Paws::GuardDuty - Perl Interface to AWS Amazon GuardDuty
use Paws; my $obj = Paws->service('GuardDuty'); my $res = $obj->Method( Arg1 => $val1, Arg2 => [ 'V1', 'V2' ], # if Arg3 is an object, the HashRef will be used as arguments to the constructor # of the arguments type Arg3 => { Att1 => 'Val1' }, # if Arg4 is an array of objects, the HashRefs will be passed as arguments to # the constructor of the arguments type Arg4 => [ { Att1 => 'Val1' }, { Att1 => 'Val2' } ], );
Amazon GuardDuty is a continuous security monitoring service that analyzes and processes the following data sources: VPC Flow Logs, AWS CloudTrail event logs, and DNS logs. It uses threat intelligence feeds, such as lists of malicious IPs and domains, and machine learning to identify unexpected and potentially unauthorized and malicious activity within your AWS environment. This can include issues like escalations of privileges, uses of exposed credentials, or communication with malicious IPs, URLs, or domains. For example, GuardDuty can detect compromised EC2 instances serving malware or mining bitcoin. It also monitors AWS account access behavior for signs of compromise, such as unauthorized infrastructure deployments, like instances deployed in a region that has never been used, or unusual API calls, like a password policy change to reduce password strength. GuardDuty informs you of the status of your AWS environment by producing security findings that you can view in the GuardDuty console or through Amazon CloudWatch events. For more information, see Amazon GuardDuty User Guide (https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html).
For the AWS API documentation, see https://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28
Each argument is described in detail in: Paws::GuardDuty::AcceptInvitation
Returns: a Paws::GuardDuty::AcceptInvitationResponse instance
Accepts the invitation to be monitored by a master GuardDuty account.
Each argument is described in detail in: Paws::GuardDuty::ArchiveFindings
Returns: a Paws::GuardDuty::ArchiveFindingsResponse instance
Archives GuardDuty findings specified by the list of finding IDs.
Only the master account can archive findings. Member accounts do not have permission to archive findings from their accounts.
Each argument is described in detail in: Paws::GuardDuty::CreateDetector
Returns: a Paws::GuardDuty::CreateDetectorResponse instance
Creates a single Amazon GuardDuty detector. A detector is a resource that represents the GuardDuty service. To start using GuardDuty, you must create a detector in each region that you enable the service. You can have only one detector per account per region.
Each argument is described in detail in: Paws::GuardDuty::CreateFilter
Returns: a Paws::GuardDuty::CreateFilterResponse instance
Creates a filter using the specified finding criteria.
Each argument is described in detail in: Paws::GuardDuty::CreateIPSet
Returns: a Paws::GuardDuty::CreateIPSetResponse instance
Creates a new IPSet, called Trusted IP list in the consoler user interface. An IPSet is a list IP addresses trusted for secure communication with AWS infrastructure and applications. GuardDuty does not generate findings for IP addresses included in IPSets. Only users from the master account can use this operation.
Each argument is described in detail in: Paws::GuardDuty::CreateMembers
Returns: a Paws::GuardDuty::CreateMembersResponse instance
Creates member accounts of the current AWS account by specifying a list of AWS account IDs. The current AWS account can then invite these members to manage GuardDuty in their accounts.
Each argument is described in detail in: Paws::GuardDuty::CreatePublishingDestination
Returns: a Paws::GuardDuty::CreatePublishingDestinationResponse instance
Creates a publishing destination to send findings to. The resource to send findings to must exist before you use this operation.
Each argument is described in detail in: Paws::GuardDuty::CreateSampleFindings
Returns: a Paws::GuardDuty::CreateSampleFindingsResponse instance
Generates example findings of types specified by the list of finding types. If 'NULL' is specified for findingTypes, the API generates example findings of all supported finding types.
findingTypes
Each argument is described in detail in: Paws::GuardDuty::CreateThreatIntelSet
Returns: a Paws::GuardDuty::CreateThreatIntelSetResponse instance
Create a new ThreatIntelSet. ThreatIntelSets consist of known malicious IP addresses. GuardDuty generates findings based on ThreatIntelSets. Only users of the master account can use this operation.
