com.tencentcloudapi.cwp.v20180228.models

Class ModifyRiskEventsStatusRequest

java.lang.Object

com.tencentcloudapi.common.AbstractModel

com.tencentcloudapi.cwp.v20180228.models.ModifyRiskEventsStatusRequest

public class ModifyRiskEventsStatusRequest
extends AbstractModel

Field Summary

Fields inherited from class com.tencentcloudapi.common.AbstractModel

header, skipSign

Constructor Summary

Constructors

Constructor and Description
ModifyRiskEventsStatusRequest()
ModifyRiskEventsStatusRequest(ModifyRiskEventsStatusRequest source) NOTE: Any ambiguous key set via .set("AnyKey", "value") will be a shallow copy, and any explicit key, i.e Foo, set via .setFoo("value") will be a deep copy.

Method Summary

Modifier and Type	Method and Description
Long[]	getExcludeId() Get Excluded event ID: When operating on all events, this ID needs to be excluded.
Filters[]	getFilters() Get Filtering criteria.
Long[]	getIds() Get An array of event IDs that need to be modified, and batch operation is supported.
String[]	getIp() Get When RiskType is cross-region log-in and IDs are left blank, you can modify the status of events from all source IPs.
Boolean	getKillProcess() Get When Operate is Trojan isolation, it indicates whether to kill the process, other operations are invalid
Long	getOperate() Get Operations - 0: Mark as Handled, 1: Ignore, 2: Delete Record, 3: Trojan Isolation, 4: Isolated Trojan Resumption, 5: Trojan Trust, 6: Trojan Untrust, 7: Kill Exceptional Process.
String	getRiskType() Get Operation event types, file scan: MALWARE, exceptional login: HOST_LOGIN, password brute attack: BRUTE_ATTACK, malicious request: MALICIOUS_REQUEST, high-risk command: BASH_EVENT, local privilege escalation: PRIVILEGE_EVENT, reverse shell: REVERSE_SHELL, exceptional process: PROCESS.
Boolean	getUpdateAll() Get Whether to update all, i.e.
void	setExcludeId(Long[] ExcludeId) Set Excluded event ID: When operating on all events, this ID needs to be excluded.
void	setFilters(Filters[] Filters) Set Filtering criteria.
void	setIds(Long[] Ids) Set An array of event IDs that need to be modified, and batch operation is supported.
void	setIp(String[] Ip) Set When RiskType is cross-region log-in and IDs are left blank, you can modify the status of events from all source IPs.
void	setKillProcess(Boolean KillProcess) Set When Operate is Trojan isolation, it indicates whether to kill the process, other operations are invalid
void	setOperate(Long Operate) Set Operations - 0: Mark as Handled, 1: Ignore, 2: Delete Record, 3: Trojan Isolation, 4: Isolated Trojan Resumption, 5: Trojan Trust, 6: Trojan Untrust, 7: Kill Exceptional Process.
void	setRiskType(String RiskType) Set Operation event types, file scan: MALWARE, exceptional login: HOST_LOGIN, password brute attack: BRUTE_ATTACK, malicious request: MALICIOUS_REQUEST, high-risk command: BASH_EVENT, local privilege escalation: PRIVILEGE_EVENT, reverse shell: REVERSE_SHELL, exceptional process: PROCESS.
void	setUpdateAll(Boolean UpdateAll) Set Whether to update all, i.e.
void	toMap(HashMap<String,String> map, String prefix) Internal implementation, normal users should not use it.

Methods inherited from class com.tencentcloudapi.common.AbstractModel

any, fromJsonString, getBinaryParams, GetHeader, getMultipartRequestParams, getSkipSign, isStream, set, SetHeader, setParamArrayObj, setParamArraySimple, setParamObj, setParamSimple, setSkipSign, toJsonString

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ModifyRiskEventsStatusRequest

public ModifyRiskEventsStatusRequest()

ModifyRiskEventsStatusRequest

public ModifyRiskEventsStatusRequest(ModifyRiskEventsStatusRequest source)

NOTE: Any ambiguous key set via .set("AnyKey", "value") will be a shallow copy, and any explicit key, i.e Foo, set via .setFoo("value") will be a deep copy.

Method Detail

getOperate

public Long getOperate()

Get Operations - 0: Mark as Handled, 1: Ignore, 2: Delete Record, 3: Trojan Isolation, 4: Isolated Trojan Resumption, 5: Trojan Trust, 6: Trojan Untrust, 7: Kill Exceptional Process.

Returns:

Operate Operations - 0: Mark as Handled, 1: Ignore, 2: Delete Record, 3: Trojan Isolation, 4: Isolated Trojan Resumption, 5: Trojan Trust, 6: Trojan Untrust, 7: Kill Exceptional Process.

setOperate

public void setOperate(Long Operate)

Set Operations - 0: Mark as Handled, 1: Ignore, 2: Delete Record, 3: Trojan Isolation, 4: Isolated Trojan Resumption, 5: Trojan Trust, 6: Trojan Untrust, 7: Kill Exceptional Process.

Parameters:

Operate - Operations - 0: Mark as Handled, 1: Ignore, 2: Delete Record, 3: Trojan Isolation, 4: Isolated Trojan Resumption, 5: Trojan Trust, 6: Trojan Untrust, 7: Kill Exceptional Process.

getRiskType

public String getRiskType()

Get Operation event types, file scan: MALWARE, exceptional login: HOST_LOGIN, password brute attack: BRUTE_ATTACK, malicious request: MALICIOUS_REQUEST, high-risk command: BASH_EVENT, local privilege escalation: PRIVILEGE_EVENT, reverse shell: REVERSE_SHELL, exceptional process: PROCESS.

Returns:

RiskType Operation event types, file scan: MALWARE, exceptional login: HOST_LOGIN, password brute attack: BRUTE_ATTACK, malicious request: MALICIOUS_REQUEST, high-risk command: BASH_EVENT, local privilege escalation: PRIVILEGE_EVENT, reverse shell: REVERSE_SHELL, exceptional process: PROCESS.

setRiskType

public void setRiskType(String RiskType)

Set Operation event types, file scan: MALWARE, exceptional login: HOST_LOGIN, password brute attack: BRUTE_ATTACK, malicious request: MALICIOUS_REQUEST, high-risk command: BASH_EVENT, local privilege escalation: PRIVILEGE_EVENT, reverse shell: REVERSE_SHELL, exceptional process: PROCESS.

Parameters:

RiskType - Operation event types, file scan: MALWARE, exceptional login: HOST_LOGIN, password brute attack: BRUTE_ATTACK, malicious request: MALICIOUS_REQUEST, high-risk command: BASH_EVENT, local privilege escalation: PRIVILEGE_EVENT, reverse shell: REVERSE_SHELL, exceptional process: PROCESS.

getIds

public Long[] getIds()

Get An array of event IDs that need to be modified, and batch operation is supported.

Returns:

Ids An array of event IDs that need to be modified, and batch operation is supported.

setIds

public void setIds(Long[] Ids)

Set An array of event IDs that need to be modified, and batch operation is supported.

Parameters:

Ids - An array of event IDs that need to be modified, and batch operation is supported.

getUpdateAll

public Boolean getUpdateAll()

Get Whether to update all, i.e. whether to operate on all events; this parameter is invalid when IDs are not left blank.

Returns:

UpdateAll Whether to update all, i.e. whether to operate on all events; this parameter is invalid when IDs are not left blank.

setUpdateAll

public void setUpdateAll(Boolean UpdateAll)

Set Whether to update all, i.e. whether to operate on all events; this parameter is invalid when IDs are not left blank.

Parameters:

UpdateAll - Whether to update all, i.e. whether to operate on all events; this parameter is invalid when IDs are not left blank.

getExcludeId

public Long[] getExcludeId()

Get Excluded event ID: When operating on all events, this ID needs to be excluded.

Returns:

ExcludeId Excluded event ID: When operating on all events, this ID needs to be excluded.

setExcludeId

public void setExcludeId(Long[] ExcludeId)

Set Excluded event ID: When operating on all events, this ID needs to be excluded.

Parameters:

ExcludeId - Excluded event ID: When operating on all events, this ID needs to be excluded.

getKillProcess

public Boolean getKillProcess()

Get When Operate is Trojan isolation, it indicates whether to kill the process, other operations are invalid

Returns:

KillProcess When Operate is Trojan isolation, it indicates whether to kill the process, other operations are invalid

setKillProcess

public void setKillProcess(Boolean KillProcess)

Set When Operate is Trojan isolation, it indicates whether to kill the process, other operations are invalid

Parameters:

KillProcess - When Operate is Trojan isolation, it indicates whether to kill the process, other operations are invalid

getIp

public String[] getIp()

Get When RiskType is cross-region log-in and IDs are left blank, you can modify the status of events from all source IPs.

Returns:

Ip When RiskType is cross-region log-in and IDs are left blank, you can modify the status of events from all source IPs.

setIp

public void setIp(String[] Ip)

Set When RiskType is cross-region log-in and IDs are left blank, you can modify the status of events from all source IPs.

Parameters:

Ip - When RiskType is cross-region log-in and IDs are left blank, you can modify the status of events from all source IPs.

getFilters

public Filters[] getFilters()

Get Filtering criteria. When RiskType is MALWARE. 1. When RiskType is MALWARE:

IpOrAlias - String - required: no - filter by host IP or alias FilePath - String - required: no - filter by path VirusName - String - required: no - filter by description CreateBeginTime - String - required: no - filter by creation time - start time CreateEndTime - String - required: no - filter by creation time - end time Status - String - required: no - filter by status: 4 - pending; 5 -- trusted; 6 - isolated; 10 - isolation in progress; 11 - recovering from isolation When RiskType is PROCESS: Filter criteria IpOrName - String - required: no - host IP or host name VirusName - String - required: no - virus name BeginTime - String - required: no - process startup time - begin BeginTime - String - required: no - process startup time - end Status - String - required: no - filter by status: 0 - pending; 1 - under detection; 2 - detected; 3 - exited; 4 - trusted

Returns:

Filters Filtering criteria. When RiskType is MALWARE. 1. When RiskType is MALWARE:

IpOrAlias - String - required: no - filter by host IP or alias

FilePath - String - required: no - filter by path

VirusName - String - required: no - filter by description

CreateBeginTime - String - required: no - filter by creation time - start time

CreateEndTime - String - required: no - filter by creation time - end time

Status - String - required: no - filter by status: 4 - pending; 5 -- trusted; 6 - isolated; 10 - isolation in progress; 11 - recovering from isolation

When RiskType is PROCESS: Filter criteria

IpOrName - String - required: no - host IP or host name

VirusName - String - required: no - virus name

BeginTime - String - required: no - process startup time - begin

BeginTime - String - required: no - process startup time - end

Status - String - required: no - filter by status: 0 - pending; 1 - under detection; 2 - detected; 3 - exited; 4 - trusted

setFilters

public void setFilters(Filters[] Filters)

Set Filtering criteria. When RiskType is MALWARE. 1. When RiskType is MALWARE:

IpOrAlias - String - required: no - filter by host IP or alias FilePath - String - required: no - filter by path VirusName - String - required: no - filter by description CreateBeginTime - String - required: no - filter by creation time - start time CreateEndTime - String - required: no - filter by creation time - end time Status - String - required: no - filter by status: 4 - pending; 5 -- trusted; 6 - isolated; 10 - isolation in progress; 11 - recovering from isolation When RiskType is PROCESS: Filter criteria IpOrName - String - required: no - host IP or host name VirusName - String - required: no - virus name BeginTime - String - required: no - process startup time - begin BeginTime - String - required: no - process startup time - end Status - String - required: no - filter by status: 0 - pending; 1 - under detection; 2 - detected; 3 - exited; 4 - trusted