slug, group.value, id, kill_chain.actions_and_objectives, kill_chain.actions_on_objectives, kill_chain.command_and_control, kill_chain.delivery, kill_chain.exploitation, kill_chain.installation, kill_chain.objectives, kill_chain.reconnaissance, kill_chain.weaponization, known_as, last_activity_date, last_modified_date, motivations, motivations.id, motivations.slug, motivations.value, name, objectives, origins, origins.id, origins.slug, origins.value, region, region.id, region.slug, region.value, short_description, slug, status, target_countries, target_countries.id, target_countries.slug, target_countries.value, target_industries, target_industries.id, target_industries.slug, target_industries.value, target_regions, target_regions.id, target_regions.slug, target_regions.value.
|
|
844
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
845
|
+
# @option opts [Array<String>] :fields The fields to return, or a predefined set of fields in the form of the collection name surrounded by two underscores like: \\_\\_\\<collection\\>\\_\\_. Ex: slug \\_\\_full\\_\\_. Defaults to \\_\\_basic\\_\\_.
|
|
846
|
+
# @return [DomainActorsResponse]
|
|
847
|
+
def query_intel_actor_entities(opts = {})
|
|
848
|
+
data, _status_code, _headers = query_intel_actor_entities_with_http_info(opts)
|
|
849
|
+
data
|
|
850
|
+
end
|
|
851
|
+
|
|
852
|
+
# Get info about actors that match provided FQL filters.
|
|
853
|
+
# @param [Hash] opts the optional parameters
|
|
854
|
+
# @option opts [Integer] :offset Set the starting row number to return actors from. Defaults to 0.
|
|
855
|
+
# @option opts [Integer] :limit Set the number of actors to return. The value must be between 1 and 5000.
|
|
856
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
857
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: actor_type, capabilities, capability, capability.id, capability.slug, capability.value, created_date, description, ecrime_kill_chain.attribution, ecrime_kill_chain.crimes, ecrime_kill_chain.customers, ecrime_kill_chain.marketing, ecrime_kill_chain.monetization, ecrime_kill_chain.services_offered, ecrime_kill_chain.services_used, ecrime_kill_chain.technical_tradecraft, ecrime_kill_chain.victims, first_activity_date, group, group.id, group.slug, group.value, id, kill_chain.actions_and_objectives, kill_chain.actions_on_objectives, kill_chain.command_and_control, kill_chain.delivery, kill_chain.exploitation, kill_chain.installation, kill_chain.objectives, kill_chain.reconnaissance, kill_chain.weaponization, known_as, last_activity_date, last_modified_date, motivations, motivations.id, motivations.slug, motivations.value, name, objectives, origins, origins.id, origins.slug, origins.value, region, region.id, region.slug, region.value, short_description, slug, status, target_countries, target_countries.id, target_countries.slug, target_countries.value, target_industries, target_industries.id, target_industries.slug, target_industries.value, target_regions, target_regions.id, target_regions.slug, target_regions.value.
|
|
858
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
859
|
+
# @option opts [Array<String>] :fields The fields to return, or a predefined set of fields in the form of the collection name surrounded by two underscores like: \\_\\_\\<collection\\>\\_\\_. Ex: slug \\_\\_full\\_\\_. Defaults to \\_\\_basic\\_\\_.
|
|
860
|
+
# @return [Array<(DomainActorsResponse, Integer, Hash)>] DomainActorsResponse data, response status code and response headers
|
|
861
|
+
def query_intel_actor_entities_with_http_info(opts = {})
|
|
862
|
+
if @api_client.config.debugging
|
|
863
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_intel_actor_entities ...'
|
|
864
|
+
end
|
|
865
|
+
# resource path
|
|
866
|
+
local_var_path = '/intel/combined/actors/v1'
|
|
867
|
+
|
|
868
|
+
# query parameters
|
|
869
|
+
query_params = opts[:query_params] || {}
|
|
870
|
+
query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
|
|
871
|
+
query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
|
|
872
|
+
query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
|
|
873
|
+
query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
|
|
874
|
+
query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
|
|
875
|
+
query_params[:'fields'] = @api_client.build_collection_param(opts[:'fields'], :multi) if !opts[:'fields'].nil?
|
|
876
|
+
|
|
877
|
+
# header parameters
|
|
878
|
+
header_params = opts[:header_params] || {}
|
|
879
|
+
# HTTP header 'Accept' (if needed)
|
|
880
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
881
|
+
|
|
882
|
+
# form parameters
|
|
883
|
+
form_params = opts[:form_params] || {}
|
|
884
|
+
|
|
885
|
+
# http body (model)
|
|
886
|
+
post_body = opts[:debug_body]
|
|
887
|
+
|
|
888
|
+
# return_type
|
|
889
|
+
return_type = opts[:debug_return_type] || 'DomainActorsResponse'
|
|
890
|
+
|
|
891
|
+
# auth_names
|
|
892
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
893
|
+
|
|
894
|
+
new_options = opts.merge(
|
|
895
|
+
:operation => :"Intel.query_intel_actor_entities",
|
|
896
|
+
:header_params => header_params,
|
|
897
|
+
:query_params => query_params,
|
|
898
|
+
:form_params => form_params,
|
|
899
|
+
:body => post_body,
|
|
900
|
+
:auth_names => auth_names,
|
|
901
|
+
:return_type => return_type
|
|
902
|
+
)
|
|
903
|
+
|
|
904
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
905
|
+
if @api_client.config.debugging
|
|
906
|
+
@api_client.config.logger.debug "API called: Intel#query_intel_actor_entities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
907
|
+
end
|
|
908
|
+
return data, status_code, headers
|
|
909
|
+
end
|
|
910
|
+
|
|
911
|
+
# Get actor IDs that match provided FQL filters.
|
|
912
|
+
# @param [Hash] opts the optional parameters
|
|
913
|
+
# @option opts [Integer] :offset Set the starting row number to return actors IDs from. Defaults to 0.
|
|
914
|
+
# @option opts [Integer] :limit Set the number of actor IDs to return. The value must be between 1 and 5000.
|
|
915
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
916
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: actor_type, capabilities, capability, capability.id, capability.slug, capability.value, created_date, description, ecrime_kill_chain.attribution, ecrime_kill_chain.crimes, ecrime_kill_chain.customers, ecrime_kill_chain.marketing, ecrime_kill_chain.monetization, ecrime_kill_chain.services_offered, ecrime_kill_chain.services_used, ecrime_kill_chain.technical_tradecraft, ecrime_kill_chain.victims, first_activity_date, group, group.id, group.slug, group.value, id, kill_chain.actions_and_objectives, kill_chain.actions_on_objectives, kill_chain.command_and_control, kill_chain.delivery, kill_chain.exploitation, kill_chain.installation, kill_chain.objectives, kill_chain.reconnaissance, kill_chain.weaponization, known_as, last_activity_date, last_modified_date, motivations, motivations.id, motivations.slug, motivations.value, name, objectives, origins, origins.id, origins.slug, origins.value, region, region.id, region.slug, region.value, short_description, slug, status, target_countries, target_countries.id, target_countries.slug, target_countries.value, target_industries, target_industries.id, target_industries.slug, target_industries.value, target_regions, target_regions.id, target_regions.slug, target_regions.value.
|
|
917
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
918
|
+
# @return [MsaQueryResponse]
|
|
919
|
+
def query_intel_actor_ids(opts = {})
|
|
920
|
+
data, _status_code, _headers = query_intel_actor_ids_with_http_info(opts)
|
|
921
|
+
data
|
|
922
|
+
end
|
|
923
|
+
|
|
924
|
+
# Get actor IDs that match provided FQL filters.
|
|
925
|
+
# @param [Hash] opts the optional parameters
|
|
926
|
+
# @option opts [Integer] :offset Set the starting row number to return actors IDs from. Defaults to 0.
|
|
927
|
+
# @option opts [Integer] :limit Set the number of actor IDs to return. The value must be between 1 and 5000.
|
|
928
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
929
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: actor_type, capabilities, capability, capability.id, capability.slug, capability.value, created_date, description, ecrime_kill_chain.attribution, ecrime_kill_chain.crimes, ecrime_kill_chain.customers, ecrime_kill_chain.marketing, ecrime_kill_chain.monetization, ecrime_kill_chain.services_offered, ecrime_kill_chain.services_used, ecrime_kill_chain.technical_tradecraft, ecrime_kill_chain.victims, first_activity_date, group, group.id, group.slug, group.value, id, kill_chain.actions_and_objectives, kill_chain.actions_on_objectives, kill_chain.command_and_control, kill_chain.delivery, kill_chain.exploitation, kill_chain.installation, kill_chain.objectives, kill_chain.reconnaissance, kill_chain.weaponization, known_as, last_activity_date, last_modified_date, motivations, motivations.id, motivations.slug, motivations.value, name, objectives, origins, origins.id, origins.slug, origins.value, region, region.id, region.slug, region.value, short_description, slug, status, target_countries, target_countries.id, target_countries.slug, target_countries.value, target_industries, target_industries.id, target_industries.slug, target_industries.value, target_regions, target_regions.id, target_regions.slug, target_regions.value.
|
|
930
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
931
|
+
# @return [Array<(MsaQueryResponse, Integer, Hash)>] MsaQueryResponse data, response status code and response headers
|
|
932
|
+
def query_intel_actor_ids_with_http_info(opts = {})
|
|
933
|
+
if @api_client.config.debugging
|
|
934
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_intel_actor_ids ...'
|
|
935
|
+
end
|
|
936
|
+
# resource path
|
|
937
|
+
local_var_path = '/intel/queries/actors/v1'
|
|
938
|
+
|
|
939
|
+
# query parameters
|
|
940
|
+
query_params = opts[:query_params] || {}
|
|
941
|
+
query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
|
|
942
|
+
query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
|
|
943
|
+
query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
|
|
944
|
+
query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
|
|
945
|
+
query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
|
|
946
|
+
|
|
947
|
+
# header parameters
|
|
948
|
+
header_params = opts[:header_params] || {}
|
|
949
|
+
# HTTP header 'Accept' (if needed)
|
|
950
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
951
|
+
|
|
952
|
+
# form parameters
|
|
953
|
+
form_params = opts[:form_params] || {}
|
|
954
|
+
|
|
955
|
+
# http body (model)
|
|
956
|
+
post_body = opts[:debug_body]
|
|
957
|
+
|
|
958
|
+
# return_type
|
|
959
|
+
return_type = opts[:debug_return_type] || 'MsaQueryResponse'
|
|
960
|
+
|
|
961
|
+
# auth_names
|
|
962
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
963
|
+
|
|
964
|
+
new_options = opts.merge(
|
|
965
|
+
:operation => :"Intel.query_intel_actor_ids",
|
|
966
|
+
:header_params => header_params,
|
|
967
|
+
:query_params => query_params,
|
|
968
|
+
:form_params => form_params,
|
|
969
|
+
:body => post_body,
|
|
970
|
+
:auth_names => auth_names,
|
|
971
|
+
:return_type => return_type
|
|
972
|
+
)
|
|
973
|
+
|
|
974
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
975
|
+
if @api_client.config.debugging
|
|
976
|
+
@api_client.config.logger.debug "API called: Intel#query_intel_actor_ids\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
977
|
+
end
|
|
978
|
+
return data, status_code, headers
|
|
979
|
+
end
|
|
980
|
+
|
|
981
|
+
# Get info about indicators that match provided FQL filters.
|
|
982
|
+
# @param [Hash] opts the optional parameters
|
|
983
|
+
# @option opts [Integer] :offset Set the starting row number to return indicators from. Defaults to 0.
|
|
984
|
+
# @option opts [Integer] :limit Set the number of indicators to return. The number must be between 1 and 10000
|
|
985
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: published_date|asc.
|
|
986
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: _marker, actors, deleted, domain_types, id, indicator, ip_address_types, kill_chains, labels, labels.created_on, labels.last_valid_on, labels.name, last_updated, malicious_confidence, malware_families, published_date, reports, scope, targets, threat_types, type, vulnerabilities.
|
|
987
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
988
|
+
# @option opts [Boolean] :include_deleted If true, include both published and deleted indicators in the response. Defaults to false.
|
|
989
|
+
# @option opts [Boolean] :include_relations If true, include related indicators in the response. Defaults to true.
|
|
990
|
+
# @return [DomainPublicIndicatorsV3Response]
|
|
991
|
+
def query_intel_indicator_entities(opts = {})
|
|
992
|
+
data, _status_code, _headers = query_intel_indicator_entities_with_http_info(opts)
|
|
993
|
+
data
|
|
994
|
+
end
|
|
995
|
+
|
|
996
|
+
# Get info about indicators that match provided FQL filters.
|
|
997
|
+
# @param [Hash] opts the optional parameters
|
|
998
|
+
# @option opts [Integer] :offset Set the starting row number to return indicators from. Defaults to 0.
|
|
999
|
+
# @option opts [Integer] :limit Set the number of indicators to return. The number must be between 1 and 10000
|
|
1000
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: published_date|asc.
|
|
1001
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: _marker, actors, deleted, domain_types, id, indicator, ip_address_types, kill_chains, labels, labels.created_on, labels.last_valid_on, labels.name, last_updated, malicious_confidence, malware_families, published_date, reports, scope, targets, threat_types, type, vulnerabilities.
|
|
1002
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1003
|
+
# @option opts [Boolean] :include_deleted If true, include both published and deleted indicators in the response. Defaults to false.
|
|
1004
|
+
# @option opts [Boolean] :include_relations If true, include related indicators in the response. Defaults to true.
|
|
1005
|
+
# @return [Array<(DomainPublicIndicatorsV3Response, Integer, Hash)>] DomainPublicIndicatorsV3Response data, response status code and response headers
|
|
1006
|
+
def query_intel_indicator_entities_with_http_info(opts = {})
|
|
1007
|
+
if @api_client.config.debugging
|
|
1008
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_intel_indicator_entities ...'
|
|
1009
|
+
end
|
|
1010
|
+
# resource path
|
|
1011
|
+
local_var_path = '/intel/combined/indicators/v1'
|
|
1012
|
+
|
|
1013
|
+
# query parameters
|
|
1014
|
+
query_params = opts[:query_params] || {}
|
|
1015
|
+
query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
|
|
1016
|
+
query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
|
|
1017
|
+
query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
|
|
1018
|
+
query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
|
|
1019
|
+
query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
|
|
1020
|
+
query_params[:'include_deleted'] = opts[:'include_deleted'] if !opts[:'include_deleted'].nil?
|
|
1021
|
+
query_params[:'include_relations'] = opts[:'include_relations'] if !opts[:'include_relations'].nil?
|
|
1022
|
+
|
|
1023
|
+
# header parameters
|
|
1024
|
+
header_params = opts[:header_params] || {}
|
|
1025
|
+
# HTTP header 'Accept' (if needed)
|
|
1026
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
1027
|
+
|
|
1028
|
+
# form parameters
|
|
1029
|
+
form_params = opts[:form_params] || {}
|
|
1030
|
+
|
|
1031
|
+
# http body (model)
|
|
1032
|
+
post_body = opts[:debug_body]
|
|
1033
|
+
|
|
1034
|
+
# return_type
|
|
1035
|
+
return_type = opts[:debug_return_type] || 'DomainPublicIndicatorsV3Response'
|
|
1036
|
+
|
|
1037
|
+
# auth_names
|
|
1038
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
1039
|
+
|
|
1040
|
+
new_options = opts.merge(
|
|
1041
|
+
:operation => :"Intel.query_intel_indicator_entities",
|
|
1042
|
+
:header_params => header_params,
|
|
1043
|
+
:query_params => query_params,
|
|
1044
|
+
:form_params => form_params,
|
|
1045
|
+
:body => post_body,
|
|
1046
|
+
:auth_names => auth_names,
|
|
1047
|
+
:return_type => return_type
|
|
1048
|
+
)
|
|
1049
|
+
|
|
1050
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
1051
|
+
if @api_client.config.debugging
|
|
1052
|
+
@api_client.config.logger.debug "API called: Intel#query_intel_indicator_entities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
1053
|
+
end
|
|
1054
|
+
return data, status_code, headers
|
|
1055
|
+
end
|
|
1056
|
+
|
|
1057
|
+
# Get indicators IDs that match provided FQL filters.
|
|
1058
|
+
# @param [Hash] opts the optional parameters
|
|
1059
|
+
# @option opts [Integer] :offset Set the starting row number to return indicator IDs from. Defaults to 0.
|
|
1060
|
+
# @option opts [Integer] :limit Set the number of indicator IDs to return. The number must be between 1 and 10000
|
|
1061
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: published_date|asc.
|
|
1062
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: _marker, actors, deleted, domain_types, id, indicator, ip_address_types, kill_chains, labels, labels.created_on, labels.last_valid_on, labels.name, last_updated, malicious_confidence, malware_families, published_date, reports, scope, targets, threat_types, type, vulnerabilities.
|
|
1063
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1064
|
+
# @option opts [Boolean] :include_deleted If true, include both published and deleted indicators in the response. Defaults to false.
|
|
1065
|
+
# @option opts [Boolean] :include_relations If true, include related indicators in the response. Defaults to true.
|
|
1066
|
+
# @return [MsaQueryResponse]
|
|
1067
|
+
def query_intel_indicator_ids(opts = {})
|
|
1068
|
+
data, _status_code, _headers = query_intel_indicator_ids_with_http_info(opts)
|
|
1069
|
+
data
|
|
1070
|
+
end
|
|
1071
|
+
|
|
1072
|
+
# Get indicators IDs that match provided FQL filters.
|
|
1073
|
+
# @param [Hash] opts the optional parameters
|
|
1074
|
+
# @option opts [Integer] :offset Set the starting row number to return indicator IDs from. Defaults to 0.
|
|
1075
|
+
# @option opts [Integer] :limit Set the number of indicator IDs to return. The number must be between 1 and 10000
|
|
1076
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: published_date|asc.
|
|
1077
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: _marker, actors, deleted, domain_types, id, indicator, ip_address_types, kill_chains, labels, labels.created_on, labels.last_valid_on, labels.name, last_updated, malicious_confidence, malware_families, published_date, reports, scope, targets, threat_types, type, vulnerabilities.
|
|
1078
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1079
|
+
# @option opts [Boolean] :include_deleted If true, include both published and deleted indicators in the response. Defaults to false.
|
|
1080
|
+
# @option opts [Boolean] :include_relations If true, include related indicators in the response. Defaults to true.
|
|
1081
|
+
# @return [Array<(MsaQueryResponse, Integer, Hash)>] MsaQueryResponse data, response status code and response headers
|
|
1082
|
+
def query_intel_indicator_ids_with_http_info(opts = {})
|
|
1083
|
+
if @api_client.config.debugging
|
|
1084
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_intel_indicator_ids ...'
|
|
1085
|
+
end
|
|
1086
|
+
# resource path
|
|
1087
|
+
local_var_path = '/intel/queries/indicators/v1'
|
|
1088
|
+
|
|
1089
|
+
# query parameters
|
|
1090
|
+
query_params = opts[:query_params] || {}
|
|
1091
|
+
query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
|
|
1092
|
+
query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
|
|
1093
|
+
query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
|
|
1094
|
+
query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
|
|
1095
|
+
query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
|
|
1096
|
+
query_params[:'include_deleted'] = opts[:'include_deleted'] if !opts[:'include_deleted'].nil?
|
|
1097
|
+
query_params[:'include_relations'] = opts[:'include_relations'] if !opts[:'include_relations'].nil?
|
|
1098
|
+
|
|
1099
|
+
# header parameters
|
|
1100
|
+
header_params = opts[:header_params] || {}
|
|
1101
|
+
# HTTP header 'Accept' (if needed)
|
|
1102
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
1103
|
+
|
|
1104
|
+
# form parameters
|
|
1105
|
+
form_params = opts[:form_params] || {}
|
|
1106
|
+
|
|
1107
|
+
# http body (model)
|
|
1108
|
+
post_body = opts[:debug_body]
|
|
1109
|
+
|
|
1110
|
+
# return_type
|
|
1111
|
+
return_type = opts[:debug_return_type] || 'MsaQueryResponse'
|
|
1112
|
+
|
|
1113
|
+
# auth_names
|
|
1114
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
1115
|
+
|
|
1116
|
+
new_options = opts.merge(
|
|
1117
|
+
:operation => :"Intel.query_intel_indicator_ids",
|
|
1118
|
+
:header_params => header_params,
|
|
1119
|
+
:query_params => query_params,
|
|
1120
|
+
:form_params => form_params,
|
|
1121
|
+
:body => post_body,
|
|
1122
|
+
:auth_names => auth_names,
|
|
1123
|
+
:return_type => return_type
|
|
1124
|
+
)
|
|
1125
|
+
|
|
1126
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
1127
|
+
if @api_client.config.debugging
|
|
1128
|
+
@api_client.config.logger.debug "API called: Intel#query_intel_indicator_ids\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
1129
|
+
end
|
|
1130
|
+
return data, status_code, headers
|
|
1131
|
+
end
|
|
1132
|
+
|
|
1133
|
+
# Get info about reports that match provided FQL filters.
|
|
1134
|
+
# @param [Hash] opts the optional parameters
|
|
1135
|
+
# @option opts [Integer] :offset Set the starting row number to return reports from. Defaults to 0.
|
|
1136
|
+
# @option opts [Integer] :limit Set the number of reports to return. The value must be between 1 and 5000.
|
|
1137
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
1138
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: actors, actors.id, actors.name, actors.slug, actors.url, created_date, description, id, last_modified_date, malware, malware.community_identifiers, malware.family_name, malware.slug, motivations, motivations.id, motivations.slug, motivations.value, name, name.raw, short_description, slug, sub_type, sub_type.id, sub_type.name, sub_type.slug, tags, tags.id, tags.slug, tags.value, target_countries, target_countries.id, target_countries.slug, target_countries.value, target_industries, target_industries.id, target_industries.slug, target_industries.value, type, type.id, type.name, type.slug, url.
|
|
1139
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1140
|
+
# @option opts [Array<String>] :fields The fields to return, or a predefined set of fields in the form of the collection name surrounded by two underscores like: \\_\\_\\<collection\\>\\_\\_. Ex: slug \\_\\_full\\_\\_. Defaults to \\_\\_basic\\_\\_.
|
|
1141
|
+
# @return [DomainNewsResponse]
|
|
1142
|
+
def query_intel_report_entities(opts = {})
|
|
1143
|
+
data, _status_code, _headers = query_intel_report_entities_with_http_info(opts)
|
|
1144
|
+
data
|
|
1145
|
+
end
|
|
1146
|
+
|
|
1147
|
+
# Get info about reports that match provided FQL filters.
|
|
1148
|
+
# @param [Hash] opts the optional parameters
|
|
1149
|
+
# @option opts [Integer] :offset Set the starting row number to return reports from. Defaults to 0.
|
|
1150
|
+
# @option opts [Integer] :limit Set the number of reports to return. The value must be between 1 and 5000.
|
|
1151
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
1152
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: actors, actors.id, actors.name, actors.slug, actors.url, created_date, description, id, last_modified_date, malware, malware.community_identifiers, malware.family_name, malware.slug, motivations, motivations.id, motivations.slug, motivations.value, name, name.raw, short_description, slug, sub_type, sub_type.id, sub_type.name, sub_type.slug, tags, tags.id, tags.slug, tags.value, target_countries, target_countries.id, target_countries.slug, target_countries.value, target_industries, target_industries.id, target_industries.slug, target_industries.value, type, type.id, type.name, type.slug, url.
|
|
1153
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1154
|
+
# @option opts [Array<String>] :fields The fields to return, or a predefined set of fields in the form of the collection name surrounded by two underscores like: \\_\\_\\<collection\\>\\_\\_. Ex: slug \\_\\_full\\_\\_. Defaults to \\_\\_basic\\_\\_.
|
|
1155
|
+
# @return [Array<(DomainNewsResponse, Integer, Hash)>] DomainNewsResponse data, response status code and response headers
|
|
1156
|
+
def query_intel_report_entities_with_http_info(opts = {})
|
|
1157
|
+
if @api_client.config.debugging
|
|
1158
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_intel_report_entities ...'
|
|
1159
|
+
end
|
|
1160
|
+
# resource path
|
|
1161
|
+
local_var_path = '/intel/combined/reports/v1'
|
|
1162
|
+
|
|
1163
|
+
# query parameters
|
|
1164
|
+
query_params = opts[:query_params] || {}
|
|
1165
|
+
query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
|
|
1166
|
+
query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
|
|
1167
|
+
query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
|
|
1168
|
+
query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
|
|
1169
|
+
query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
|
|
1170
|
+
query_params[:'fields'] = @api_client.build_collection_param(opts[:'fields'], :multi) if !opts[:'fields'].nil?
|
|
1171
|
+
|
|
1172
|
+
# header parameters
|
|
1173
|
+
header_params = opts[:header_params] || {}
|
|
1174
|
+
# HTTP header 'Accept' (if needed)
|
|
1175
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
1176
|
+
|
|
1177
|
+
# form parameters
|
|
1178
|
+
form_params = opts[:form_params] || {}
|
|
1179
|
+
|
|
1180
|
+
# http body (model)
|
|
1181
|
+
post_body = opts[:debug_body]
|
|
1182
|
+
|
|
1183
|
+
# return_type
|
|
1184
|
+
return_type = opts[:debug_return_type] || 'DomainNewsResponse'
|
|
1185
|
+
|
|
1186
|
+
# auth_names
|
|
1187
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
1188
|
+
|
|
1189
|
+
new_options = opts.merge(
|
|
1190
|
+
:operation => :"Intel.query_intel_report_entities",
|
|
1191
|
+
:header_params => header_params,
|
|
1192
|
+
:query_params => query_params,
|
|
1193
|
+
:form_params => form_params,
|
|
1194
|
+
:body => post_body,
|
|
1195
|
+
:auth_names => auth_names,
|
|
1196
|
+
:return_type => return_type
|
|
1197
|
+
)
|
|
1198
|
+
|
|
1199
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
1200
|
+
if @api_client.config.debugging
|
|
1201
|
+
@api_client.config.logger.debug "API called: Intel#query_intel_report_entities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
1202
|
+
end
|
|
1203
|
+
return data, status_code, headers
|
|
1204
|
+
end
|
|
1205
|
+
|
|
1206
|
+
# Get report IDs that match provided FQL filters.
|
|
1207
|
+
# @param [Hash] opts the optional parameters
|
|
1208
|
+
# @option opts [Integer] :offset Set the starting row number to return report IDs from. Defaults to 0.
|
|
1209
|
+
# @option opts [Integer] :limit Set the number of report IDs to return. The value must be between 1 and 5000.
|
|
1210
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
1211
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: actors, actors.id, actors.name, actors.slug, actors.url, created_date, description, id, last_modified_date, malware, malware.community_identifiers, malware.family_name, malware.slug, motivations, motivations.id, motivations.slug, motivations.value, name, name.raw, short_description, slug, sub_type, sub_type.id, sub_type.name, sub_type.slug, tags, tags.id, tags.slug, tags.value, target_countries, target_countries.id, target_countries.slug, target_countries.value, target_industries, target_industries.id, target_industries.slug, target_industries.value, type, type.id, type.name, type.slug, url.
|
|
1212
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1213
|
+
# @return [MsaQueryResponse]
|
|
1214
|
+
def query_intel_report_ids(opts = {})
|
|
1215
|
+
data, _status_code, _headers = query_intel_report_ids_with_http_info(opts)
|
|
1216
|
+
data
|
|
1217
|
+
end
|
|
1218
|
+
|
|
1219
|
+
# Get report IDs that match provided FQL filters.
|
|
1220
|
+
# @param [Hash] opts the optional parameters
|
|
1221
|
+
# @option opts [Integer] :offset Set the starting row number to return report IDs from. Defaults to 0.
|
|
1222
|
+
# @option opts [Integer] :limit Set the number of report IDs to return. The value must be between 1 and 5000.
|
|
1223
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
1224
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters. Filter parameters include: actors, actors.id, actors.name, actors.slug, actors.url, created_date, description, id, last_modified_date, malware, malware.community_identifiers, malware.family_name, malware.slug, motivations, motivations.id, motivations.slug, motivations.value, name, name.raw, short_description, slug, sub_type, sub_type.id, sub_type.name, sub_type.slug, tags, tags.id, tags.slug, tags.value, target_countries, target_countries.id, target_countries.slug, target_countries.value, target_industries, target_industries.id, target_industries.slug, target_industries.value, type, type.id, type.name, type.slug, url.
|
|
1225
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1226
|
+
# @return [Array<(MsaQueryResponse, Integer, Hash)>] MsaQueryResponse data, response status code and response headers
|
|
1227
|
+
def query_intel_report_ids_with_http_info(opts = {})
|
|
1228
|
+
if @api_client.config.debugging
|
|
1229
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_intel_report_ids ...'
|
|
1230
|
+
end
|
|
1231
|
+
# resource path
|
|
1232
|
+
local_var_path = '/intel/queries/reports/v1'
|
|
1233
|
+
|
|
1234
|
+
# query parameters
|
|
1235
|
+
query_params = opts[:query_params] || {}
|
|
1236
|
+
query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
|
|
1237
|
+
query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
|
|
1238
|
+
query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
|
|
1239
|
+
query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
|
|
1240
|
+
query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
|
|
1241
|
+
|
|
1242
|
+
# header parameters
|
|
1243
|
+
header_params = opts[:header_params] || {}
|
|
1244
|
+
# HTTP header 'Accept' (if needed)
|
|
1245
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
1246
|
+
|
|
1247
|
+
# form parameters
|
|
1248
|
+
form_params = opts[:form_params] || {}
|
|
1249
|
+
|
|
1250
|
+
# http body (model)
|
|
1251
|
+
post_body = opts[:debug_body]
|
|
1252
|
+
|
|
1253
|
+
# return_type
|
|
1254
|
+
return_type = opts[:debug_return_type] || 'MsaQueryResponse'
|
|
1255
|
+
|
|
1256
|
+
# auth_names
|
|
1257
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
1258
|
+
|
|
1259
|
+
new_options = opts.merge(
|
|
1260
|
+
:operation => :"Intel.query_intel_report_ids",
|
|
1261
|
+
:header_params => header_params,
|
|
1262
|
+
:query_params => query_params,
|
|
1263
|
+
:form_params => form_params,
|
|
1264
|
+
:body => post_body,
|
|
1265
|
+
:auth_names => auth_names,
|
|
1266
|
+
:return_type => return_type
|
|
1267
|
+
)
|
|
1268
|
+
|
|
1269
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
1270
|
+
if @api_client.config.debugging
|
|
1271
|
+
@api_client.config.logger.debug "API called: Intel#query_intel_report_ids\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
1272
|
+
end
|
|
1273
|
+
return data, status_code, headers
|
|
1274
|
+
end
|
|
1275
|
+
|
|
1276
|
+
# Search for rule IDs that match provided filter criteria.
|
|
1277
|
+
# @param type [String] The rule news report type. Accepted values: snort-suricata-master snort-suricata-update snort-suricata-changelog yara-master yara-update yara-changelog common-event-format netwitness cql-master cql-update cql-changelog
|
|
1278
|
+
# @param [Hash] opts the optional parameters
|
|
1279
|
+
# @option opts [Integer] :offset Set the starting row number to return reports from. Defaults to 0.
|
|
1280
|
+
# @option opts [Integer] :limit The number of rule IDs to return. Defaults to 10.
|
|
1281
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
1282
|
+
# @option opts [Array<String>] :name Search by rule title.
|
|
1283
|
+
# @option opts [Array<String>] :description Substring match on description field.
|
|
1284
|
+
# @option opts [Array<String>] :tags Search for rule tags.
|
|
1285
|
+
# @option opts [Integer] :min_created_date Filter results to those created on or after a certain date.
|
|
1286
|
+
# @option opts [String] :max_created_date Filter results to those created on or before a certain date.
|
|
1287
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1288
|
+
# @return [MsaQueryResponse]
|
|
1289
|
+
def query_intel_rule_ids(type, opts = {})
|
|
1290
|
+
data, _status_code, _headers = query_intel_rule_ids_with_http_info(type, opts)
