Actor
Information about the actors involved in an attack sequence.
Contents
- id
-
ID of the threat actor.
Type: String
Required: Yes
- process
-
Contains information about the process associated with the threat actor. This includes details such as process name, path, execution time, and unique identifiers that help track the actor's activities within the system.
Type: ActorProcess object
Required: No
- session
-
Contains information about the user session where the activity initiated.
Type: Session object
Required: No
- user
-
Contains information about the user credentials used by the threat actor.
Type: User object
Required: No
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following: