tencentcloud-sdk-tcss 1.0.300 → 1.0.303
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/VERSION +1 -1
- data/lib/v20201101/models.rb +86 -27
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 85a26cffb9903e70fdd798ba2d1b867bc8405e52
|
|
4
|
+
data.tar.gz: ca03eb612a3a38c627c312a0d02b6ee371a8e67b
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 7df12a2a8f211f1772e1e507830ffffa47309b45963dba77c3c9fcc931758162734eae9958e769394a6a62802af2b6890c6e40b033fa4e8a0e365e41eb0f9c02
|
|
7
|
+
data.tar.gz: 85b7d576aace1fe691e2c41c1981327a856f263e36617b6c2310c3cf07d5790c6eca6a488eb5ddfa2c5fffa43eb8fe12e5d880c81a0bceb77a53528a40a8c367
|
data/lib/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.0.
|
|
1
|
+
1.0.303
|
data/lib/v20201101/models.rb
CHANGED
|
@@ -28,19 +28,24 @@ module TencentCloud
|
|
|
28
28
|
# @param RuleId: 子策略id
|
|
29
29
|
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
30
30
|
# @type RuleId: String
|
|
31
|
+
# @param RuleLevel: 威胁等级,HIGH:高,MIDDLE:中,LOW:低
|
|
32
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
33
|
+
# @type RuleLevel: String
|
|
31
34
|
|
|
32
|
-
attr_accessor :RuleMode, :ProcessPath, :RuleId
|
|
35
|
+
attr_accessor :RuleMode, :ProcessPath, :RuleId, :RuleLevel
|
|
33
36
|
|
|
34
|
-
def initialize(rulemode=nil, processpath=nil, ruleid=nil)
|
|
37
|
+
def initialize(rulemode=nil, processpath=nil, ruleid=nil, rulelevel=nil)
|
|
35
38
|
@RuleMode = rulemode
|
|
36
39
|
@ProcessPath = processpath
|
|
37
40
|
@RuleId = ruleid
|
|
41
|
+
@RuleLevel = rulelevel
|
|
38
42
|
end
|
|
39
43
|
|
|
40
44
|
def deserialize(params)
|
|
41
45
|
@RuleMode = params['RuleMode']
|
|
42
46
|
@ProcessPath = params['ProcessPath']
|
|
43
47
|
@RuleId = params['RuleId']
|
|
48
|
+
@RuleLevel = params['RuleLevel']
|
|
44
49
|
end
|
|
45
50
|
end
|
|
46
51
|
|
|
@@ -55,17 +60,20 @@ module TencentCloud
|
|
|
55
60
|
# @type Remark: String
|
|
56
61
|
# @param MatchRule: 命中规则详细信息
|
|
57
62
|
# @type MatchRule: :class:`Tencentcloud::Tcss.v20201101.models.AbnormalProcessChildRuleInfo`
|
|
58
|
-
# @param RuleName:
|
|
63
|
+
# @param RuleName: 命中规则名称,PROXY_TOOL:代理软件,TRANSFER_CONTROL:横向渗透,ATTACK_CMD:恶意命令,REVERSE_SHELL:反弹shell,FILELESS:无文件程序执行,RISK_CMD:高危命令,ABNORMAL_CHILD_PROC:敏感服务异常子进程启动,USER_DEFINED_RULE:用户自定义规则
|
|
59
64
|
# @type RuleName: String
|
|
60
65
|
# @param RuleId: 命中规则的id
|
|
61
66
|
# @type RuleId: String
|
|
62
67
|
# @param OperationTime: 事件最后一次处理的时间
|
|
63
68
|
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
64
69
|
# @type OperationTime: String
|
|
70
|
+
# @param GroupName: 命中策略名称:SYSTEM_DEFINED_RULE (系统策略)或 用户自定义的策略名字
|
|
71
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
72
|
+
# @type GroupName: String
|
|
65
73
|
|
|
66
|
-
attr_accessor :Description, :Solution, :Remark, :MatchRule, :RuleName, :RuleId, :OperationTime
|
|
74
|
+
attr_accessor :Description, :Solution, :Remark, :MatchRule, :RuleName, :RuleId, :OperationTime, :GroupName
|
|
67
75
|
|
|
68
|
-
def initialize(description=nil, solution=nil, remark=nil, matchrule=nil, rulename=nil, ruleid=nil, operationtime=nil)
|
|
76
|
+
def initialize(description=nil, solution=nil, remark=nil, matchrule=nil, rulename=nil, ruleid=nil, operationtime=nil, groupname=nil)
|
|
69
77
|
@Description = description
|
|
70
78
|
@Solution = solution
|
|
71
79
|
@Remark = remark
|
|
@@ -73,6 +81,7 @@ module TencentCloud
|
|
|
73
81
|
@RuleName = rulename
|
|
74
82
|
@RuleId = ruleid
|
|
75
83
|
@OperationTime = operationtime
|
|
84
|
+
@GroupName = groupname
|
|
76
85
|
end
|
|
77
86
|
|
|
78
87
|
def deserialize(params)
|
|
@@ -86,6 +95,7 @@ module TencentCloud
|
|
|
86
95
|
@RuleName = params['RuleName']
|
|
87
96
|
@RuleId = params['RuleId']
|
|
88
97
|
@OperationTime = params['OperationTime']
|
|
98
|
+
@GroupName = params['GroupName']
|
|
89
99
|
end
|
|
90
100
|
end
|
|
91
101
|
|
|
@@ -95,7 +105,7 @@ module TencentCloud
|
|
|
95
105
|
# @type ProcessPath: String
|
|
96
106
|
# @param EventType: 事件类型,MALICE_PROCESS_START:恶意进程启动
|
|
97
107
|
# @type EventType: String
|
|
98
|
-
# @param MatchRuleName:
|
|
108
|
+
# @param MatchRuleName: 命中规则名称,PROXY_TOOL:代理软件,TRANSFER_CONTROL:横向渗透,ATTACK_CMD:恶意命令,REVERSE_SHELL:反弹shell,FILELESS:无文件程序执行,RISK_CMD:高危命令,ABNORMAL_CHILD_PROC:敏感服务异常子进程启动,USER_DEFINED_RULE:用户自定义规则
|
|
99
109
|
# @type MatchRuleName: String
|
|
100
110
|
# @param FoundTime: 生成时间
|
|
101
111
|
# @type FoundTime: String
|
|
@@ -140,10 +150,14 @@ module TencentCloud
|
|
|
140
150
|
# @type LatestFoundTime: String
|
|
141
151
|
# @param RuleId: 规则组Id
|
|
142
152
|
# @type RuleId: String
|
|
153
|
+
# @param MatchGroupName: 命中策略名称:SYSTEM_DEFINED_RULE (系统策略)或 用户自定义的策略名字
|
|
154
|
+
# @type MatchGroupName: String
|
|
155
|
+
# @param MatchRuleLevel: 命中规则等级,HIGH:高危,MIDDLE:中危,LOW:低危。
|
|
156
|
+
# @type MatchRuleLevel: String
|
|
143
157
|
|
|
144
|
-
attr_accessor :ProcessPath, :EventType, :MatchRuleName, :FoundTime, :ContainerName, :ImageName, :Behavior, :Status, :Id, :ImageId, :ContainerId, :Solution, :Description, :MatchRuleId, :MatchAction, :MatchProcessPath, :RuleExist, :EventCount, :LatestFoundTime, :RuleId
|
|
158
|
+
attr_accessor :ProcessPath, :EventType, :MatchRuleName, :FoundTime, :ContainerName, :ImageName, :Behavior, :Status, :Id, :ImageId, :ContainerId, :Solution, :Description, :MatchRuleId, :MatchAction, :MatchProcessPath, :RuleExist, :EventCount, :LatestFoundTime, :RuleId, :MatchGroupName, :MatchRuleLevel
|
|
145
159
|
|
|
146
|
-
def initialize(processpath=nil, eventtype=nil, matchrulename=nil, foundtime=nil, containername=nil, imagename=nil, behavior=nil, status=nil, id=nil, imageid=nil, containerid=nil, solution=nil, description=nil, matchruleid=nil, matchaction=nil, matchprocesspath=nil, ruleexist=nil, eventcount=nil, latestfoundtime=nil, ruleid=nil)
|
|
160
|
+
def initialize(processpath=nil, eventtype=nil, matchrulename=nil, foundtime=nil, containername=nil, imagename=nil, behavior=nil, status=nil, id=nil, imageid=nil, containerid=nil, solution=nil, description=nil, matchruleid=nil, matchaction=nil, matchprocesspath=nil, ruleexist=nil, eventcount=nil, latestfoundtime=nil, ruleid=nil, matchgroupname=nil, matchrulelevel=nil)
|
|
147
161
|
@ProcessPath = processpath
|
|
148
162
|
@EventType = eventtype
|
|
149
163
|
@MatchRuleName = matchrulename
|
|
@@ -164,6 +178,8 @@ module TencentCloud
|
|
|
164
178
|
@EventCount = eventcount
|
|
165
179
|
@LatestFoundTime = latestfoundtime
|
|
166
180
|
@RuleId = ruleid
|
|
181
|
+
@MatchGroupName = matchgroupname
|
|
182
|
+
@MatchRuleLevel = matchrulelevel
|
|
167
183
|
end
|
|
168
184
|
|
|
169
185
|
def deserialize(params)
|
|
@@ -187,6 +203,8 @@ module TencentCloud
|
|
|
187
203
|
@EventCount = params['EventCount']
|
|
188
204
|
@LatestFoundTime = params['LatestFoundTime']
|
|
189
205
|
@RuleId = params['RuleId']
|
|
206
|
+
@MatchGroupName = params['MatchGroupName']
|
|
207
|
+
@MatchRuleLevel = params['MatchRuleLevel']
|
|
190
208
|
end
|
|
191
209
|
end
|
|
192
210
|
|
|
@@ -264,14 +282,18 @@ module TencentCloud
|
|
|
264
282
|
# RISK_CMD:高危命令
|
|
265
283
|
# ABNORMAL_CHILD_PROC: 敏感服务异常子进程启动
|
|
266
284
|
# @type RuleType: String
|
|
285
|
+
# @param RuleLevel: 威胁等级,HIGH:高,MIDDLE:中,LOW:低
|
|
286
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
287
|
+
# @type RuleLevel: String
|
|
267
288
|
|
|
268
|
-
attr_accessor :RuleId, :IsEnable, :RuleMode, :RuleType
|
|
289
|
+
attr_accessor :RuleId, :IsEnable, :RuleMode, :RuleType, :RuleLevel
|
|
269
290
|
|
|
270
|
-
def initialize(ruleid=nil, isenable=nil, rulemode=nil, ruletype=nil)
|
|
291
|
+
def initialize(ruleid=nil, isenable=nil, rulemode=nil, ruletype=nil, rulelevel=nil)
|
|
271
292
|
@RuleId = ruleid
|
|
272
293
|
@IsEnable = isenable
|
|
273
294
|
@RuleMode = rulemode
|
|
274
295
|
@RuleType = ruletype
|
|
296
|
+
@RuleLevel = rulelevel
|
|
275
297
|
end
|
|
276
298
|
|
|
277
299
|
def deserialize(params)
|
|
@@ -279,6 +301,7 @@ module TencentCloud
|
|
|
279
301
|
@IsEnable = params['IsEnable']
|
|
280
302
|
@RuleMode = params['RuleMode']
|
|
281
303
|
@RuleType = params['RuleType']
|
|
304
|
+
@RuleLevel = params['RuleLevel']
|
|
282
305
|
end
|
|
283
306
|
end
|
|
284
307
|
|
|
@@ -8143,7 +8166,7 @@ module TencentCloud
|
|
|
8143
8166
|
# @type Limit: Integer
|
|
8144
8167
|
# @param Offset: 偏移量,默认为0。
|
|
8145
8168
|
# @type Offset: Integer
|
|
8146
|
-
# @param Filters: 过滤参数,
|
|
8169
|
+
# @param Filters: 过滤参数,Status:EVENT_UNDEAL:未处理,EVENT_DEALED:已处理,EVENT_INGNORE:忽略
|
|
8147
8170
|
# @type Filters: Array
|
|
8148
8171
|
# @param Order: 升序降序,asc desc
|
|
8149
8172
|
# @type Order: String
|
|
@@ -10653,10 +10676,7 @@ module TencentCloud
|
|
|
10653
10676
|
# @type ContainerName: String
|
|
10654
10677
|
# @param ImageName: 镜像名
|
|
10655
10678
|
# @type ImageName: String
|
|
10656
|
-
# @param Status:
|
|
10657
|
-
# EVENT_UNDEAL:事件未处理
|
|
10658
|
-
# EVENT_DEALED:事件已经处理
|
|
10659
|
-
# EVENT_INGNORE:事件忽略
|
|
10679
|
+
# @param Status: 状态,EVENT_UNDEAL:未处理,EVENT_DEALED:已处理,EVENT_INGNORE:忽略
|
|
10660
10680
|
# @type Status: String
|
|
10661
10681
|
# @param EventId: 事件记录的唯一id
|
|
10662
10682
|
# @type EventId: String
|
|
@@ -10686,10 +10706,16 @@ module TencentCloud
|
|
|
10686
10706
|
# @type EventCount: Integer
|
|
10687
10707
|
# @param LatestFoundTime: 最近生成时间
|
|
10688
10708
|
# @type LatestFoundTime: String
|
|
10709
|
+
# @param NodeIP: 节点IP
|
|
10710
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
10711
|
+
# @type NodeIP: String
|
|
10712
|
+
# @param HostID: 主机IP
|
|
10713
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
10714
|
+
# @type HostID: String
|
|
10689
10715
|
|
|
10690
|
-
attr_accessor :EventType, :ContainerName, :ImageName, :Status, :EventId, :NodeName, :PodName, :FoundTime, :EventName, :ImageId, :ContainerId, :Solution, :Description, :EventCount, :LatestFoundTime
|
|
10716
|
+
attr_accessor :EventType, :ContainerName, :ImageName, :Status, :EventId, :NodeName, :PodName, :FoundTime, :EventName, :ImageId, :ContainerId, :Solution, :Description, :EventCount, :LatestFoundTime, :NodeIP, :HostID
|
|
10691
10717
|
|
|
10692
|
-
def initialize(eventtype=nil, containername=nil, imagename=nil, status=nil, eventid=nil, nodename=nil, podname=nil, foundtime=nil, eventname=nil, imageid=nil, containerid=nil, solution=nil, description=nil, eventcount=nil, latestfoundtime=nil)
|
|
10718
|
+
def initialize(eventtype=nil, containername=nil, imagename=nil, status=nil, eventid=nil, nodename=nil, podname=nil, foundtime=nil, eventname=nil, imageid=nil, containerid=nil, solution=nil, description=nil, eventcount=nil, latestfoundtime=nil, nodeip=nil, hostid=nil)
|
|
10693
10719
|
@EventType = eventtype
|
|
10694
10720
|
@ContainerName = containername
|
|
10695
10721
|
@ImageName = imagename
|
|
@@ -10705,6 +10731,8 @@ module TencentCloud
|
|
|
10705
10731
|
@Description = description
|
|
10706
10732
|
@EventCount = eventcount
|
|
10707
10733
|
@LatestFoundTime = latestfoundtime
|
|
10734
|
+
@NodeIP = nodeip
|
|
10735
|
+
@HostID = hostid
|
|
10708
10736
|
end
|
|
10709
10737
|
|
|
10710
10738
|
def deserialize(params)
|
|
@@ -10723,6 +10751,8 @@ module TencentCloud
|
|
|
10723
10751
|
@Description = params['Description']
|
|
10724
10752
|
@EventCount = params['EventCount']
|
|
10725
10753
|
@LatestFoundTime = params['LatestFoundTime']
|
|
10754
|
+
@NodeIP = params['NodeIP']
|
|
10755
|
+
@HostID = params['HostID']
|
|
10726
10756
|
end
|
|
10727
10757
|
end
|
|
10728
10758
|
|
|
@@ -10746,19 +10776,23 @@ module TencentCloud
|
|
|
10746
10776
|
# @type Name: String
|
|
10747
10777
|
# @param IsEnable: 是否打开:false否 ,true是
|
|
10748
10778
|
# @type IsEnable: Boolean
|
|
10779
|
+
# @param Group: 规则组别。RISK_CONTAINER:风险容器,PROCESS_PRIVILEGE:程序特权,CONTAINER_ESCAPE:容器逃逸
|
|
10780
|
+
# @type Group: String
|
|
10749
10781
|
|
|
10750
|
-
attr_accessor :Type, :Name, :IsEnable
|
|
10782
|
+
attr_accessor :Type, :Name, :IsEnable, :Group
|
|
10751
10783
|
|
|
10752
|
-
def initialize(type=nil, name=nil, isenable=nil)
|
|
10784
|
+
def initialize(type=nil, name=nil, isenable=nil, group=nil)
|
|
10753
10785
|
@Type = type
|
|
10754
10786
|
@Name = name
|
|
10755
10787
|
@IsEnable = isenable
|
|
10788
|
+
@Group = group
|
|
10756
10789
|
end
|
|
10757
10790
|
|
|
10758
10791
|
def deserialize(params)
|
|
10759
10792
|
@Type = params['Type']
|
|
10760
10793
|
@Name = params['Name']
|
|
10761
10794
|
@IsEnable = params['IsEnable']
|
|
10795
|
+
@Group = params['Group']
|
|
10762
10796
|
end
|
|
10763
10797
|
end
|
|
10764
10798
|
|
|
@@ -12320,10 +12354,7 @@ module TencentCloud
|
|
|
12320
12354
|
class ModifyEscapeEventStatusRequest < TencentCloud::Common::AbstractModel
|
|
12321
12355
|
# @param EventIdSet: 处理事件ids
|
|
12322
12356
|
# @type EventIdSet: Array
|
|
12323
|
-
# @param Status:
|
|
12324
|
-
# EVENT_DEALED:事件已经处理
|
|
12325
|
-
# EVENT_INGNORE:事件忽略
|
|
12326
|
-
# EVENT_DEL:事件删除
|
|
12357
|
+
# @param Status: 标记事件的状态:EVENT_UNDEAL:未处理(取消忽略),EVENT_DEALED:已处理,EVENT_IGNORE:忽略,EVENT_DELETE:已删除
|
|
12327
12358
|
# @type Status: String
|
|
12328
12359
|
# @param Remark: 备注
|
|
12329
12360
|
# @type Remark: String
|
|
@@ -13468,10 +13499,32 @@ module TencentCloud
|
|
|
13468
13499
|
# @param ClientIP: 外网ip
|
|
13469
13500
|
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
13470
13501
|
# @type ClientIP: String
|
|
13471
|
-
|
|
13472
|
-
|
|
13473
|
-
|
|
13474
|
-
|
|
13502
|
+
# @param ContainerNetStatus: 网络状态
|
|
13503
|
+
# 未隔离 NORMAL
|
|
13504
|
+
# 已隔离 ISOLATED
|
|
13505
|
+
# 隔离中 ISOLATING
|
|
13506
|
+
# 隔离失败 ISOLATE_FAILED
|
|
13507
|
+
# 解除隔离中 RESTORING
|
|
13508
|
+
# 解除隔离失败 RESTORE_FAILED
|
|
13509
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
13510
|
+
