com.tencentcloudapi.tcss.v20201101.models

Class AbnormalProcessEventDescription

java.lang.Object

com.tencentcloudapi.common.AbstractModel

com.tencentcloudapi.tcss.v20201101.models.AbnormalProcessEventDescription

public class AbnormalProcessEventDescription
extends AbstractModel

Constructor Summary

Constructors

Constructor and Description
AbnormalProcessEventDescription()
AbnormalProcessEventDescription(AbnormalProcessEventDescription source) NOTE: Any ambiguous key set via .set("AnyKey", "value") will be a shallow copy, and any explicit key, i.e Foo, set via .setFoo("value") will be a deep copy.

Method Summary

Modifier and Type	Method and Description
String	getDescription() Get Event rule
String	getGroupName() Get Name of the hit policy.
AbnormalProcessChildRuleInfo	getMatchRule() Get Details of the hit rule
String	getOperationTime() Get Last processing time of the event Note: This field may return null, indicating that no valid values can be obtained.
String	getRemark() Get Event remarks Note: This field may return null, indicating that no valid values can be obtained.
String	getRuleId() Get ID of the hit rule
String	getRuleName() Get Name of the hit rule.
String	getSolution() Get Solution
void	setDescription(String Description) Set Event rule
void	setGroupName(String GroupName) Set Name of the hit policy.
void	setMatchRule(AbnormalProcessChildRuleInfo MatchRule) Set Details of the hit rule
void	setOperationTime(String OperationTime) Set Last processing time of the event Note: This field may return null, indicating that no valid values can be obtained.
void	setRemark(String Remark) Set Event remarks Note: This field may return null, indicating that no valid values can be obtained.
void	setRuleId(String RuleId) Set ID of the hit rule
void	setRuleName(String RuleName) Set Name of the hit rule.
void	setSolution(String Solution) Set Solution
void	toMap(HashMap<String,String> map, String prefix) Internal implementation, normal users should not use it.

Methods inherited from class com.tencentcloudapi.common.AbstractModel

any, fromJsonString, getBinaryParams, getMultipartRequestParams, set, setParamArrayObj, setParamArraySimple, setParamObj, setParamSimple, toJsonString

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AbnormalProcessEventDescription

public AbnormalProcessEventDescription()

AbnormalProcessEventDescription

public AbnormalProcessEventDescription(AbnormalProcessEventDescription source)

NOTE: Any ambiguous key set via .set("AnyKey", "value") will be a shallow copy, and any explicit key, i.e Foo, set via .setFoo("value") will be a deep copy.

Method Detail

getDescription

public String getDescription()

Get Event rule

Returns:

Description Event rule

setDescription

public void setDescription(String Description)

Set Event rule

Parameters:

Description - Event rule

getSolution

public String getSolution()

Get Solution

Returns:

Solution Solution

setSolution

public void setSolution(String Solution)

Set Solution

Parameters:

Solution - Solution

getRemark

public String getRemark()

Get Event remarks Note: This field may return null, indicating that no valid values can be obtained.

Returns:

Remark Event remarks Note: This field may return null, indicating that no valid values can be obtained.

setRemark

public void setRemark(String Remark)

Set Event remarks Note: This field may return null, indicating that no valid values can be obtained.

Parameters:

Remark - Event remarks Note: This field may return null, indicating that no valid values can be obtained.

getMatchRule

public AbnormalProcessChildRuleInfo getMatchRule()

Get Details of the hit rule

Returns:

MatchRule Details of the hit rule

setMatchRule

public void setMatchRule(AbnormalProcessChildRuleInfo MatchRule)

Set Details of the hit rule

Parameters:

MatchRule - Details of the hit rule

getRuleName

public String getRuleName()

Get Name of the hit rule. Valid values: `PROXY_TOOL` (proxy); `TRANSFER_CONTROL` (lateral movement); `ATTACK_CMD` (malicious command); `REVERSE_SHELL` (reverse shell); `FILELESS` (fileless execution); `RISK_CMD` (high-risk command); `ABNORMAL_CHILD_PROC` (unusual start found in the child process of the sensitive service); `USER_DEFINED_RULE` (custom rule).

Returns:

RuleName Name of the hit rule. Valid values: `PROXY_TOOL` (proxy); `TRANSFER_CONTROL` (lateral movement); `ATTACK_CMD` (malicious command); `REVERSE_SHELL` (reverse shell); `FILELESS` (fileless execution); `RISK_CMD` (high-risk command); `ABNORMAL_CHILD_PROC` (unusual start found in the child process of the sensitive service); `USER_DEFINED_RULE` (custom rule).

setRuleName

public void setRuleName(String RuleName)

Set Name of the hit rule. Valid values: `PROXY_TOOL` (proxy); `TRANSFER_CONTROL` (lateral movement); `ATTACK_CMD` (malicious command); `REVERSE_SHELL` (reverse shell); `FILELESS` (fileless execution); `RISK_CMD` (high-risk command); `ABNORMAL_CHILD_PROC` (unusual start found in the child process of the sensitive service); `USER_DEFINED_RULE` (custom rule).

Parameters:

RuleName - Name of the hit rule. Valid values: `PROXY_TOOL` (proxy); `TRANSFER_CONTROL` (lateral movement); `ATTACK_CMD` (malicious command); `REVERSE_SHELL` (reverse shell); `FILELESS` (fileless execution); `RISK_CMD` (high-risk command); `ABNORMAL_CHILD_PROC` (unusual start found in the child process of the sensitive service); `USER_DEFINED_RULE` (custom rule).

getRuleId

public String getRuleId()

Get ID of the hit rule

Returns:

RuleId ID of the hit rule

setRuleId

public void setRuleId(String RuleId)

Set ID of the hit rule

Parameters:

RuleId - ID of the hit rule

getOperationTime

public String getOperationTime()

Get Last processing time of the event Note: This field may return null, indicating that no valid values can be obtained.

Returns:

OperationTime Last processing time of the event Note: This field may return null, indicating that no valid values can be obtained.

setOperationTime

public void setOperationTime(String OperationTime)

Set Last processing time of the event Note: This field may return null, indicating that no valid values can be obtained.

Parameters:

OperationTime - Last processing time of the event Note: This field may return null, indicating that no valid values can be obtained.

getGroupName

public String getGroupName()

Get Name of the hit policy. Valid values: `SYSTEM_DEFINED_RULE` (preset policy); name of the custom policy. Note: This field may return null, indicating that no valid values can be obtained.

Returns:

GroupName Name of the hit policy. Valid values: `SYSTEM_DEFINED_RULE` (preset policy); name of the custom policy. Note: This field may return null, indicating that no valid values can be obtained.

setGroupName

public void setGroupName(String GroupName)

Set Name of the hit policy. Valid values: `SYSTEM_DEFINED_RULE` (preset policy); name of the custom policy. Note: This field may return null, indicating that no valid values can be obtained.

Parameters:

GroupName - Name of the hit policy. Valid values: `SYSTEM_DEFINED_RULE` (preset policy); name of the custom policy. Note: This field may return null, indicating that no valid values can be obtained.

toMap

public void toMap(HashMap<String,String> map,
                  String prefix)

Internal implementation, normal users should not use it.

Specified by:

toMap in class AbstractModel