@azure/arm-securityinsight package
AADCheck |
Represents AAD (Azure Active Directory) requirements check request. |
AADCheck |
AAD (Azure Active Directory) requirements check properties. |
AADData |
Represents AAD (Azure Active Directory) data connector. |
AADData |
AAD (Azure Active Directory) data connector properties. |
ASCCheck |
Represents ASC (Azure Security Center) requirements check request. |
ASCData |
Represents ASC (Azure Security Center) data connector. |
ASCData |
ASC (Azure Security Center) data connector properties. |
Aatp |
Represents AATP (Azure Advanced Threat Protection) requirements check request. |
Aatp |
AATP (Azure Advanced Threat Protection) requirements check properties. |
Aatp |
Represents AATP (Azure Advanced Threat Protection) data connector. |
Aatp |
AATP (Azure Advanced Threat Protection) data connector properties. |
Account |
Represents an account entity. |
Account |
Account entity property bag. |
Action |
Action property bag base. |
Action |
Action for alert rule. |
Action |
Action property bag. |
Action |
Action for alert rule. |
Action |
Action property bag. |
Actions |
Interface representing a Actions. |
Actions |
Optional parameters. |
Actions |
Optional parameters. |
Actions |
Optional parameters. |
Actions |
List all the actions. |
Actions |
Optional parameters. |
Actions |
Optional parameters. |
Activity |
Represents Activity entity query. |
Activity |
The Activity query definitions |
Activity |
Represents Activity entity query. |
Activity |
Represents Activity entity query. |
Activity |
The Activity query definitions |
Activity |
Represents Activity timeline item. |
Alert |
Settings for how to dynamically override alert static details |
Alert |
Alert rule. |
Alert |
Alert rule template. |
Alert |
alert rule template data sources |
Alert |
Base alert rule template property bag. |
Alert |
Alert rule template with MITRE property bag. |
Alert |
Interface representing a AlertRuleTemplates. |
Alert |
Optional parameters. |
Alert |
List all the alert rule templates. |
Alert |
Optional parameters. |
Alert |
Optional parameters. |
Alert |
Interface representing a AlertRules. |
Alert |
Optional parameters. |
Alert |
Optional parameters. |
Alert |
Optional parameters. |
Alert |
List all the alert rules. |
Alert |
Optional parameters. |
Alert |
Optional parameters. |
Alerts |
Alerts data type for data connectors. |
Anomalies |
Settings with single toggle. |
Anomaly |
Represents Anomaly Security ML Analytics Settings |
Anomaly |
Represents anomaly timeline item. |
Automation |
An azure resource object with an Etag property |
Automation |
Describes an automation rule action. |
Automation |
|
Automation |
Describes an automation rule condition. |
Automation |
Describes an automation rule action to modify an object's properties |
Automation |
|
Automation |
|
Automation |
|
Automation |
|
Automation |
Describes an automation rule action to run a playbook |
Automation |
Describes automation rule triggering logic. |
Automation |
Interface representing a AutomationRules. |
Automation |
Optional parameters. |
Automation |
Optional parameters. |
Automation |
Optional parameters. |
Automation |
|
Automation |
Optional parameters. |
Automation |
Optional parameters. |
Availability |
Connector Availability Status |
Aws |
Amazon Web Services CloudTrail requirements check request. |
Aws |
Represents Amazon Web Services CloudTrail data connector. |
Aws |
The available data types for Amazon Web Services CloudTrail data connector. |
Aws |
Logs data type. |
AwsS3Check |
Amazon Web Services S3 requirements check request. |
AwsS3Data |
Represents Amazon Web Services S3 data connector. |
AwsS3Data |
The available data types for Amazon Web Services S3 data connector. |
AwsS3Data |
Logs data type. |
Azure |
Resources created in Azure DevOps repository. |
Azure |
Represents an azure resource entity. |
Azure |
AzureResource entity property bag. |
Bookmark |
Represents a bookmark in Azure Security Insights. |
Bookmark |
Describes the entity mappings of a single entity |
Bookmark |
Optional parameters. |
Bookmark |
The parameters required to execute an expand operation on the given bookmark. |
Bookmark |
The entity expansion result operation response. |
Bookmark |
The expansion result values. |
Bookmark |
List all the bookmarks. |
Bookmark |
Interface representing a BookmarkOperations. |
Bookmark |
Interface representing a BookmarkRelations. |
Bookmark |
Optional parameters. |
Bookmark |
Optional parameters. |
Bookmark |
Optional parameters. |
Bookmark |
Optional parameters. |
Bookmark |
Optional parameters. |
Bookmark |
Represents bookmark timeline item. |
Bookmarks |
Interface representing a Bookmarks. |
Bookmarks |
Optional parameters. |
Bookmarks |
Optional parameters. |
Bookmarks |
Optional parameters. |
Bookmarks |
Optional parameters. |
Bookmarks |
Optional parameters. |
Boolean |
Describes an automation rule condition that applies a boolean operator (e.g AND, OR) to conditions |
Client |
Information on the client (user or application) that made some action |
Cloud |
Represents a cloud application entity. |
Cloud |
CloudApplication entity property bag. |
Cloud |
Error response structure. |
Cloud |
Error details. |
Codeless |
Represents Codeless API Polling data connector. |
Codeless |
Describe the authentication properties needed to successfully authenticate with the server |
Codeless |
Config to describe the polling config for API poller connector |
Codeless |
Describe the properties needed to make a pagination call |
Codeless |
Describe the request properties needed to successfully pull from the server |
Codeless |
Describes the response from the external server |
Codeless |
Config to describe the instructions blade |
Codeless |
Setting for the connector check connectivity |
Codeless |
