tencentcloud-sdk-tcss 1.0.300 → 1.0.301
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/VERSION +1 -1
- data/lib/v20201101/models.rb +86 -27
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: a5f63189d57f555bc1831b75a51885bc4d89e5d5
|
|
4
|
+
data.tar.gz: d704b7d1f9f79be8308d8ccc3c28e7d6bd240aa3
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: c1a7986f09a8c162d50d3bcf91342b97e1a0b63e3b3ae1c493a0e562cb5bb49874edbfb1fb3bb26a145e3d13e55e081809f57071646c7dcb7cd3f139fdb7d877
|
|
7
|
+
data.tar.gz: 264f6fa33322c9651446bc72b6af6d19adda19c08bf28bc1e835d29a9530d96a5b8f8457d3ec9dfd28cb3107f697f6e777bdb5d9fd0781a21782a7ab6c60029a
|
data/lib/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.0.
|
|
1
|
+
1.0.301
|
data/lib/v20201101/models.rb
CHANGED
|
@@ -28,19 +28,24 @@ module TencentCloud
|
|
|
28
28
|
# @param RuleId: 子策略id
|
|
29
29
|
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
30
30
|
# @type RuleId: String
|
|
31
|
+
# @param RuleLevel: 威胁等级,HIGH:高,MIDDLE:中,LOW:低
|
|
32
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
33
|
+
# @type RuleLevel: String
|
|
31
34
|
|
|
32
|
-
attr_accessor :RuleMode, :ProcessPath, :RuleId
|
|
35
|
+
attr_accessor :RuleMode, :ProcessPath, :RuleId, :RuleLevel
|
|
33
36
|
|
|
34
|
-
def initialize(rulemode=nil, processpath=nil, ruleid=nil)
|
|
37
|
+
def initialize(rulemode=nil, processpath=nil, ruleid=nil, rulelevel=nil)
|
|
35
38
|
@RuleMode = rulemode
|
|
36
39
|
@ProcessPath = processpath
|
|
37
40
|
@RuleId = ruleid
|
|
41
|
+
@RuleLevel = rulelevel
|
|
38
42
|
end
|
|
39
43
|
|
|
40
44
|
def deserialize(params)
|
|
41
45
|
@RuleMode = params['RuleMode']
|
|
42
46
|
@ProcessPath = params['ProcessPath']
|
|
43
47
|
@RuleId = params['RuleId']
|
|
48
|
+
@RuleLevel = params['RuleLevel']
|
|
44
49
|
end
|
|
45
50
|
end
|
|
46
51
|
|
|
@@ -55,17 +60,20 @@ module TencentCloud
|
|
|
55
60
|
# @type Remark: String
|
|
56
61
|
# @param MatchRule: 命中规则详细信息
|
|
57
62
|
# @type MatchRule: :class:`Tencentcloud::Tcss.v20201101.models.AbnormalProcessChildRuleInfo`
|
|
58
|
-
# @param RuleName:
|
|
63
|
+
# @param RuleName: 命中规则名称,PROXY_TOOL:代理软件,TRANSFER_CONTROL:横向渗透,ATTACK_CMD:恶意命令,REVERSE_SHELL:反弹shell,FILELESS:无文件程序执行,RISK_CMD:高危命令,ABNORMAL_CHILD_PROC:敏感服务异常子进程启动,USER_DEFINED_RULE:用户自定义规则
|
|
59
64
|
# @type RuleName: String
|
|
60
65
|
# @param RuleId: 命中规则的id
|
|
61
66
|
# @type RuleId: String
|
|
62
67
|
# @param OperationTime: 事件最后一次处理的时间
|
|
63
68
|
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
64
69
|
# @type OperationTime: String
|
|
70
|
+
# @param GroupName: 命中策略名称:SYSTEM_DEFINED_RULE (系统策略)或 用户自定义的策略名字
|
|
71
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
72
|
+
# @type GroupName: String
|
|
65
73
|
|
|
66
|
-
attr_accessor :Description, :Solution, :Remark, :MatchRule, :RuleName, :RuleId, :OperationTime
|
|
74
|
+
attr_accessor :Description, :Solution, :Remark, :MatchRule, :RuleName, :RuleId, :OperationTime, :GroupName
|
|
67
75
|
|
|
68
|
-
def initialize(description=nil, solution=nil, remark=nil, matchrule=nil, rulename=nil, ruleid=nil, operationtime=nil)
|
|
76
|
+
def initialize(description=nil, solution=nil, remark=nil, matchrule=nil, rulename=nil, ruleid=nil, operationtime=nil, groupname=nil)
|
|
69
77
|
@Description = description
|
|
70
78
|
@Solution = solution
|
|
71
79
|
@Remark = remark
|
|
@@ -73,6 +81,7 @@ module TencentCloud
|
|
|
73
81
|
@RuleName = rulename
|
|
74
82
|
@RuleId = ruleid
|
|
75
83
|
@OperationTime = operationtime
|
|
84
|
+
@GroupName = groupname
|
|
76
85
|
end
|
|
77
86
|
|
|
78
87
|
def deserialize(params)
|
|
@@ -86,6 +95,7 @@ module TencentCloud
|
|
|
86
95
|
@RuleName = params['RuleName']
|
|
87
96
|
@RuleId = params['RuleId']
|
|
88
97
|
@OperationTime = params['OperationTime']
|
|
98
|
+
@GroupName = params['GroupName']
|
|
89
99
|
end
|
|
90
100
|
end
|
|
91
101
|
|
|
@@ -95,7 +105,7 @@ module TencentCloud
|
|
|
95
105
|
# @type ProcessPath: String
|
|
96
106
|
# @param EventType: 事件类型,MALICE_PROCESS_START:恶意进程启动
|
|
97
107
|
# @type EventType: String
|
|
98
|
-
# @param MatchRuleName:
|
|
108
|
+
# @param MatchRuleName: 命中规则名称,PROXY_TOOL:代理软件,TRANSFER_CONTROL:横向渗透,ATTACK_CMD:恶意命令,REVERSE_SHELL:反弹shell,FILELESS:无文件程序执行,RISK_CMD:高危命令,ABNORMAL_CHILD_PROC:敏感服务异常子进程启动,USER_DEFINED_RULE:用户自定义规则
|
|
99
109
|
# @type MatchRuleName: String
|
|
100
110
|
# @param FoundTime: 生成时间
|
|
101
111
|
# @type FoundTime: String
|
|
@@ -140,10 +150,14 @@ module TencentCloud
|
|
|
140
150
|
# @type LatestFoundTime: String
|
|
141
151
|
# @param RuleId: 规则组Id
|
|
142
152
|
# @type RuleId: String
|
|
153
|
+
# @param MatchGroupName: 命中策略名称:SYSTEM_DEFINED_RULE (系统策略)或 用户自定义的策略名字
|
|
154
|
+
# @type MatchGroupName: String
|
|
155
|
+
# @param MatchRuleLevel: 命中规则等级,HIGH:高危,MIDDLE:中危,LOW:低危。
|
|
156
|
+
# @type MatchRuleLevel: String
|
|
143
157
|
|
|
144
|
-
attr_accessor :ProcessPath, :EventType, :MatchRuleName, :FoundTime, :ContainerName, :ImageName, :Behavior, :Status, :Id, :ImageId, :ContainerId, :Solution, :Description, :MatchRuleId, :MatchAction, :MatchProcessPath, :RuleExist, :EventCount, :LatestFoundTime, :RuleId
|
|
158
|
+
attr_accessor :ProcessPath, :EventType, :MatchRuleName, :FoundTime, :ContainerName, :ImageName, :Behavior, :Status, :Id, :ImageId, :ContainerId, :Solution, :Description, :MatchRuleId, :MatchAction, :MatchProcessPath, :RuleExist, :EventCount, :LatestFoundTime, :RuleId, :MatchGroupName, :MatchRuleLevel
|
|
145
159
|
|
|
146
|
-