Each argument is described in detail in: Paws::GuardDuty::DeclineInvitations
Returns: a Paws::GuardDuty::DeclineInvitationsResponse instance
Declines invitations sent to the current member account by AWS account specified by their account IDs.
Each argument is described in detail in: Paws::GuardDuty::DeleteDetector
Returns: a Paws::GuardDuty::DeleteDetectorResponse instance
Deletes a Amazon GuardDuty detector specified by the detector ID.
Each argument is described in detail in: Paws::GuardDuty::DeleteFilter
Returns: a Paws::GuardDuty::DeleteFilterResponse instance
Deletes the filter specified by the filter name.
Each argument is described in detail in: Paws::GuardDuty::DeleteInvitations
Returns: a Paws::GuardDuty::DeleteInvitationsResponse instance
Deletes invitations sent to the current member account by AWS accounts specified by their account IDs.
Each argument is described in detail in: Paws::GuardDuty::DeleteIPSet
Returns: a Paws::GuardDuty::DeleteIPSetResponse instance
Deletes the IPSet specified by the ipSetId. IPSets are called Trusted IP lists in the console user interface.
ipSetId
Each argument is described in detail in: Paws::GuardDuty::DeleteMembers
Returns: a Paws::GuardDuty::DeleteMembersResponse instance
Deletes GuardDuty member accounts (to the current GuardDuty master account) specified by the account IDs.
Each argument is described in detail in: Paws::GuardDuty::DeletePublishingDestination
Returns: a Paws::GuardDuty::DeletePublishingDestinationResponse instance
Deletes the publishing definition with the specified destinationId.
destinationId
Each argument is described in detail in: Paws::GuardDuty::DeleteThreatIntelSet
Returns: a Paws::GuardDuty::DeleteThreatIntelSetResponse instance
Deletes ThreatIntelSet specified by the ThreatIntelSet ID.
Each argument is described in detail in: Paws::GuardDuty::DescribePublishingDestination
Returns: a Paws::GuardDuty::DescribePublishingDestinationResponse instance
Returns information about the publishing destination specified by the provided destinationId.
Each argument is described in detail in: Paws::GuardDuty::DisassociateFromMasterAccount
Returns: a Paws::GuardDuty::DisassociateFromMasterAccountResponse instance
Disassociates the current GuardDuty member account from its master account.
Each argument is described in detail in: Paws::GuardDuty::DisassociateMembers
Returns: a Paws::GuardDuty::DisassociateMembersResponse instance
Disassociates GuardDuty member accounts (to the current GuardDuty master account) specified by the account IDs.
Each argument is described in detail in: Paws::GuardDuty::GetDetector
Returns: a Paws::GuardDuty::GetDetectorResponse instance
Retrieves an Amazon GuardDuty detector specified by the detectorId.
Each argument is described in detail in: Paws::GuardDuty::GetFilter
Returns: a Paws::GuardDuty::GetFilterResponse instance
Returns the details of the filter specified by the filter name.
Each argument is described in detail in: Paws::GuardDuty::GetFindings
Returns: a Paws::GuardDuty::GetFindingsResponse instance
Describes Amazon GuardDuty findings specified by finding IDs.
Each argument is described in detail in: Paws::GuardDuty::GetFindingsStatistics
Returns: a Paws::GuardDuty::GetFindingsStatisticsResponse instance
Lists Amazon GuardDuty findings' statistics for the specified detector ID.
Each argument is described in detail in: Paws::GuardDuty::GetInvitationsCount
Returns: a Paws::GuardDuty::GetInvitationsCountResponse instance
Returns the count of all GuardDuty membership invitations that were sent to the current member account except the currently accepted invitation.
Each argument is described in detail in: Paws::GuardDuty::GetIPSet
Returns: a Paws::GuardDuty::GetIPSetResponse instance
Retrieves the IPSet specified by the ipSetId.
Each argument is described in detail in: Paws::GuardDuty::GetMasterAccount
Returns: a Paws::GuardDuty::GetMasterAccountResponse instance
Provides the details for the GuardDuty master account associated with the current GuardDuty member account.