Data type for last data received |
Codeless |
The graph query to show the current data status |
Codeless |
Instruction steps to enable the connector |
Codeless |
The sample queries for the connector |
Codeless |
Represents Codeless UI data connector. |
Connected |
Expansion result connected entities |
Connectivity |
Setting for the connector check connectivity |
Connector |
Instruction step details |
Content |
The mapping of content type to a repo path. |
Custom |
Specific entity query that supports put requests. |
Customs |
Customs permissions required for the connector |
Customs |
Customs permissions required for the connector |
Data |
Data connector |
Data |
Represents Codeless API Polling data connector. |
Data |
Common field for data type in data connectors. |
Data |
List all the data connectors. |
Data |
Data connector requirements status. |
Data |
Properties data connector on tenant level. |
Data |
Data connector properties. |
Data |
Interface representing a DataConnectors. |
Data |
Data connector requirements properties. |
Data |
Interface representing a DataConnectorsCheckRequirementsOperations. |
Data |
Optional parameters. |
Data |
Optional parameters. |
Data |
Optional parameters. |
Data |
Optional parameters. |
Data |
Optional parameters. |
Data |
Optional parameters. |
Data |
Optional parameters. |
Data |
Optional parameters. |
Data |
The data type definition |
Deployment |
Description about a deployment. |
Deployment |
Information regarding a deployment. |
Dns |
Represents a dns entity. |
Dns |
Dns entity property bag. |
Domain |
Interface representing a DomainWhois. |
Domain |
Optional parameters. |
Dynamics365Check |
Represents Dynamics365 requirements check request. |
Dynamics365Check |
Dynamics365 requirements check properties. |
Dynamics365Data |
Represents Dynamics365 data connector. |
Dynamics365Data |
The available data types for Dynamics365 data connector. |
Dynamics365Data |
Common Data Service data type connection. |
Dynamics365Data |
Dynamics365 data connector properties. |
Enrichment |
Whois information for a given domain and associated metadata |
Enrichment |
An individual contact associated with this domain |
Enrichment |
The set of contacts associated with this domain |
Enrichment |
The whois record for a given domain |
Enrichment |
The registrar associated with this domain |
Enrichment |
Geodata information for a given IP address |
Entities |
Interface representing a Entities. |
Entities |
Optional parameters. |
Entities |
Optional parameters. |
Entities |
Optional parameters. |
Entities |
Interface representing a EntitiesGetTimeline. |
Entities |
Optional parameters. |
Entities |
Optional parameters. |
Entities |
Optional parameters. |
Entities |
Optional parameters. |
Entities |
Interface representing a EntitiesRelations. |
Entities |
Optional parameters. |
Entities |
Optional parameters. |
Entity |
Specific entity. |
Entity |
Settings with single toggle. |
Entity |
Entity common property bag. |
Entity |
The edge that connects the entity to the other entity. |
Entity |
The parameters required to execute an expand operation on the given entity. |
Entity |
The entity expansion result operation response. |
Entity |
The expansion result values. |
Entity |
Map identifiers of a single entity |
Entity |
The parameters required to execute insights operation on the given entity. |
Entity |
The Get Insights result operation response. |
Entity |
Entity insight Item. |
Entity |
The Time interval that the query actually executed on. |
Entity |
List of all the entities. |
Entity |
Single entity mapping for the alert rule |
Entity |
Interface representing a EntityQueries. |
Entity |
Optional parameters. |
Entity |
Optional parameters. |
Entity |
Optional parameters. |
Entity |
Optional parameters. |
Entity |
Optional parameters. |
Entity |
Specific entity query. |
Entity |
An abstract Query item for entity |
Entity |
An properties abstract Query item for entity |
Entity |
|
Entity |
List of all the entity queries. |
Entity |
Specific entity query template. |
Entity |
List of all the entity query templates. |
Entity |
Interface representing a EntityQueryTemplates. |
Entity |
Optional parameters. |
Entity |
Optional parameters. |
Entity |
Optional parameters. |
Entity |
Interface representing a EntityRelations. |
Entity |
Optional parameters. |
Entity |
Entity timeline Item. |
Entity |
The parameters required to execute s timeline operation on the given entity. |
Entity |
The entity timeline result operation response. |
Event |
Event grouping settings property bag. |
Expansion |
Represents Expansion entity query. |
Expansion |
Information of a specific aggregation in the expansion result. |
Expansion |
Expansion result metadata. |
Eyes |
Settings with single toggle. |
Field |
A single field mapping of the mapped entity |
File |
Represents a file entity. |
File |
File entity property bag. |
File |
Represents a file hash entity. |
File |
FileHash entity property bag. |
File |
Represents a file import in Azure Security Insights. |
File |
List all the file imports. |
File |
Interface representing a FileImports. |
File |
Optional parameters. |
File |
Optional parameters. |
File |
Optional parameters. |
File |
Optional parameters. |
File |
Optional parameters. |
File |
Represents a file. |
Fusion |
Represents Fusion alert rule. |
Fusion |
Represents Fusion alert rule template. |
Fusion |
Represents a Fusion scenario exclusion patterns in Fusion detection. |
Fusion |
Represents a supported source signal configuration in Fusion detection. |
Fusion |
Represents a supported source subtype configuration under a source signal in Fusion detection. |
Fusion |
Represents severity configuration for a source subtype consumed in Fusion detection. |
Fusion |