# @type ContainerNetStatus: String
|
|
13511
|
+
# @param ContainerNetSubStatus: 容器子状态
|
|
13512
|
+
# "AGENT_OFFLINE" //Agent离线
|
|
13513
|
+
# "NODE_DESTROYED" //节点已销毁
|
|
13514
|
+
# "CONTAINER_EXITED" //容器已退出
|
|
13515
|
+
# "CONTAINER_DESTROYED" //容器已销毁
|
|
13516
|
+
# "SHARED_HOST" // 容器与主机共享网络
|
|
13517
|
+
# "RESOURCE_LIMIT" //隔离操作资源超限
|
|
13518
|
+
# "UNKNOW" // 原因未知
|
|
13519
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
13520
|
+
# @type ContainerNetSubStatus: String
|
|
13521
|
+
# @param ContainerIsolateOperationSrc: 容器隔离操作来源
|
|
13522
|
+
# 注意:此字段可能返回 null,表示取不到有效值。
|
|
13523
|
+
# @type ContainerIsolateOperationSrc: String
|
|
13524
|
+
|
|
13525
|
+
attr_accessor :EventId, :FoundTime, :ContainerId, :ContainerName, :ImageId, :ImageName, :NodeName, :PodName, :Status, :EventName, :EventType, :EventCount, :LatestFoundTime, :HostIP, :ClientIP, :ContainerNetStatus, :ContainerNetSubStatus, :ContainerIsolateOperationSrc
|
|
13526
|
+
|
|
13527
|
+
def initialize(eventid=nil, foundtime=nil, containerid=nil, containername=nil, imageid=nil, imagename=nil, nodename=nil, podname=nil, status=nil, eventname=nil, eventtype=nil, eventcount=nil, latestfoundtime=nil, hostip=nil, clientip=nil, containernetstatus=nil, containernetsubstatus=nil, containerisolateoperationsrc=nil)
|
|
13475
13528
|
@EventId = eventid
|
|
13476
13529
|
@FoundTime = foundtime
|
|
13477
13530
|
@ContainerId = containerid
|
|
@@ -13487,6 +13540,9 @@ module TencentCloud
|
|
|
13487
13540
|
@LatestFoundTime = latestfoundtime
|
|
13488
13541
|
@HostIP = hostip
|
|
13489
13542
|
@ClientIP = clientip
|
|
13543
|
+
@ContainerNetStatus = containernetstatus
|
|
13544
|
+
@ContainerNetSubStatus = containernetsubstatus
|
|
13545
|
+
@ContainerIsolateOperationSrc = containerisolateoperationsrc
|
|
13490
13546
|
end
|
|
13491
13547
|
|
|
13492
13548
|
def deserialize(params)
|
|
@@ -13505,6 +13561,9 @@ module TencentCloud
|
|
|
13505
13561
|
@LatestFoundTime = params['LatestFoundTime']
|
|
13506
13562
|
@HostIP = params['HostIP']
|
|
13507
13563
|
@ClientIP = params['ClientIP']
|
|
13564
|
+
@ContainerNetStatus = params['ContainerNetStatus']
|
|
13565
|
+
@ContainerNetSubStatus = params['ContainerNetSubStatus']
|
|
13566
|
+
@ContainerIsolateOperationSrc = params['ContainerIsolateOperationSrc']
|
|
13508
13567
|
end
|
|
13509
13568
|
end
|
|
13510
13569
|
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: tencentcloud-sdk-tcss
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.303
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Tencent Cloud
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-04-
|
|
11
|
+
date: 2022-04-26 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: tencentcloud-sdk-common
|