detective_start_investigation

Detective investigations lets you investigate IAM users and IAM roles using indicators of compromise. An indicator of compromise (IOC) is an artifact observed in or on a network, system, or environment that can (with a high level of confidence) identify malicious activity or a security incident. <code>start_investigation</code> initiates an investigation on an entity in a behavior graph.
See <a href="https://www.paws-r-sdk.com/docs/detective_start_investigation/">https://www.paws-r-sdk.com/docs/detective_start_investigation/</a> for full documentation.

internal

Interface to 'Amazon Web Services' security, identity, and
compliance services, including the 'Identity & Access Management'
('IAM') service for managing access to services and resources, and
more <https://aws.amazon.com/>.

Dyfan Jones

paws.security.identity

'Amazon Web Services' Security, Identity, & Compliance Services

David Kretch

Adam Banker

Amazon.com, Inc. 

detective_start_investigation function

<dl><dt>GraphArn</dt>
<dd>[required] The Amazon Resource Name (ARN) of the behavior graph.</dd>
<dt>EntityArn</dt>
<dd>[required] The unique Amazon Resource Name (ARN) of the IAM user and IAM role.</dd>
<dt>ScopeStartTime</dt>
<dd>[required] The data and time when the investigation began. The value is an UTC
ISO8601 formatted string. For example, <code>2021-08-18T16:35:56.284Z</code>.</dd>
<dt>ScopeEndTime</dt>
<dd>[required] The data and time when the investigation ended. The value is an UTC
ISO8601 formatted string. For example, <code>2021-08-18T16:35:56.284Z</code>.</dd></dl>

Arguments

Detective investigations lets you investigate IAM users and IAM roles using indicators of compromise. An indicator of compromise (IOC) is an artifact observed in or on a network, system, or environment that can (with a high level of confidence) identify malicious activity or a security incident. <code>start_investigation</code> initiates an investigation on an entity in a behavior graph.
See <a href='https://www.paws-r-sdk.com/docs/detective_start_investigation/'>https://www.paws-r-sdk.com/docs/detective_start_investigation/</a> for full documentation.

Detective investigations lets you investigate IAM users and IAM roles
using indicators of compromise — detective_start_investigation

<dl>

<dt>GraphArn</dt>
<dd>[required] The Amazon Resource Name (ARN) of the behavior graph.</dd>


<dt>EntityArn</dt>
<dd>[required] The unique Amazon Resource Name (ARN) of the IAM user and IAM role.</dd>


<dt>ScopeStartTime</dt>
<dd>[required] The data and time when the investigation began. The value is an UTC
ISO8601 formatted string. For example, <code>2021-08-18T16:35:56.284Z</code>.</dd>


<dt>ScopeEndTime</dt>
<dd>[required] The data and time when the investigation ended. The value is an UTC
ISO8601 formatted string. For example, <code>2021-08-18T16:35:56.284Z</code>.</dd>

</dl>

detective_start_investigation: Detective investigations lets you investigate IAM users and IAM roles using indicators of compromise

Description

Usage

Arguments