Represents a Severity filter setting for a given source subtype consumed in Fusion detection. |
Fusion |
Represents a source signal consumed in Fusion detection. |
Fusion |
Represents a source subtype under a source signal consumed in Fusion detection. |
Fusion |
Represents severity configurations available for a source subtype consumed in Fusion detection. |
Geo |
The geo-location context attached to the ip entity |
Get |
GetInsights Query Errors. |
Get |
Get Insights result metadata. |
Get |
Retrieve queries for entity result operation response. |
Git |
Resources created in GitHub repository. |
Graph |
The graph query to show the current data status |
Grouping |
Grouping configuration property bag. |
Host |
Represents a host entity. |
Host |
Host entity property bag. |
Hunting |
Represents a Hunting bookmark entity. |
Hunting |
Describes bookmark properties |
IPGeodata |
Interface representing a IPGeodata. |
IPGeodata |
Optional parameters. |
Incident |
Represents an incident in Azure Security Insights. |
Incident |
Incident additional data property bag. |
Incident |
List of incident alerts. |
Incident |
List of incident bookmarks. |
Incident |
Represents an incident comment |
Incident |
List of incident comments. |
Incident |
Interface representing a IncidentComments. |
Incident |
Optional parameters. |
Incident |
Optional parameters. |
Incident |
Optional parameters. |
Incident |
Optional parameters. |
Incident |
Optional parameters. |
Incident |
Incident Configuration property bag. |
Incident |
The incident related entities response. |
Incident |
Information of a specific aggregation in the incident related entities result. |
Incident |
Describes related incident information for the bookmark |
Incident |
Represents an incident label |
Incident |
List all the incidents. |
Incident |
Information on the user an incident is assigned to |
Incident |
|
Incident |
Interface representing a IncidentRelations. |
Incident |
Optional parameters. |
Incident |
Optional parameters. |
Incident |
Optional parameters. |
Incident |
Optional parameters. |
Incident |
Optional parameters. |
Incidents |
Interface representing a Incidents. |
Incidents |
Optional parameters. |
Incidents |
Optional parameters. |
Incidents |
Optional parameters. |
Incidents |
Optional parameters. |
Incidents |
Optional parameters. |
Incidents |
Optional parameters. |
Incidents |
Optional parameters. |
Incidents |
Optional parameters. |
Incidents |
Optional parameters. |
Incidents |
Optional parameters. |
Insight |
Represents Insight Query. |
Insight |
Represents Insight Query. |
Insight |
The activity query definitions. |
Insight |
The insight chart query. |
Insight |
The insight chart query. |
Insight |
The insight table query. |
Insight |
|
Insight |
|
Insight |
|
Insights |
Query results for table insights query. |
Insights |
|
Instruction |
Instruction steps to enable the connector |
Instruction |
Instruction step details |
Io |
Represents IoT requirements check request. |
Io |
Represents IoT data connector. |
Io |
IoT data connector properties. |
Io |
Represents an IoT device entity. |
Io |
IoTDevice entity property bag. |
Ip |
Represents an ip entity. |
Ip |
Ip entity property bag. |
Last |
Data type for last data received |
MLBehavior |
Represents MLBehaviorAnalytics alert rule. |
MLBehavior |
Represents MLBehaviorAnalytics alert rule template. |
MLBehavior |
MLBehaviorAnalytics alert rule template properties. |
MTPCheck |
MTP (Microsoft Threat Protection) requirements check properties. |
MTPData |
Represents MTP (Microsoft Threat Protection) data connector. |
MTPData |
The available data types for Microsoft Threat Protection Platforms data connector. |
MTPData |
Data type for Microsoft Threat Protection Platforms data connector. |
MTPData |
MTP (Microsoft Threat Protection) data connector properties. |
Mail |
Represents a mail cluster entity. |
Mail |
Mail cluster entity property bag. |
Mail |
Represents a mail message entity. |
Mail |
Mail message entity property bag. |
Mailbox |
Represents a mailbox entity. |
Mailbox |
Mailbox entity property bag. |
Malware |
Represents a malware entity. |
Malware |
Malware entity property bag. |
Manual |
|
Mcas |
Represents MCAS (Microsoft Cloud App Security) requirements check request. |
Mcas |
MCAS (Microsoft Cloud App Security) requirements check properties. |
Mcas |
Represents MCAS (Microsoft Cloud App Security) data connector. |
Mcas |
The available data types for MCAS (Microsoft Cloud App Security) data connector. |
Mcas |
MCAS (Microsoft Cloud App Security) data connector properties. |
Mdatp |
Represents MDATP (Microsoft Defender Advanced Threat Protection) requirements check request. |
Mdatp |
MDATP (Microsoft Defender Advanced Threat Protection) requirements check properties. |
Mdatp |
Represents MDATP (Microsoft Defender Advanced Threat Protection) data connector. |
Mdatp |
MDATP (Microsoft Defender Advanced Threat Protection) data connector properties. |
Metadata |
Interface representing a Metadata. |
Metadata |
Publisher or creator of the content item. |
Metadata |
ies for the solution content item |
Metadata |
Optional parameters. |
Metadata |
Optional parameters. |
Metadata |
Dependencies for the content item, what other content items it requires to work. Can describe more complex dependencies using a recursive/nested structure. For a single dependency an id/kind/version can be supplied or operator/criteria for complex dependencies. |
Metadata |
Optional parameters. |
Metadata |
List of all the metadata. |
Metadata |
Optional parameters. |
Metadata |
Optional parameters. |
Metadata |
Metadata resource definition. |
Metadata |
Metadata patch request body. |
Metadata |
The original source of the content item, where it comes from. |
Metadata |
Support information for the content item. |
Metadata |
