| Package | Description |
|---|---|
| com.mozilla.secops.awsbehavior |
Pipeline for monitoring AWS Cloudtrail events
|
| com.mozilla.secops.parser |
Log parsing, processing, and enrichment
|
| Modifier and Type | Method and Description |
|---|---|
EventFilterRule |
CloudtrailMatcher.toEventFilterRule()
Converts
CloudtrailMatcher into an EventFilterRule as regex matchers. |
| Modifier and Type | Method and Description |
|---|---|
EventFilterRule |
EventFilterRule.addPayloadFilter(EventFilterPayloadInterface p)
Add payload filter
|
EventFilterRule |
EventFilterRule.except(EventFilterRule r)
Install negation rules for this filter rule
|
EventFilterRule |
EventFilterRule.wantNormalizedType(Normalized.Type n)
Add match criteria for a normalized event type
|
EventFilterRule |
EventFilterRule.wantStackdriverLabel(String key,
String value)
Add match criteria for a Stackdriver label
|
EventFilterRule |
EventFilterRule.wantStackdriverProject(String project)
Add match criteria for Stackdriver project
|
EventFilterRule |
EventFilterRule.wantSubtype(Payload.PayloadType p)
Add match criteria for a payload subtype
|
| Modifier and Type | Method and Description |
|---|---|
ArrayList<EventFilterRule> |
EventFilterRule.getExceptRules()
Get except rules
|
ArrayList<EventFilterRule> |
EventFilter.getRules()
Get configured rules
|
| Modifier and Type | Method and Description |
|---|---|
void |
EventFilter.addRule(EventFilterRule rule)
Add new rule to filter
|
EventFilterRule |
EventFilterRule.except(EventFilterRule r)
Install negation rules for this filter rule
|
| Modifier and Type | Method and Description |
|---|---|
void |
EventFilterRule.setExceptRules(ArrayList<EventFilterRule> erules)
Set except rules
|
void |
EventFilter.setRules(ArrayList<EventFilterRule> rules)
Set filter rules
|
Copyright © 2022. All rights reserved.