| Package | Description |
|---|---|
| com.mozilla.secops |
General utility classes and transforms for secops-beam
|
| com.mozilla.secops.alert |
Alert generation and output
|
| com.mozilla.secops.amo |
AMO analysis pipeline
|
| com.mozilla.secops.authprofile |
Pipeline for authentication source profiling and alerting
|
| com.mozilla.secops.awsbehavior |
Pipeline for monitoring AWS Cloudtrail events
|
| com.mozilla.secops.customs |
Customs FxA analysis pipeline
|
| com.mozilla.secops.gatekeeper |
Pipeline for AWS Guardduty and GCP ETD analysis
|
| com.mozilla.secops.httprequest |
HTTP request threshold and error rate monitoring
|
| com.mozilla.secops.httprequest.heuristics | |
| com.mozilla.secops.input |
Pipeline input
|
| com.mozilla.secops.metrics |
Metrics support classes
|
| com.mozilla.secops.parser |
Log parsing, processing, and enrichment
|
| com.mozilla.secops.pioneer |
Pioneer analysis pipeline
|
| com.mozilla.secops.postprocessing |
Pipeline for further processing of and correlation between alerts
|
| com.mozilla.secops.streamwriter |
Simple stream writer
|
| com.mozilla.secops.workshop |
Getting started with Beam introduction pipeline
|
| Class and Description |
|---|
| DetectNat.UserAgentBased
Provides a basic NAT detection transform
|
| DocumentingTransform
A transform that will return a documentation string
|
| InputOptions
Standard input options for pipelines.
|
| IprepdIO.Reader |
| IprepdIO.Write
Write violation messages to iprepd based on submitted
Alert JSON strings |
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| SourceCorrelation.SourceData
SourceData is an intermediate format used to store information about a given source address
observed in the ingestion or alert stream.
|
| SourceCorrelation.SourceData.SourceDataType
Source data types
|
| SqsIO.Write |
| Stats.StatsOutput
Output of statistics transform
|
| Violation
Represents a violation as would be submitted to iprepd
|
| Violation.ViolationType
Valid violation types
|
| Watchlist.WatchlistEntry |
| Class and Description |
|---|
| IOOptions
Interface to allow for passing both input and output options to a class or function.
|
| Class and Description |
|---|
| DocumentingTransform
A transform that will return a documentation string
|
| InputOptions
Standard input options for pipelines.
|
| IOOptions
Interface to allow for passing both input and output options to a class or function.
|
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| Class and Description |
|---|
| DocumentingTransform
A transform that will return a documentation string
|
| InputOptions
Standard input options for pipelines.
|
| IOOptions
Interface to allow for passing both input and output options to a class or function.
|
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| Class and Description |
|---|
| InputOptions
Standard input options for pipelines.
|
| IOOptions
Interface to allow for passing both input and output options to a class or function.
|
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| Class and Description |
|---|
| DocumentingTransform
A transform that will return a documentation string
|
| InputOptions
Standard input options for pipelines.
|
| IOOptions
Interface to allow for passing both input and output options to a class or function.
|
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| Class and Description |
|---|
| DocumentingTransform
A transform that will return a documentation string
|
| InputOptions
Standard input options for pipelines.
|
| IOOptions
Interface to allow for passing both input and output options to a class or function.
|
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| Class and Description |
|---|
| InputOptions
Standard input options for pipelines.
|
| IOOptions
Interface to allow for passing both input and output options to a class or function.
|
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| Class and Description |
|---|
| DocumentingTransform
A transform that will return a documentation string
|
| Class and Description |
|---|
| InputOptions
Standard input options for pipelines.
|
| Class and Description |
|---|
| DocumentingTransform
A transform that will return a documentation string
|
| Class and Description |
|---|
| CidrUtil
CIDR matching utilities
|
| InputOptions
Standard input options for pipelines.
|
| Minfraud
Query Maxmind minFraud API
|
| Class and Description |
|---|
| DocumentingTransform
A transform that will return a documentation string
|
| InputOptions
Standard input options for pipelines.
|
| IOOptions
Interface to allow for passing both input and output options to a class or function.
|
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| Class and Description |
|---|
| DocumentingTransform
A transform that will return a documentation string
|
| InputOptions
Standard input options for pipelines.
|
| IOOptions
Interface to allow for passing both input and output options to a class or function.
|
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| Class and Description |
|---|
| InputOptions
Standard input options for pipelines.
|
| OutputOptions
Standard output options for pipelines, intended for use with the
CompositeOutput
transform. |
| Class and Description |
|---|
| InputOptions
Standard input options for pipelines.
|
Copyright © 2022. All rights reserved.