TIObject interface
Represents a threat intelligence object in Azure Security Insights.
- Extends
Properties
| created |
The UserInfo of the user/entity which originally created this TI object. |
| data | The core STIX object that this TI object represents. |
| first |
The timestamp for the first time this object was ingested. |
| ingestion |
The ID of the rules version that was active when this TI object was last ingested. |
| kind | The discriminator possible values: ThreatActor, AttackPattern, Identity, Relationship, Indicator |
| last |
The timestamp for the last time this object was ingested. |
| last |
The UserInfo of the user/entity which last modified this TI object. |
| last |
The timestamp for the last time this TI object was updated. |
| last |
The name of the method/application that initiated the last write to this TI object. |
| relationship |
A dictionary used to help follow relationships from this object to other STIX objects. The keys are field names from the STIX object (in the 'data' field), and the values are lists of sources that can be prepended to the object ID in order to efficiently locate the target TI object. |
| source | The source name for this TI object. |
Inherited Properties
| id | Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName} |
| name | The name of the resource |
| system |
Azure Resource Manager metadata containing createdBy and modifiedBy information. |
| type | The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts" |
Property Details
createdBy
The UserInfo of the user/entity which originally created this TI object.
createdBy?: UserInfoProperty Value
data
The core STIX object that this TI object represents.
data?: Record<string, any>Property Value
Record<string, any>
firstIngestedTimeUtc
The timestamp for the first time this object was ingested.
firstIngestedTimeUtc?: DateProperty Value
Date
ingestionRulesVersion
The ID of the rules version that was active when this TI object was last ingested.
ingestionRulesVersion?: stringProperty Value
string
kind
The discriminator possible values: ThreatActor, AttackPattern, Identity, Relationship, Indicator
kind: stringProperty Value
string
lastIngestedTimeUtc
The timestamp for the last time this object was ingested.
lastIngestedTimeUtc?: DateProperty Value
Date
lastModifiedBy
The UserInfo of the user/entity which last modified this TI object.
lastModifiedBy?: UserInfoProperty Value
lastUpdatedDateTimeUtc
The timestamp for the last time this TI object was updated.
lastUpdatedDateTimeUtc?: DateProperty Value
Date
lastUpdateMethod
The name of the method/application that initiated the last write to this TI object.
lastUpdateMethod?: stringProperty Value
string
relationshipHints
A dictionary used to help follow relationships from this object to other STIX objects. The keys are field names from the STIX object (in the 'data' field), and the values are lists of sources that can be prepended to the object ID in order to efficiently locate the target TI object.
relationshipHints?: RelationshipHint[]Property Value
source
The source name for this TI object.
source?: stringProperty Value
string
Inherited Property Details
id
Fully qualified resource ID for the resource. Ex - /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}
id?: stringProperty Value
string
Inherited From Resource.id
name
systemData
Azure Resource Manager metadata containing createdBy and modifiedBy information.
systemData?: SystemDataProperty Value
Inherited From Resource.systemData
type
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
type?: stringProperty Value
string
Inherited From Resource.type