Optional parameters. |
Microsoft |
Represents MicrosoftSecurityIncidentCreation rule. |
Microsoft |
MicrosoftSecurityIncidentCreation rule common property bag. |
Microsoft |
MicrosoftSecurityIncidentCreation rule property bag. |
Microsoft |
Represents MicrosoftSecurityIncidentCreation rule template. |
Microsoft |
MicrosoftSecurityIncidentCreation rule template properties |
Msti |
Represents Microsoft Threat Intelligence requirements check request. |
Msti |
Microsoft Threat Intelligence requirements check properties. |
Msti |
Represents Microsoft Threat Intelligence data connector. |
Msti |
The available data types for Microsoft Threat Intelligence Platforms data connector. |
Msti |
Data type for Microsoft Threat Intelligence Platforms data connector. |
Msti |
Data type for Microsoft Threat Intelligence Platforms data connector. |
Msti |
Microsoft Threat Intelligence data connector properties. |
Mtp |
Represents MTP (Microsoft Threat Protection) requirements check request. |
Nic |
Represents an network interface entity. |
Nic |
Nic entity property bag. |
Nrt |
Represents NRT alert rule. |
Nrt |
Represents NRT alert rule template. |
Nrt |
NRT alert rule template properties |
Office365Project |
Represents Office365 Project requirements check request. |
Office365Project |
Office365 Project requirements check properties. |
Office365Project |
The available data types for Office Microsoft Project data connector. |
Office365Project |
Logs data type. |
Office365Project |
Represents Office Microsoft Project data connector. |
Office365Project |
Office Microsoft Project data connector properties. |
Office |
Represents OfficeATP (Office 365 Advanced Threat Protection) requirements check request. |
Office |
OfficeATP (Office 365 Advanced Threat Protection) requirements check properties. |
Office |
Represents OfficeATP (Office 365 Advanced Threat Protection) data connector. |
Office |
OfficeATP (Office 365 Advanced Threat Protection) data connector properties. |
Office |
Consent for Office365 tenant that already made. |
Office |
List of all the office365 consents. |
Office |
Interface representing a OfficeConsents. |
Office |
Optional parameters. |
Office |
Optional parameters. |
Office |
Optional parameters. |
Office |
Optional parameters. |
Office |
Represents office data connector. |
Office |
The available data types for office data connector. |
Office |
Exchange data type connection. |
Office |
SharePoint data type connection. |
Office |
Teams data type connection. |
Office |
Office data connector properties. |
Office |
Represents OfficeIRM (Microsoft Insider Risk Management) requirements check request. |
Office |
OfficeIRM (Microsoft Insider Risk Management) requirements check properties. |
Office |
Represents OfficeIRM (Microsoft Insider Risk Management) data connector. |
Office |
OfficeIRM (Microsoft Insider Risk Management) data connector properties. |
Office |
Represents Office PowerBI requirements check request. |
Office |
Office PowerBI requirements check properties. |
Office |
The available data types for Office Microsoft PowerBI data connector. |
Office |
Logs data type. |
Office |
Represents Office Microsoft PowerBI data connector. |
Office |
Office Microsoft PowerBI data connector properties. |
Operation |
Operation provided by provider |
Operation |
Properties of the operation |
Operations |
Interface representing a Operations. |
Operations |
Lists the operations available in the SecurityInsights RP. |
Operations |
Optional parameters. |
Operations |
Optional parameters. |
Permissions |
Permissions required for the connector |
Permissions |
Customs permissions required for the connector |
Permissions |
Resource provider permissions required for the connector |
Playbook |
|
Process |
Represents a process entity. |
Process |
Process entity property bag. |
Product |
Interface representing a ProductSettings. |
Product |
Optional parameters. |
Product |
Optional parameters. |
Product |
Optional parameters. |
Product |
Optional parameters. |
Property |
Describes an automation rule condition that evaluates an array property's value change |
Property |
Describes an automation rule condition that evaluates an array property's value |
Property |
Describes an automation rule condition that evaluates a property's value change |
Property |
Describes an automation rule condition that evaluates a property's value |
Query |
Query based alert rule template base property bag. |
Registry |
Represents a registry key entity. |
Registry |
RegistryKey entity property bag. |
Registry |
Represents a registry value entity. |
Registry |
RegistryValue entity property bag. |
Relation |
Represents a relation between two resources |
Relation |
List of relations. |
Repo |
Represents a repository. |
Repo |
List all the source controls. |
Repository |
metadata of a repository. |
Repository |
Resources created in user's repository for the source-control. |
Required |
Required permissions for the connector |
Resource |
Common fields that are returned in the response for all Azure Resource Manager resources |
Resource |
Resource provider permissions required for the connector |
Resource |
An azure resource object with an Etag property |
Sample |
The sample queries for the connector |
Scheduled |
Represents scheduled alert rule. |
Scheduled |
Scheduled alert rule template property bag. |
Scheduled |
Scheduled alert rule base property bag. |
Scheduled |
Represents scheduled alert rule template. |
Security |
Represents a security alert entity. |
Security |
SecurityAlert entity property bag. |
Security |
confidence reason item |
Security |
Represents security alert timeline item. |
Security |
Represents a security group entity. |
Security |
SecurityGroup entity property bag. |
Security |
Optional parameters. |
Security |
Security ML Analytics Setting |
Security |
Interface representing a SecurityMLAnalyticsSettings. |
Security |
Optional parameters. |
Security |
security ml analytics settings data sources |
Security |
Optional parameters. |
Security |
Optional parameters. |
Security |
List all the SecurityMLAnalyticsSettings |
Security |
Optional parameters. |
Security |
Optional parameters. |
Sentinel |
Sentinel onboarding state |
Sentinel |
Interface representing a SentinelOnboardingStates. |
Sentinel |
Optional parameters. |
Sentinel |
Optional parameters. |
Sentinel |
Optional parameters. |
Sentinel |
List of the Sentinel onboarding states |
Sentinel |
Optional parameters. |
Setting |
List of all the settings. |
Settings |
The Setting. |
Source |
Represents a SourceControl in Azure Security Insights. |
Source |
List all the source controls. |
Source |
Optional parameters. |
Source |
Optional parameters. |
Source |
Interface representing a SourceControlOperations. |
Source |
Interface representing a SourceControls. |
Source |
Optional parameters. |
Source |
Optional parameters. |
Source |
Optional parameters. |
Source |
Optional parameters. |
Source |
Optional parameters. |
Submission |
Represents a submission mail entity. |
Submission |
Submission mail entity property bag. |
System |
Metadata pertaining to creation and last modification of the resource. |
TICheck |
Threat Intelligence Platforms data connector check requirements |
TICheck |
Threat Intelligence Platforms data connector required properties. |
TIData |
Represents threat intelligence data connector. |
TIData |
The available data types for TI (Threat Intelligence) data connector. |
TIData |
Data type for indicators connection. |
TIData |
TI (Threat Intelligence) data connector properties. |
Team |
Describes team information |
Team |
Describes team properties |
Threat |
ThreatIntelligence property bag. |
Threat |
Represents Threat Intelligence alert rule. |
Threat |
Represents Threat Intelligence alert rule template. |
Threat |
Threat Intelligence alert rule template properties |
Threat |
Array of tags to be appended to the threat intelligence indicator. |
Threat |
Describes external reference |
Threat |
Filtering criteria for querying threat intelligence indicators. |
Threat |
Describes threat granular marking model entity |
Threat |
Interface representing a ThreatIntelligenceIndicator. |
Threat |
Optional parameters. |
Threat |
Optional parameters. |
Threat |
Optional parameters. |
Threat |
Optional parameters. |
Threat |
Optional parameters. |
Threat |
Interface representing a ThreatIntelligenceIndicatorMetrics. |
Threat |
Optional parameters. |
Threat |
Threat intelligence indicator entity. |
Threat |
Describes threat intelligence entity properties |
Threat |
Optional parameters. |
Threat |
Optional parameters. |
Threat |
Optional parameters. |
Threat |
Interface representing a ThreatIntelligenceIndicators. |
Threat |
Optional parameters. |
Threat |
Optional parameters. |
Threat |
Threat intelligence information object. |
Threat |
List of all the threat intelligence information objects. |
Threat |
Describes threat kill chain phase entity |
Threat |
Describes threat intelligence metric |
Threat |
Describes threat intelligence metric entity |
Threat |
Threat intelligence metrics. |
Threat |
List of all the threat intelligence metric fields (type/threat type/source). |
Threat |
Describes parsed pattern entity |
Threat |
Describes threat kill chain phase entity |
Threat |
List of available columns for sorting |
Ti |
Threat Intelligence TAXII data connector check requirements |
Ti |
Threat Intelligence TAXII data connector required properties. |
Ti |
Data connector to pull Threat intelligence data from TAXII 2.0/2.1 server |
Ti |
The available data types for Threat Intelligence TAXII data connector. |
Ti |
Data type for TAXII connector. |
Ti |
Threat Intelligence TAXII data connector properties. |
Timeline |
timeline aggregation information per kind |
Timeline |
Timeline Query Errors. |
Timeline |
Expansion result metadata. |
Ueba |
Settings with single toggle. |
Url |
Represents a url entity. |
Url |
Url entity property bag. |
User |
User information that made some action |
Validation |
Describes an error encountered in the file during validation. |
Watchlist |
Represents a Watchlist in Azure Security Insights. |
Watchlist |
Represents a Watchlist item in Azure Security Insights. |
Watchlist |
List all the watchlist items. |
Watchlist |
Interface representing a WatchlistItems. |
Watchlist |
Optional parameters. |
Watchlist |
Optional parameters. |
Watchlist |
Optional parameters. |
Watchlist |
Optional parameters. |
Watchlist |
Optional parameters. |
Watchlist |
List all the watchlists. |
Watchlists |
Interface representing a Watchlists. |
Watchlists |
Defines headers for Watchlists_createOrUpdate operation. |
Watchlists |
Optional parameters. |
Watchlists |
Defines headers for Watchlists_delete operation. |
Watchlists |
Optional parameters. |
Watchlists |
Optional parameters. |
Watchlists |
Optional parameters. |
Watchlists |
Optional parameters. |
Webhook |
Detail about the webhook object. |
Action |
Defines values for ActionType. Known values supported by the serviceModifyProperties: Modify an object's properties |
Actions |
Contains response data for the createOrUpdate operation. |
Actions |
Contains response data for the get operation. |
Actions |
Contains response data for the listByAlertRuleNext operation. |
Actions |
Contains response data for the listByAlertRule operation. |
Alert |
Defines values for AlertDetail. Known values supported by the serviceDisplayName: Alert display name |
Alert |
Defines values for AlertRuleKind. Known values supported by the serviceScheduled |
Alert |
|
Alert |
Contains response data for the get operation. |
Alert |