Each argument is described in detail in: Paws::GuardDuty::GetMembers
Returns: a Paws::GuardDuty::GetMembersResponse instance
Retrieves GuardDuty member accounts (to the current GuardDuty master account) specified by the account IDs.
Each argument is described in detail in: Paws::GuardDuty::GetThreatIntelSet
Returns: a Paws::GuardDuty::GetThreatIntelSetResponse instance
Retrieves the ThreatIntelSet that is specified by the ThreatIntelSet ID.
Each argument is described in detail in: Paws::GuardDuty::InviteMembers
Returns: a Paws::GuardDuty::InviteMembersResponse instance
Invites other AWS accounts (created as members of the current AWS account by CreateMembers) to enable GuardDuty and allow the current AWS account to view and manage these accounts' GuardDuty findings on their behalf as the master account.
Each argument is described in detail in: Paws::GuardDuty::ListDetectors
Returns: a Paws::GuardDuty::ListDetectorsResponse instance
Lists detectorIds of all the existing Amazon GuardDuty detector resources.
Each argument is described in detail in: Paws::GuardDuty::ListFilters
Returns: a Paws::GuardDuty::ListFiltersResponse instance
Returns a paginated list of the current filters.
Each argument is described in detail in: Paws::GuardDuty::ListFindings
Returns: a Paws::GuardDuty::ListFindingsResponse instance
Lists Amazon GuardDuty findings for the specified detector ID.
Each argument is described in detail in: Paws::GuardDuty::ListInvitations
Returns: a Paws::GuardDuty::ListInvitationsResponse instance
Lists all GuardDuty membership invitations that were sent to the current AWS account.
Each argument is described in detail in: Paws::GuardDuty::ListIPSets
Returns: a Paws::GuardDuty::ListIPSetsResponse instance
Lists the IPSets of the GuardDuty service specified by the detector ID. If you use this operation from a member account, the IPSets returned are the IPSets from the associated master account.
Each argument is described in detail in: Paws::GuardDuty::ListMembers
Returns: a Paws::GuardDuty::ListMembersResponse instance
Lists details about all member accounts for the current GuardDuty master account.
Each argument is described in detail in: Paws::GuardDuty::ListPublishingDestinations
Returns: a Paws::GuardDuty::ListPublishingDestinationsResponse instance
Returns a list of publishing destinations associated with the specified dectectorId.
dectectorId
Each argument is described in detail in: Paws::GuardDuty::ListTagsForResource
Returns: a Paws::GuardDuty::ListTagsForResourceResponse instance
Lists tags for a resource. Tagging is currently supported for detectors, finding filters, IP sets, and Threat Intel sets, with a limit of 50 tags per resource. When invoked, this operation returns all assigned tags for a given resource..
Each argument is described in detail in: Paws::GuardDuty::ListThreatIntelSets
Returns: a Paws::GuardDuty::ListThreatIntelSetsResponse instance
Lists the ThreatIntelSets of the GuardDuty service specified by the detector ID. If you use this operation from a member account, the ThreatIntelSets associated with the master account are returned.
Each argument is described in detail in: Paws::GuardDuty::StartMonitoringMembers
Returns: a Paws::GuardDuty::StartMonitoringMembersResponse instance
Turns on GuardDuty monitoring of the specified member accounts. Use this operation to restart monitoring of accounts that you stopped monitoring with the StopMonitoringMembers operation.
StopMonitoringMembers
Each argument is described in detail in: Paws::GuardDuty::StopMonitoringMembers
Returns: a Paws::GuardDuty::StopMonitoringMembersResponse instance
Stops GuardDuty monitoring for the specified member accounnts. Use the StartMonitoringMembers to restart monitoring for those accounts.
StartMonitoringMembers
Each argument is described in detail in: Paws::GuardDuty::TagResource
Returns: a Paws::GuardDuty::TagResourceResponse instance
Adds tags to a resource.
Each argument is described in detail in: Paws::GuardDuty::UnarchiveFindings
Returns: a Paws::GuardDuty::UnarchiveFindingsResponse instance
Unarchives GuardDuty findings specified by the findingIds.
findingIds
Each argument is described in detail in: Paws::GuardDuty::UntagResource
Returns: a Paws::GuardDuty::UntagResourceResponse instance
Removes tags from a resource.
Each argument is described in detail in: Paws::GuardDuty::UpdateDetector
Returns: a Paws::GuardDuty::UpdateDetectorResponse instance
Updates the Amazon GuardDuty detector specified by the detectorId.
Each argument is described in detail in: Paws::GuardDuty::UpdateFilter
Returns: a Paws::GuardDuty::UpdateFilterResponse instance
Updates the filter specified by the filter name.
Each argument is described in detail in: Paws::GuardDuty::UpdateFindingsFeedback
Returns: a Paws::GuardDuty::UpdateFindingsFeedbackResponse instance
Marks the specified GuardDuty findings as useful or not useful.
Each argument is described in detail in: Paws::GuardDuty::UpdateIPSet
Returns: a Paws::GuardDuty::UpdateIPSetResponse instance
Updates the IPSet specified by the IPSet ID.
Each argument is described in detail in: Paws::GuardDuty::UpdatePublishingDestination
Returns: a Paws::GuardDuty::UpdatePublishingDestinationResponse instance
Updates information about the publishing destination specified by the destinationId.
Each argument is described in detail in: Paws::GuardDuty::UpdateThreatIntelSet
Returns: a Paws::GuardDuty::UpdateThreatIntelSetResponse instance
Updates the ThreatIntelSet specified by ThreatIntelSet ID.
Paginator methods are helpers that repetively call methods that return partial results
If passed a sub as first parameter, it will call the sub for each element found in :
- DetectorIds, passing the object as the first parameter, and the string 'DetectorIds' as the second parameter
If not, it will return a a Paws::GuardDuty::ListDetectorsResponse instance with all the params; from all the responses. Please take into account that this mode can potentially consume vasts ammounts of memory.
param
- FilterNames, passing the object as the first parameter, and the string 'FilterNames' as the second parameter
If not, it will return a a Paws::GuardDuty::ListFiltersResponse instance with all the params; from all the responses. Please take into account that this mode can potentially consume vasts ammounts of memory.
- FindingIds, passing the object as the first parameter, and the string 'FindingIds' as the second parameter
If not, it will return a a Paws::GuardDuty::ListFindingsResponse instance with all the params; from all the responses. Please take into account that this mode can potentially consume vasts ammounts of memory.
- Invitations, passing the object as the first parameter, and the string 'Invitations' as the second parameter
If not, it will return a a Paws::GuardDuty::ListInvitationsResponse instance with all the params; from all the responses. Please take into account that this mode can potentially consume vasts ammounts of memory.
- IpSetIds, passing the object as the first parameter, and the string 'IpSetIds' as the second parameter
If not, it will return a a Paws::GuardDuty::ListIPSetsResponse instance with all the params; from all the responses. Please take into account that this mode can potentially consume vasts ammounts of memory.
- Members, passing the object as the first parameter, and the string 'Members' as the second parameter
If not, it will return a a Paws::GuardDuty::ListMembersResponse instance with all the params; from all the responses. Please take into account that this mode can potentially consume vasts ammounts of memory.
- ThreatIntelSetIds, passing the object as the first parameter, and the string 'ThreatIntelSetIds' as the second parameter
If not, it will return a a Paws::GuardDuty::ListThreatIntelSetsResponse instance with all the params; from all the responses. Please take into account that this mode can potentially consume vasts ammounts of memory.
This service class forms part of Paws
The source code is located here: https://github.com/pplu/aws-sdk-perl
Please report bugs to: https://github.com/pplu/aws-sdk-perl/issues
To install Paws::SDK::Config, copy and paste the appropriate command in to your terminal.
cpanm
cpanm Paws::SDK::Config
CPAN shell
perl -MCPAN -e shell install Paws::SDK::Config
For more information on module installation, please visit the detailed CPAN module installation guide.