|
|
1291
|
+
data
|
|
1292
|
+
end
|
|
1293
|
+
|
|
1294
|
+
# Search for rule IDs that match provided filter criteria.
|
|
1295
|
+
# @param type [String] The rule news report type. Accepted values: snort-suricata-master snort-suricata-update snort-suricata-changelog yara-master yara-update yara-changelog common-event-format netwitness cql-master cql-update cql-changelog
|
|
1296
|
+
# @param [Hash] opts the optional parameters
|
|
1297
|
+
# @option opts [Integer] :offset Set the starting row number to return reports from. Defaults to 0.
|
|
1298
|
+
# @option opts [Integer] :limit The number of rule IDs to return. Defaults to 10.
|
|
1299
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
1300
|
+
# @option opts [Array<String>] :name Search by rule title.
|
|
1301
|
+
# @option opts [Array<String>] :description Substring match on description field.
|
|
1302
|
+
# @option opts [Array<String>] :tags Search for rule tags.
|
|
1303
|
+
# @option opts [Integer] :min_created_date Filter results to those created on or after a certain date.
|
|
1304
|
+
# @option opts [String] :max_created_date Filter results to those created on or before a certain date.
|
|
1305
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1306
|
+
# @return [Array<(MsaQueryResponse, Integer, Hash)>] MsaQueryResponse data, response status code and response headers
|
|
1307
|
+
def query_intel_rule_ids_with_http_info(type, opts = {})
|
|
1308
|
+
if @api_client.config.debugging
|
|
1309
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_intel_rule_ids ...'
|
|
1310
|
+
end
|
|
1311
|
+
# verify the required parameter 'type' is set
|
|
1312
|
+
if @api_client.config.client_side_validation && type.nil?
|
|
1313
|
+
fail ArgumentError, "Missing the required parameter 'type' when calling Intel.query_intel_rule_ids"
|
|
1314
|
+
end
|
|
1315
|
+
# resource path
|
|
1316
|
+
local_var_path = '/intel/queries/rules/v1'
|
|
1317
|
+
|
|
1318
|
+
# query parameters
|
|
1319
|
+
query_params = opts[:query_params] || {}
|
|
1320
|
+
query_params[:'type'] = type
|
|
1321
|
+
query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
|
|
1322
|
+
query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
|
|
1323
|
+
query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
|
|
1324
|
+
query_params[:'name'] = @api_client.build_collection_param(opts[:'name'], :csv) if !opts[:'name'].nil?
|
|
1325
|
+
query_params[:'description'] = @api_client.build_collection_param(opts[:'description'], :csv) if !opts[:'description'].nil?
|
|
1326
|
+
query_params[:'tags'] = @api_client.build_collection_param(opts[:'tags'], :csv) if !opts[:'tags'].nil?
|
|
1327
|
+
query_params[:'min_created_date'] = opts[:'min_created_date'] if !opts[:'min_created_date'].nil?
|
|
1328
|
+
query_params[:'max_created_date'] = opts[:'max_created_date'] if !opts[:'max_created_date'].nil?
|
|
1329
|
+
query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
|
|
1330
|
+
|
|
1331
|
+
# header parameters
|
|
1332
|
+
header_params = opts[:header_params] || {}
|
|
1333
|
+
# HTTP header 'Accept' (if needed)
|
|
1334
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
1335
|
+
|
|
1336
|
+
# form parameters
|
|
1337
|
+
form_params = opts[:form_params] || {}
|
|
1338
|
+
|
|
1339
|
+
# http body (model)
|
|
1340
|
+
post_body = opts[:debug_body]
|
|
1341
|
+
|
|
1342
|
+
# return_type
|
|
1343
|
+
return_type = opts[:debug_return_type] || 'MsaQueryResponse'
|
|
1344
|
+
|
|
1345
|
+
# auth_names
|
|
1346
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
1347
|
+
|
|
1348
|
+
new_options = opts.merge(
|
|
1349
|
+
:operation => :"Intel.query_intel_rule_ids",
|
|
1350
|
+
:header_params => header_params,
|
|
1351
|
+
:query_params => query_params,
|
|
1352
|
+
:form_params => form_params,
|
|
1353
|
+
:body => post_body,
|
|
1354
|
+
:auth_names => auth_names,
|
|
1355
|
+
:return_type => return_type
|
|
1356
|
+
)
|
|
1357
|
+
|
|
1358
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
1359
|
+
if @api_client.config.debugging
|
|
1360
|
+
@api_client.config.logger.debug "API called: Intel#query_intel_rule_ids\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
1361
|
+
end
|
|
1362
|
+
return data, status_code, headers
|
|
1363
|
+
end
|
|
1364
|
+
|
|
1365
|
+
# Get malware family names that match provided FQL filters.
|
|
1366
|
+
# @param [Hash] opts the optional parameters
|
|
1367
|
+
# @option opts [Integer] :offset Set the starting row number to return malware IDs from. Defaults to 0.
|
|
1368
|
+
# @option opts [Integer] :limit Set the number of malware IDs to return. The value must be between 1 and 5000.
|
|
1369
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
1370
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters.
|
|
1371
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1372
|
+
# @return [DomainQueryResponse]
|
|
1373
|
+
def query_malware(opts = {})
|
|
1374
|
+
data, _status_code, _headers = query_malware_with_http_info(opts)
|
|
1375
|
+
data
|
|
1376
|
+
end
|
|
1377
|
+
|
|
1378
|
+
# Get malware family names that match provided FQL filters.
|
|
1379
|
+
# @param [Hash] opts the optional parameters
|
|
1380
|
+
# @option opts [Integer] :offset Set the starting row number to return malware IDs from. Defaults to 0.
|
|
1381
|
+
# @option opts [Integer] :limit Set the number of malware IDs to return. The value must be between 1 and 5000.
|
|
1382
|
+
# @option opts [String] :sort Order fields in ascending or descending order. Ex: created_date|asc.
|
|
1383
|
+
# @option opts [String] :filter Filter your query by specifying FQL filter parameters.
|
|
1384
|
+
# @option opts [String] :q Perform a generic substring search across all fields.
|
|
1385
|
+
# @return [Array<(DomainQueryResponse, Integer, Hash)>] DomainQueryResponse data, response status code and response headers
|
|
1386
|
+
def query_malware_with_http_info(opts = {})
|
|
1387
|
+
if @api_client.config.debugging
|
|
1388
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_malware ...'
|
|
1389
|
+
end
|
|
1390
|
+
# resource path
|
|
1391
|
+
local_var_path = '/intel/queries/malware/v1'
|
|
1392
|
+
|
|
1393
|
+
# query parameters
|
|
1394
|
+
query_params = opts[:query_params] || {}
|
|
1395
|
+
query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
|
|
1396
|
+
query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
|
|
1397
|
+
query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
|
|
1398
|
+
query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
|
|
1399
|
+
query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
|
|
1400
|
+
|
|
1401
|
+
# header parameters
|
|
1402
|
+
header_params = opts[:header_params] || {}
|
|
1403
|
+
# HTTP header 'Accept' (if needed)
|
|
1404
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
1405
|
+
|
|
1406
|
+
# form parameters
|
|
1407
|
+
form_params = opts[:form_params] || {}
|
|
1408
|
+
|
|
1409
|
+
# http body (model)
|
|
1410
|
+
post_body = opts[:debug_body]
|
|
1411
|
+
|
|
1412
|
+
# return_type
|
|
1413
|
+
return_type = opts[:debug_return_type] || 'DomainQueryResponse'
|
|
1414
|
+
|
|
1415
|
+
# auth_names
|
|
1416
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
1417
|
+
|
|
1418
|
+
new_options = opts.merge(
|
|
1419
|
+
:operation => :"Intel.query_malware",
|
|
1420
|
+
:header_params => header_params,
|
|
1421
|
+
:query_params => query_params,
|
|
1422
|
+
:form_params => form_params,
|
|
1423
|
+
:body => post_body,
|
|
1424
|
+
:auth_names => auth_names,
|
|
1425
|
+
:return_type => return_type
|
|
1426
|
+
)
|
|
1427
|
+
|
|
1428
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
1429
|
+
if @api_client.config.debugging
|
|
1430
|
+
@api_client.config.logger.debug "API called: Intel#query_malware\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
1431
|
+
end
|
|
1432
|
+
return data, status_code, headers
|
|
1433
|
+
end
|
|
1434
|
+
|
|
1435
|
+
# Gets MITRE tactics and techniques for the given actor, returning concatenation of id and tactic and technique ids, example: fancy-bear_TA0011_T1071
|
|
1436
|
+
# @param [Hash] opts the optional parameters
|
|
1437
|
+
# @option opts [String] :id The actor ID(derived from the actor's name) for which to retrieve a list of attacks, for example: fancy-bear. Only one value is allowed
|
|
1438
|
+
# @option opts [Array<String>] :ids The actor ID(derived from the actor's name) for which to retrieve a list of attacks, for example: fancy-bear. Multiple values are allowed
|
|
1439
|
+
# @return [DomainQueryMitreAttacksResponse]
|
|
1440
|
+
def query_mitre_attacks(opts = {})
|
|
1441
|
+
data, _status_code, _headers = query_mitre_attacks_with_http_info(opts)
|
|
1442
|
+
data
|
|
1443
|
+
end
|
|
1444
|
+
|
|
1445
|
+
# Gets MITRE tactics and techniques for the given actor, returning concatenation of id and tactic and technique ids, example: fancy-bear_TA0011_T1071
|
|
1446
|
+
# @param [Hash] opts the optional parameters
|
|
1447
|
+
# @option opts [String] :id The actor ID(derived from the actor's name) for which to retrieve a list of attacks, for example: fancy-bear. Only one value is allowed
|
|
1448
|
+
# @option opts [Array<String>] :ids The actor ID(derived from the actor's name) for which to retrieve a list of attacks, for example: fancy-bear. Multiple values are allowed
|
|
1449
|
+
# @return [Array<(DomainQueryMitreAttacksResponse, Integer, Hash)>] DomainQueryMitreAttacksResponse data, response status code and response headers
|
|
1450
|
+
def query_mitre_attacks_with_http_info(opts = {})
|
|
1451
|
+
if @api_client.config.debugging
|
|
1452
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_mitre_attacks ...'
|
|
1453
|
+
end
|
|
1454
|
+
# resource path
|
|
1455
|
+
local_var_path = '/intel/queries/mitre/v1'
|
|
1456
|
+
|
|
1457
|
+
# query parameters
|
|
1458
|
+
query_params = opts[:query_params] || {}
|
|
1459
|
+
query_params[:'id'] = opts[:'id'] if !opts[:'id'].nil?
|
|
1460
|
+
query_params[:'ids'] = @api_client.build_collection_param(opts[:'ids'], :multi) if !opts[:'ids'].nil?
|
|
1461
|
+
|
|
1462
|
+
# header parameters
|
|
1463
|
+
header_params = opts[:header_params] || {}
|
|
1464
|
+
# HTTP header 'Accept' (if needed)
|
|
1465
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
1466
|
+
|
|
1467
|
+
# form parameters
|
|
1468
|
+
form_params = opts[:form_params] || {}
|
|
1469
|
+
|
|
1470
|
+
# http body (model)
|
|
1471
|
+
post_body = opts[:debug_body]
|
|
1472
|
+
|
|
1473
|
+
# return_type
|
|
1474
|
+
return_type = opts[:debug_return_type] || 'DomainQueryMitreAttacksResponse'
|
|
1475
|
+
|
|
1476
|
+
# auth_names
|
|
1477
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
1478
|
+
|
|
1479
|
+
new_options = opts.merge(
|
|
1480
|
+
:operation => :"Intel.query_mitre_attacks",
|
|
1481
|
+
:header_params => header_params,
|
|
1482
|
+
:query_params => query_params,
|
|
1483
|
+
:form_params => form_params,
|
|
1484
|
+
:body => post_body,
|
|
1485
|
+
:auth_names => auth_names,
|
|
1486
|
+
:return_type => return_type
|
|
1487
|
+
)
|
|
1488
|
+
|
|
1489
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
1490
|
+
if @api_client.config.debugging
|
|
1491
|
+
@api_client.config.logger.debug "API called: Intel#query_mitre_attacks\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
1492
|
+
end
|
|
1493
|
+
return data, status_code, headers
|
|
1494
|
+
end
|
|
1495
|
+
|
|
1496
|
+
# Gets MITRE tactics and techniques for the given malware
|
|
1497
|
+
# @param ids [Array<String>] Malware family name in lower case with spaces replaced with dashes
|
|
1498
|
+
# @param [Hash] opts the optional parameters
|
|
1499
|
+
# @return [DomainQueryResponse]
|
|
1500
|
+
def query_mitre_attacks_for_malware(ids, opts = {})
|
|
1501
|
+
data, _status_code, _headers = query_mitre_attacks_for_malware_with_http_info(ids, opts)
|
|
1502
|
+
data
|
|
1503
|
+
end
|
|
1504
|
+
|
|
1505
|
+
# Gets MITRE tactics and techniques for the given malware
|
|
1506
|
+
# @param ids [Array<String>] Malware family name in lower case with spaces replaced with dashes
|
|
1507
|
+
# @param [Hash] opts the optional parameters
|
|
1508
|
+
# @return [Array<(DomainQueryResponse, Integer, Hash)>] DomainQueryResponse data, response status code and response headers
|
|
1509
|
+
def query_mitre_attacks_for_malware_with_http_info(ids, opts = {})
|
|
1510
|
+
if @api_client.config.debugging
|
|
1511
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_mitre_attacks_for_malware ...'
|
|
1512
|
+
end
|
|
1513
|
+
# verify the required parameter 'ids' is set
|
|
1514
|
+
if @api_client.config.client_side_validation && ids.nil?
|
|
1515
|
+
fail ArgumentError, "Missing the required parameter 'ids' when calling Intel.query_mitre_attacks_for_malware"
|
|
1516
|
+
end
|
|
1517
|
+
# resource path
|
|
1518
|
+
local_var_path = '/intel/queries/mitre-malware/v1'
|
|
1519
|
+
|
|
1520
|
+
# query parameters
|
|
1521
|
+
query_params = opts[:query_params] || {}
|
|
1522
|
+
query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)
|
|
1523
|
+
|
|
1524
|
+
# header parameters
|
|
1525
|
+
header_params = opts[:header_params] || {}
|
|
1526
|
+
# HTTP header 'Accept' (if needed)
|
|
1527
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
1528
|
+
|
|
1529
|
+
# form parameters
|
|
1530
|
+
form_params = opts[:form_params] || {}
|
|
1531
|
+
|
|
1532
|
+
# http body (model)
|
|
1533
|
+
post_body = opts[:debug_body]
|
|
1534
|
+
|
|
1535
|
+
# return_type
|
|
1536
|
+
return_type = opts[:debug_return_type] || 'DomainQueryResponse'
|
|
1537
|
+
|
|
1538
|
+
# auth_names
|
|
1539
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
1540
|
+
|
|
1541
|
+
new_options = opts.merge(
|
|
1542
|
+
:operation => :"Intel.query_mitre_attacks_for_malware",
|
|
1543
|
+
:header_params => header_params,
|
|
1544
|
+
:query_params => query_params,
|
|
1545
|
+
:form_params => form_params,
|
|
1546
|
+
:body => post_body,
|
|
1547
|
+
:auth_names => auth_names,
|
|
1548
|
+
:return_type => return_type
|
|
1549
|
+
)
|
|
1550
|
+
|
|
1551
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
1552
|
+
if @api_client.config.debugging
|
|
1553
|
+
@api_client.config.logger.debug "API called: Intel#query_mitre_attacks_for_malware\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
1554
|
+
end
|
|
1555
|
+
return data, status_code, headers
|
|
1556
|
+
end
|
|
1557
|
+
|
|
1558
|
+
# Get vulnerabilities IDs
|
|
1559
|
+
# @param [Hash] opts the optional parameters
|
|
1560
|
+
# @option opts [String] :offset Starting index of result set from which to return IDs.
|
|
1561
|
+
# @option opts [Integer] :limit Number of IDs to return.
|
|
1562
|
+
# @option opts [String] :sort Order by fields.
|
|
1563
|
+
# @option opts [String] :filter FQL query specifying the filter parameters.
|
|
1564
|
+
# @option opts [String] :q Match phrase_prefix query criteria; included fields: _all (all filter string fields indexed).
|
|
1565
|
+
# @return [MsaQueryResponse]
|
|
1566
|
+
def query_vulnerabilities(opts = {})
|
|
1567
|
+
data, _status_code, _headers = query_vulnerabilities_with_http_info(opts)
|
|
1568
|
+
data
|
|
1569
|
+
end
|
|
1570
|
+
|
|
1571
|
+
# Get vulnerabilities IDs
|
|
1572
|
+
# @param [Hash] opts the optional parameters
|
|
1573
|
+
# @option opts [String] :offset Starting index of result set from which to return IDs.
|
|
1574
|
+
# @option opts [Integer] :limit Number of IDs to return.
|
|
1575
|
+
# @option opts [String] :sort Order by fields.
|
|
1576
|
+
# @option opts [String] :filter FQL query specifying the filter parameters.
|
|
1577
|
+
# @option opts [String] :q Match phrase_prefix query criteria; included fields: _all (all filter string fields indexed).
|
|
1578
|
+
# @return [Array<(MsaQueryResponse, Integer, Hash)>] MsaQueryResponse data, response status code and response headers
|
|
1579
|
+
def query_vulnerabilities_with_http_info(opts = {})
|
|
1580
|
+
if @api_client.config.debugging
|
|
1581
|
+
@api_client.config.logger.debug 'Calling API: Intel.query_vulnerabilities ...'
|
|
1582
|
+
end
|
|
1583
|
+
# resource path
|
|
1584
|
+
local_var_path = '/intel/queries/vulnerabilities/v1'
|
|
1585
|
+
|
|
1586
|
+
# query parameters
|
|
1587
|
+
query_params = opts[:query_params] || {}
|
|
1588
|
+
query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
|
|
1589
|
+
query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
|
|
1590
|
+
query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
|
|
1591
|
+
query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
|
|
1592
|
+
query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
|
|
1593
|
+
|
|
1594
|
+
# header parameters
|
|
1595
|
+
header_params = opts[:header_params] || {}
|
|
1596
|
+
# HTTP header 'Accept' (if needed)
|
|
1597
|
+
header_params['Accept'] = @api_client.select_header_accept(['application/json'])
|
|
1598
|
+
|
|
1599
|
+
# form parameters
|
|
1600
|
+
form_params = opts[:form_params] || {}
|
|
1601
|
+
|
|
1602
|
+
# http body (model)
|
|
1603
|
+
post_body = opts[:debug_body]
|
|
1604
|
+
|
|
1605
|
+
# return_type
|
|
1606
|
+
return_type = opts[:debug_return_type] || 'MsaQueryResponse'
|
|
1607
|
+
|
|
1608
|
+
# auth_names
|
|
1609
|
+
auth_names = opts[:debug_auth_names] || ['oauth2']
|
|
1610
|
+
|
|
1611
|
+
new_options = opts.merge(
|
|
1612
|
+
:operation => :"Intel.query_vulnerabilities",
|
|
1613
|
+
:header_params => header_params,
|
|
1614
|
+
:query_params => query_params,
|
|
1615
|
+
:form_params => form_params,
|
|
1616
|
+
:body => post_body,
|
|
1617
|
+
:auth_names => auth_names,
|
|
1618
|
+
:return_type => return_type
|
|
1619
|
+
)
|
|
1620
|
+
|
|
1621
|
+
data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
|
|
1622
|
+
if @api_client.config.debugging
|
|
1623
|
+
@api_client.config.logger.debug "API called: Intel#query_vulnerabilities\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
|
|
1624
|
+
end
|
|
1625
|
+
return data, status_code, headers
|
|
1626
|
+
end
|
|
1627
|
+
end
|
|
1628
|
+
end
|