Contains response data for the listNext operation. |
Alert |
Contains response data for the list operation. |
Alert |
|
Alert |
Contains response data for the createOrUpdate operation. |
Alert |
Contains response data for the get operation. |
Alert |
Contains response data for the listNext operation. |
Alert |
Contains response data for the list operation. |
Alert |
Defines values for AlertSeverity. Known values supported by the serviceHigh: High severity |
Alert |
Defines values for AlertStatus. Known values supported by the serviceUnknown: Unknown value |
Antispam |
Defines values for AntispamMailDirection. Known values supported by the serviceUnknown: Unknown |
Attack |
Defines values for AttackTactic. Known values supported by the serviceReconnaissance |
Automation |
|
Automation |
Defines values for AutomationRuleBooleanConditionSupportedOperator. Known values supported by the serviceAnd: Evaluates as true if all the item conditions are evaluated as true |
Automation |
|
Automation |
Defines values for AutomationRulePropertyArrayChangedConditionSupportedArrayType. Known values supported by the serviceAlerts: Evaluate the condition on the alerts |
Automation |
Defines values for AutomationRulePropertyArrayChangedConditionSupportedChangeType. Known values supported by the serviceAdded: Evaluate the condition on items added to the array |
Automation |
Defines values for AutomationRulePropertyArrayConditionSupportedArrayConditionType. Known values supported by the serviceAnyItem: Evaluate the condition as true if any item fulfills it |
Automation |
Defines values for AutomationRulePropertyArrayConditionSupportedArrayType. Known values supported by the serviceCustomDetails: Evaluate the condition on the custom detail keys |
Automation |
Defines values for AutomationRulePropertyChangedConditionSupportedChangedType. Known values supported by the serviceChangedFrom: Evaluate the condition on the previous value of the property |
Automation |
Defines values for AutomationRulePropertyChangedConditionSupportedPropertyType. Known values supported by the serviceIncidentSeverity: Evaluate the condition on the incident severity |
Automation |
Defines values for AutomationRulePropertyConditionSupportedOperator. Known values supported by the serviceEquals: Evaluates if the property equals at least one of the condition values |
Automation |
Defines values for AutomationRulePropertyConditionSupportedProperty. Known values supported by the serviceIncidentTitle: The title of the incident |
Automation |
Contains response data for the createOrUpdate operation. |
Automation |
Contains response data for the delete operation. |
Automation |
Contains response data for the get operation. |
Automation |
Contains response data for the listNext operation. |
Automation |
Contains response data for the list operation. |
Bookmark |
Contains response data for the expand operation. |
Bookmark |
Contains response data for the createOrUpdate operation. |
Bookmark |
Contains response data for the get operation. |
Bookmark |
Contains response data for the listNext operation. |
Bookmark |
Contains response data for the list operation. |
Bookmarks |
Contains response data for the createOrUpdate operation. |
Bookmarks |
Contains response data for the get operation. |
Bookmarks |
Contains response data for the listNext operation. |
Bookmarks |
Contains response data for the list operation. |
Condition |
Defines values for ConditionType. Known values supported by the serviceProperty: Evaluate an object property value |
Confidence |
Defines values for ConfidenceLevel. Known values supported by the serviceUnknown: Unknown confidence, the is the default value |
Confidence |
Defines values for ConfidenceScoreStatus. Known values supported by the serviceNotApplicable: Score will not be calculated for this alert as it is not supported by virtual analyst |
Connect |
Defines values for ConnectAuthKind. Known values supported by the serviceBasic |
Connectivity |
Defines values for ConnectivityType. Known values supported by the serviceIsConnectedQuery |
Content |
Defines values for ContentType. Known values supported by the serviceAnalyticRule |
Created |
Defines values for CreatedByType. Known values supported by the serviceUser |
Custom |
Defines values for CustomEntityQueryKind. Known values supported by the serviceActivity |
Custom |
|
Data |
Defines values for DataConnectorAuthorizationState. Known values supported by the serviceValid |
Data |
Defines values for DataConnectorKind. Known values supported by the serviceAzureActiveDirectory |
Data |
Defines values for DataConnectorLicenseState. Known values supported by the serviceValid |
Data |
|
Data |
Contains response data for the post operation. |
Data |
|
Data |
Contains response data for the createOrUpdate operation. |
Data |
Contains response data for the get operation. |
Data |
Contains response data for the listNext operation. |
Data |
Contains response data for the list operation. |
Data |
Defines values for DataTypeState. Known values supported by the serviceEnabled |
Delete |
Defines values for DeleteStatus. Known values supported by the serviceDeleted: The file was deleted. |
Delivery |
Defines values for DeliveryAction. |
Delivery |
Defines values for DeliveryLocation. |
Deployment |
Defines values for DeploymentFetchStatus. Known values supported by the serviceSuccess |
Deployment |
Defines values for DeploymentResult. Known values supported by the serviceSuccess |
Deployment |
Defines values for DeploymentState. Known values supported by the serviceIn_Progress |
Device |
Defines values for DeviceImportance. Known values supported by the serviceUnknown: Unknown - Default value |
Domain |
Contains response data for the get operation. |
Elevation |
Defines values for ElevationToken. |