def initialize(processpath=nil, eventtype=nil, matchrulename=nil, foundtime=nil, containername=nil, imagename=nil, behavior=nil, status=nil, id=nil, imageid=nil, containerid=nil, solution=nil, description=nil, matchruleid=nil, matchaction=nil, matchprocesspath=nil, ruleexist=nil, eventcount=nil, latestfoundtime=nil, ruleid=nil)
|
|
160
|
+
def initialize(processpath=nil, eventtype=nil, matchrulename=nil, foundtime=nil, containername=nil, imagename=nil, behavior=nil, status=nil, id=nil, imageid=nil, containerid=nil, solution=nil, description=nil, matchruleid=nil, matchaction=nil, matchprocesspath=nil, ruleexist=nil, eventcount=nil, latestfoundtime=nil, ruleid=nil, matchgroupname=nil, matchrulelevel=nil)
|
|
147
161
|
@ProcessPath = processpath
|
|
148
162
|
@EventType = eventtype
|
|
149
163
|
@MatchRuleName = matchrulename
|
|
@@ -164,6 +178,8 @@ module TencentCloud
|
|
|
164
178
|
@EventCount = eventcount
|
|
165
179
|
@LatestFoundTime = latestfoundtime
|
|
166
180
|
@RuleId = ruleid
|
|
181
|
+
@MatchGroupName = matchgroupname
|
|
182
|
+
@MatchRuleLevel = matchrulelevel
|
|
167
183
|
end
|
|
168
184
|
|
|
169
185
|
def deserialize(params)
|
|
@@ -187,6 +203,8 @@ module TencentCloud
|
|
|
187
203
|
@EventCount = params['EventCount']
|
|
188
204
|
@LatestFoundTime = params['LatestFoundTime']
|
|
189
205
|
@RuleId = params['RuleId']
|
|
206
|
+
@MatchGroupName = params['MatchGroupName']
|
|
207
|
+
@MatchRuleLevel = params['MatchRuleLevel']
|
|
190
208
|
end
|
|
191
209
|
end
|
|
192
210
|
|
|
@@ -264,14 +282,18 @@ module TencentCloud
|
|
|
264
282
|
# RISK_CMD:高危命令
|
|
265
283
|
# ABNORMAL_CHILD_PROC: 敏感服务异常子进程启动
|
|
266
284
|
# @type RuleType: String
|
|
285
|
+
# @param RuleLevel: 威胁等级,HIGH:高,MIDDLE:中,LOW:低
|
|
286
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
287
|
+
# @type RuleLevel: String
|
|
267
288
|
|
|
268
|
-
attr_accessor :RuleId, :IsEnable, :RuleMode, :RuleType
|
|
289
|
+
attr_accessor :RuleId, :IsEnable, :RuleMode, :RuleType, :RuleLevel
|
|
269
290
|
|
|
270
|
-
def initialize(ruleid=nil, isenable=nil, rulemode=nil, ruletype=nil)
|
|
291
|
+
def initialize(ruleid=nil, isenable=nil, rulemode=nil, ruletype=nil, rulelevel=nil)
|
|
271
292
|
@RuleId = ruleid
|
|
272
293
|
@IsEnable = isenable
|
|
273
294
|
@RuleMode = rulemode
|
|
274
295
|
@RuleType = ruletype
|
|
296
|
+
@RuleLevel = rulelevel
|
|
275
297
|
end
|
|
276
298
|
|
|
277
299
|
def deserialize(params)
|
|
@@ -279,6 +301,7 @@ module TencentCloud
|
|
|
279
301
|
@IsEnable = params['IsEnable']
|
|
280
302
|
@RuleMode = params['RuleMode']
|
|
281
303
|
@RuleType = params['RuleType']
|
|
304
|
+
@RuleLevel = params['RuleLevel']
|
|
282
305
|
end
|
|
283
306
|
end
|
|
284
307
|
|
|
@@ -8143,7 +8166,7 @@ module TencentCloud
|
|
|
8143
8166
|
# @type Limit: Integer
|
|
8144
8167
|
# @param Offset: 偏移量,默认为0。
|
|
8145
8168
|
# @type Offset: Integer
|
|
8146
|
-
# @param Filters: 过滤参数,
|
|
8169
|
+
# @param Filters: 过滤参数,Status:EVENT_UNDEAL:未处理,EVENT_DEALED:已处理,EVENT_INGNORE:忽略
|
|
8147
8170
|
# @type Filters: Array
|
|
8148
8171
|
# @param Order: 升序降序,asc desc
|
|
8149
8172
|
# @type Order: String
|
|
@@ -10653,10 +10676,7 @@ module TencentCloud
|
|
|
10653
10676
|
# @type ContainerName: String
|
|
10654
10677
|
# @param ImageName: 镜像名
|
|
10655
10678
|
# @type ImageName: String
|
|
10656
|
-
# @param Status:
|
|
10657
|
-
# EVENT_UNDEAL:事件未处理
|
|
10658
|
-
# EVENT_DEALED:事件已经处理
|
|
10659
|
-
# EVENT_INGNORE:事件忽略
|
|
10679
|
+
# @param Status: 状态,EVENT_UNDEAL:未处理,EVENT_DEALED:已处理,EVENT_INGNORE:忽略
|
|
10660
10680
|
# @type Status: String
|
|
10661
10681
|
# @param EventId: 事件记录的唯一id
|
|
10662
10682
|
# @type EventId: String
|
|
@@ -10686,10 +10706,16 @@ module TencentCloud
|
|
|
10686
10706
|
# @type EventCount: Integer
|
|
10687
10707
|
# @param LatestFoundTime: 最近生成时间
|
|
10688
10708
|
# @type LatestFoundTime: String
|
|
10709
|
+
# @param NodeIP: 节点IP
|
|
10710
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
10711
|
+
# @type NodeIP: String
|
|
10712
|
+
# @param HostID: 主机IP
|
|
10713
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
10714
|
+
# @type HostID: String
|
|
10689
10715
|
|
|
10690
|
-
attr_accessor :EventType, :ContainerName, :ImageName, :Status, :EventId, :NodeName, :PodName, :FoundTime, :EventName, :ImageId, :ContainerId, :Solution, :Description, :EventCount, :LatestFoundTime
|
|
10716
|
+
attr_accessor :EventType, :ContainerName, :ImageName, :Status, :EventId, :NodeName, :PodName, :FoundTime, :EventName, :ImageId, :ContainerId, :Solution, :Description, :EventCount, :LatestFoundTime, :NodeIP, :HostID
|
|
10691
10717
|
|
|
10692
|
-
def initialize(eventtype=nil, containername=nil, imagename=nil, status=nil, eventid=nil, nodename=nil, podname=nil, foundtime=nil, eventname=nil, imageid=nil, containerid=nil, solution=nil, description=nil, eventcount=nil, latestfoundtime=nil)
|
|
10718
|
+
def initialize(eventtype=nil, containername=nil, imagename=nil, status=nil, eventid=nil, nodename=nil, podname=nil, foundtime=nil, eventname=nil, imageid=nil, containerid=nil, solution=nil, description=nil, eventcount=nil, latestfoundtime=nil, nodeip=nil, hostid=nil)
|
|
10693
10719
|
@EventType = eventtype
|
|
10694
10720
|
@ContainerName = containername
|
|
10695
10721
|
@ImageName = imagename
|
|
@@ -10705,6 +10731,8 @@ module TencentCloud
|
|
|
10705
10731
|
@Description = description
|
|
10706
10732
|
@EventCount = eventcount
|
|
10707
10733
|
@LatestFoundTime = latestfoundtime
|
|
10734
|
+
@NodeIP = nodeip
|
|
10735
|
+
@HostID = hostid
|
|
10708
10736
|
end
|
|
10709
10737
|
|
|
10710
10738
|
def deserialize(params)
|
|
@@ -10723,6 +10751,8 @@ module TencentCloud
|
|
|
10723
10751
|
@Description = params['Description']
|
|
10724
10752
|
@EventCount = params['EventCount']
|
|
10725
10753
|
@LatestFoundTime = params['LatestFoundTime']
|
|
10754
|
+
@NodeIP = params['NodeIP']
|
|
10755
|
+
@HostID = params['HostID']
|
|
10726
10756
|
end
|
|
10727
10757
|
end
|
|
10728
10758
|
|
|
@@ -10746,19 +10776,23 @@ module TencentCloud
|
|
|
10746
10776
|
# @type Name: String
|
|
10747
10777
|
# @param IsEnable: 是否打开:false否 ,true是
|
|
10748
10778
|
# @type IsEnable: Boolean
|
|
10779
|
+
# @param Group: 规则组别。RISK_CONTAINER:风险容器,PROCESS_PRIVILEGE:程序特权,CONTAINER_ESCAPE:容器逃逸
|
|
10780
|
+
# @type Group: String
|
|
10749
10781
|
|
|
10750
|
-
attr_accessor :Type, :Name, :IsEnable
|
|
10782
|
+
attr_accessor :Type, :Name, :IsEnable, :Group
|
|
10751
10783
|
|
|
10752
|
-
def initialize(type=nil, name=nil, isenable=nil)
|
|
10784
|
+
def initialize(type=nil, name=nil, isenable=nil, group=nil)
|
|
10753
10785
|
@Type = type
|
|
10754
10786
|
@Name = name
|
|
10755
10787
|
@IsEnable = isenable
|
|
10788
|
+
@Group = group
|
|
10756
10789
|
end
|
|
10757
10790
|
|
|
10758
10791
|
def deserialize(params)
|
|
10759
10792
|
@Type = params['Type']
|
|
10760
10793
|
@Name = params['Name']
|
|
10761
10794
|
@IsEnable = params['IsEnable']
|
|
10795
|
+
@Group = params['Group']
|
|
10762
10796
|
end
|
|
10763
10797
|
end
|
|
10764
10798
|
|
|
@@ -12320,10 +12354,7 @@ module TencentCloud
|
|
|
12320
12354
|
class ModifyEscapeEventStatusRequest < TencentCloud::Common::AbstractModel
|
|
12321
12355
|
# @param EventIdSet: 处理事件ids
|
|
12322
12356
|
# @type EventIdSet: Array
|
|
12323
|
-
# @param Status:
|
|
12324
|
-
# EVENT_DEALED:事件已经处理
|
|
12325
|
-
# EVENT_INGNORE:事件忽略
|
|
12326
|
-
# EVENT_DEL:事件删除
|
|
12357
|
+
# @param Status: 标记事件的状态:EVENT_UNDEAL:未处理(取消忽略),EVENT_DEALED:已处理,EVENT_IGNORE:忽略,EVENT_DELETE:已删除
|
|
12327
12358
|
# @type Status: String
|
|
12328
12359
|
# @param Remark: 备注
|
|
12329
12360
|
# @type Remark: String
|
|
@@ -13468,10 +13499,32 @@ module TencentCloud
|
|
|
13468
13499
|
# @param ClientIP: 外网ip
|
|
13469
13500
|
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
13470
13501
|
# @type ClientIP: String
|
|
13471
|
-
|
|
13472
|
-
|
|
13473
|
-
|
|
13474
|
-
|
|
13502
|
+
# @param ContainerNetStatus: 网络状态
|
|
13503
|
+
# 未隔离 NORMAL
|
|
13504
|
+
# 已隔离 ISOLATED
|
|
13505
|
+
# 隔离中 ISOLATING
|
|
13506
|
+
# 隔离失败 ISOLATE_FAILED
|
|
13507
|
+
# 解除隔离中 RESTORING
|
|
13508
|
+
# 解除隔离失败 RESTORE_FAILED
|
|
13509
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
13510
|
+
# @type ContainerNetStatus: String
|
|
13511
|
+
# @param ContainerNetSubStatus: 容器子状态
|
|
13512
|
+
# "AGENT_OFFLINE" //Agent离线
|
|
13513
|
+
# "NODE_DESTROYED" //节点已销毁
|
|
13514
|
+
# "CONTAINER_EXITED" //容器已退出
|
|
13515
|
+
# "CONTAINER_DESTROYED" //容器已销毁
|
|
13516
|
+
# "SHARED_HOST" // 容器与主机共享网络
|
|
13517
|
+
# "RESOURCE_LIMIT" //隔离操作资源超限
|
|
13518
|
+
# "UNKNOW" // 原因未知
|
|
13519
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
13520
|
+
# @type ContainerNetSubStatus: String
|
|
13521
|
+
# @param ContainerIsolateOperationSrc: 容器隔离操作来源
|
|
13522
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
13523
|
+
# @type ContainerIsolateOperationSrc: String
|
|
13524
|
+
|
|
13525
|
+
attr_accessor :EventId, :FoundTime, :ContainerId, :ContainerName, :ImageId, :ImageName, :NodeName, :PodName, :Status, :EventName, :EventType, :EventCount, :LatestFoundTime, :HostIP, :ClientIP, :ContainerNetStatus, :ContainerNetSubStatus, :ContainerIsolateOperationSrc
|
|
13526
|
+
|
|
13527
|
+
def initialize(eventid=nil, foundtime=nil, containerid=nil, containername=nil, imageid=nil, imagename=nil, nodename=nil, podname=nil, status=nil, eventname=nil, eventtype=nil, eventcount=nil, latestfoundtime=nil, hostip=nil, clientip=nil, containernetstatus=nil, containernetsubstatus=nil, containerisolateoperationsrc=nil)
|
|
13475
13528
|
@EventId = eventid
|
|
13476
13529
|
@FoundTime = foundtime
|
|
13477
13530
|
@ContainerId = containerid
|
|
@@ -13487,6 +13540,9 @@ module TencentCloud
|
|
|
13487
13540
|
@LatestFoundTime = latestfoundtime
|
|
13488
13541
|
@HostIP = hostip
|
|
13489
13542
|
@ClientIP = clientip
|
|
13543
|
+
@ContainerNetStatus = containernetstatus
|
|
13544
|
+
@ContainerNetSubStatus = containernetsubstatus
|
|
13545
|
+
@ContainerIsolateOperationSrc = containerisolateoperationsrc
|
|
13490
13546
|
end
|
|
13491
13547
|
|
|
13492
13548
|
def deserialize(params)
|
|
@@ -13505,6 +13561,9 @@ module TencentCloud
|
|
|
13505
13561
|
@LatestFoundTime = params['LatestFoundTime']
|
|
13506
13562
|
@HostIP = params['HostIP']
|
|
13507
13563
|
@ClientIP = params['ClientIP']
|
|
13564
|
+
@ContainerNetStatus = params['ContainerNetStatus']
|
|
13565
|
+
@ContainerNetSubStatus = params['ContainerNetSubStatus']
|
|
13566
|
+
@ContainerIsolateOperationSrc = params['ContainerIsolateOperationSrc']
|
|
13508
13567
|
end
|
|
13509
13568
|
end
|
|
13510
13569
|
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: tencentcloud-sdk-tcss
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.301
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Tencent Cloud
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-04-
|
|
11
|
+
date: 2022-04-20 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: tencentcloud-sdk-common
|