Entities |
Contains response data for the expand operation. |
Entities |
Contains response data for the getInsights operation. |
Entities |
Contains response data for the get operation. |
Entities |
Contains response data for the list operation. |
Entities |
Contains response data for the listNext operation. |
Entities |
Contains response data for the list operation. |
Entities |
Contains response data for the queries operation. |
Entities |
Contains response data for the listNext operation. |
Entities |
Contains response data for the list operation. |
Entity |
Defines values for EntityItemQueryKind. Known values supported by the serviceInsight: insight |
Entity |
Defines values for EntityKind. Known values supported by the serviceAccount: Entity represents account in the system. |
Entity |
Defines values for EntityMappingType. Known values supported by the serviceAccount: User account entity type |
Entity |
Defines values for EntityProviders. Known values supported by the serviceActiveDirectory |
Entity |
Contains response data for the createOrUpdate operation. |
Entity |
Contains response data for the get operation. |
Entity |
Contains response data for the listNext operation. |
Entity |
Contains response data for the list operation. |
Entity |
|
Entity |
Defines values for EntityQueryKind. Known values supported by the serviceExpansion |
Entity |
Defines values for EntityQueryTemplateKind. Known values supported by the serviceActivity |
Entity |
|
Entity |
Contains response data for the get operation. |
Entity |
Contains response data for the listNext operation. |
Entity |
Contains response data for the list operation. |
Entity |
|
Entity |
Contains response data for the getRelation operation. |
Entity |
|
Entity |
Defines values for EntityTimelineKind. Known values supported by the serviceActivity: activity |
Entity |
Defines values for EntityType. Known values supported by the serviceAccount: Entity represents account in the system. |
Entity |
|
Enum13 |
Defines values for Enum13. Known values supported by the serviceExpansion |
Event |
Defines values for EventGroupingAggregationKind. Known values supported by the serviceSingleAlert |
File |
Defines values for FileFormat. Known values supported by the serviceCSV: A CSV file. |
File |
Defines values for FileHashAlgorithm. Known values supported by the serviceUnknown: Unknown hash algorithm |
File |
Defines values for FileImportContentType. Known values supported by the serviceBasicIndicator: File containing records with the core fields of an indicator, plus the observables to construct the STIX pattern. |
File |
Defines values for FileImportState. Known values supported by the serviceFatalError: A fatal error has occurred while ingesting the file. |
File |
Contains response data for the create operation. |
File |
Contains response data for the delete operation. |
File |
Contains response data for the get operation. |
File |
Contains response data for the listNext operation. |
File |
Contains response data for the list operation. |
Get |
Defines values for GetInsightsError. Known values supported by the serviceInsight |
IPGeodata |
Contains response data for the get operation. |
Incident |
Defines values for IncidentClassification. Known values supported by the serviceUndetermined: Incident classification was undetermined |
Incident |
Defines values for IncidentClassificationReason. Known values supported by the serviceSuspiciousActivity: Classification reason was suspicious activity |
Incident |
Contains response data for the createOrUpdate operation. |
Incident |
Contains response data for the get operation. |
Incident |
Contains response data for the listNext operation. |
Incident |
Contains response data for the list operation. |
Incident |
Defines values for IncidentLabelType. Known values supported by the serviceUser: Label manually created by a user |
Incident |
Contains response data for the createOrUpdate operation. |
Incident |
Contains response data for the get operation. |
Incident |
Contains response data for the listNext operation. |
Incident |
Contains response data for the list operation. |
Incident |
Defines values for IncidentSeverity. Known values supported by the serviceHigh: High severity |
Incident |
Defines values for IncidentStatus. Known values supported by the serviceNew: An active incident which isn't being handled currently |
Incidents |
Contains response data for the createOrUpdate operation. |
Incidents |
Contains response data for the createTeam operation. |
Incidents |
Contains response data for the get operation. |
Incidents |
Contains response data for the listAlerts operation. |
Incidents |
Contains response data for the listBookmarks operation. |
Incidents |
Contains response data for the listEntities operation. |
Incidents |
Contains response data for the listNext operation. |
Incidents |
Contains response data for the list operation. |
Incidents |
Contains response data for the runPlaybook operation. |
Ingestion |
Defines values for IngestionMode. Known values supported by the serviceIngestOnlyIfAllAreValid: No records should be ingested when invalid records are detected. |
Kill |
Defines values for KillChainIntent. Known values supported by the serviceUnknown: The default value. |
Kind |
Defines values for Kind. Known values supported by the serviceDataConnector |
Matching |
Defines values for MatchingMethod. Known values supported by the serviceAllEntities: Grouping alerts into a single incident if all the entities match |
Metadata |
Contains response data for the create operation. |
Metadata |
Contains response data for the get operation. |
Metadata |
Contains response data for the listNext operation. |
Metadata |
Contains response data for the list operation. |
Metadata |
Contains response data for the update operation. |
Microsoft |
Defines values for MicrosoftSecurityProductName. Known values supported by the serviceMicrosoft Cloud App Security |
OSFamily |
Defines values for OSFamily. |
Office |
Contains response data for the get operation. |
Office |
Contains response data for the listNext operation. |
Office |
Contains response data for the list operation. |
Operations |
Contains response data for the listNext operation. |
Operations |
Contains response data for the list operation. |
Operator |
Defines values for Operator. Known values supported by the serviceAND |
Output |
Defines values for OutputType. Known values supported by the serviceNumber |
Owner |
Defines values for OwnerType. Known values supported by the serviceUnknown: The incident owner type is unknown |
Permission |
Defines values for PermissionProviderScope. Known values supported by the serviceResourceGroup |
Polling |
Defines values for PollingFrequency. Known values supported by the serviceOnceAMinute: Once a minute |
Product |
Contains response data for the get operation. |
Product |
Contains response data for the list operation. |
Product |
Contains response data for the update operation. |
Provider |
Defines values for ProviderName. Known values supported by the serviceMicrosoft.OperationalInsights/solutions |
Registry |
Defines values for RegistryHive. Known values supported by the serviceHKEY_LOCAL_MACHINE: HKEY_LOCAL_MACHINE |
Registry |
Defines values for RegistryValueKind. Known values supported by the serviceNone: None |
Repo |
Defines values for RepoType. Known values supported by the serviceGithub |
Security |
|
Security |
Contains response data for the createOrUpdate operation. |
Security |
Contains response data for the get operation. |
Security |
Defines values for SecurityMLAnalyticsSettingsKind. Known values supported by the serviceAnomaly |
Security |
Contains response data for the listNext operation. |
Security |
Contains response data for the list operation. |
Sentinel |
Contains response data for the create operation. |
Sentinel |
Contains response data for the get operation. |
Sentinel |
Contains response data for the list operation. |
Setting |
Defines values for SettingKind. Known values supported by the serviceAnomalies |
Setting |
Defines values for SettingType. Known values supported by the serviceCopyableLabel |
Settings |
Defines values for SettingsStatus. Known values supported by the serviceProduction: Anomaly settings status in Production mode |
Settings |
|
Source |
Contains response data for the listRepositoriesNext operation. |
Source |
Contains response data for the listRepositories operation. |
Source |
Contains response data for the create operation. |
Source |
Contains response data for the get operation. |
Source |
Contains response data for the listNext operation. |
Source |
Contains response data for the list operation. |
Source |
Defines values for SourceKind. Known values supported by the serviceLocalWorkspace |
Source |
Defines values for SourceType. Known values supported by the serviceLocal file |
Support |
Defines values for SupportTier. Known values supported by the serviceMicrosoft |
Template |
Defines values for TemplateStatus. Known values supported by the serviceInstalled: Alert rule template installed. and can not use more then once |
Threat |
Contains response data for the createIndicator operation. |
Threat |
Contains response data for the create operation. |
Threat |
Contains response data for the get operation. |
Threat |
Contains response data for the list operation. |
Threat |
Contains response data for the queryIndicatorsNext operation. |
Threat |
Contains response data for the queryIndicators operation. |
Threat |
Contains response data for the replaceTags operation. |
Threat |
Contains response data for the listNext operation. |
Threat |
Contains response data for the list operation. |
Threat |
|
Threat |
Defines values for ThreatIntelligenceResourceKindEnum. Known values supported by the serviceindicator: Entity represents threat intelligence indicator in the system. |
Threat |
Defines values for ThreatIntelligenceSortingCriteriaEnum. Known values supported by the serviceunsorted |
Trigger |
Defines values for TriggerOperator. |
Triggers |
Defines values for TriggersOn. Known values supported by the serviceIncidents: Trigger on Incidents |
Triggers |
Defines values for TriggersWhen. Known values supported by the serviceCreated: Trigger on created objects |
Ueba |
Defines values for UebaDataSources. Known values supported by the serviceAuditLogs |
Version |
Defines values for Version. Known values supported by the serviceV1 |
Watchlist |
Contains response data for the createOrUpdate operation. |
Watchlist |
Contains response data for the get operation. |
Watchlist |
Contains response data for the listNext operation. |
Watchlist |
Contains response data for the list operation. |
Watchlists |
Contains response data for the createOrUpdate operation. |
Watchlists |
Contains response data for the delete operation. |
Watchlists |
Contains response data for the get operation. |
Watchlists |
Contains response data for the listNext operation. |
Watchlists |
Contains response data for the list operation. |
get |
Given the last |
Given the last .value
produced by the byPage
iterator,
returns a continuation token that can be used to begin paging from
that point later.
function getContinuationToken(page: unknown): string | undefined
Parameters
- page
-
unknown
An object from accessing value
on the IteratorResult from a byPage
iterator.
Returns
string | undefined
The continuation token that can be passed into byPage() during future calls.
Azure SDK for JavaScript feedback
Azure SDK for JavaScript is an open source project. Select a link to provide feedback: