azure-native.securityinsights.Hunt
Explore with Pulumi AI
Represents a Hunt in Azure Security Insights. Azure REST API version: 2023-06-01-preview.
Other available API versions: 2023-07-01-preview, 2023-08-01-preview, 2023-09-01-preview, 2023-10-01-preview, 2023-12-01-preview, 2024-01-01-preview, 2024-04-01-preview.
Example Usage
Creates or updates a hunt.
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var hunt = new AzureNative.SecurityInsights.Hunt("hunt", new()
{
AttackTactics = new[]
{
AzureNative.SecurityInsights.AttackTactic.Reconnaissance,
},
AttackTechniques = new[]
{
"T1595",
},
Description = "Log4J Hunt Description",
DisplayName = "Log4J new hunt",
HuntId = "163e7b2a-a2ec-4041-aaba-d878a38f265f",
HypothesisStatus = AzureNative.SecurityInsights.HypothesisStatus.Unknown,
Labels = new[]
{
"Label1",
"Label2",
},
Owner = new AzureNative.SecurityInsights.Inputs.HuntOwnerArgs
{
ObjectId = "873b5263-5d34-4149-b356-ad341b01e123",
},
ResourceGroupName = "myRg",
Status = AzureNative.SecurityInsights.Status.New,
WorkspaceName = "myWorkspace",
});
});
package main
import (
securityinsights "github.com/pulumi/pulumi-azure-native-sdk/securityinsights/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := securityinsights.NewHunt(ctx, "hunt", &securityinsights.HuntArgs{
AttackTactics: pulumi.StringArray{
pulumi.String(securityinsights.AttackTacticReconnaissance),
},
AttackTechniques: pulumi.StringArray{
pulumi.String("T1595"),
},
Description: pulumi.String("Log4J Hunt Description"),
DisplayName: pulumi.String("Log4J new hunt"),
HuntId: pulumi.String("163e7b2a-a2ec-4041-aaba-d878a38f265f"),
HypothesisStatus: pulumi.String(securityinsights.HypothesisStatusUnknown),
Labels: pulumi.StringArray{
pulumi.String("Label1"),
pulumi.String("Label2"),
},
Owner: &securityinsights.HuntOwnerArgs{
ObjectId: pulumi.String("873b5263-5d34-4149-b356-ad341b01e123"),
},
ResourceGroupName: pulumi.String("myRg"),
Status: pulumi.String(securityinsights.StatusNew),
WorkspaceName: pulumi.String("myWorkspace"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.securityinsights.Hunt;
import com.pulumi.azurenative.securityinsights.HuntArgs;
import com.pulumi.azurenative.securityinsights.inputs.HuntOwnerArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var hunt = new Hunt("hunt", HuntArgs.builder()
.attackTactics("Reconnaissance")
.attackTechniques("T1595")
.description("Log4J Hunt Description")
.displayName("Log4J new hunt")
.huntId("163e7b2a-a2ec-4041-aaba-d878a38f265f")
.hypothesisStatus("Unknown")
.labels(
"Label1",
"Label2")
.owner(HuntOwnerArgs.builder()
.objectId("873b5263-5d34-4149-b356-ad341b01e123")
.build())
.resourceGroupName("myRg")
.status("New")
.workspaceName("myWorkspace")
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
hunt = azure_native.securityinsights.Hunt("hunt",
attack_tactics=[azure_native.securityinsights.AttackTactic.RECONNAISSANCE],
attack_techniques=["T1595"],
description="Log4J Hunt Description",
display_name="Log4J new hunt",
hunt_id="163e7b2a-a2ec-4041-aaba-d878a38f265f",
hypothesis_status=azure_native.securityinsights.HypothesisStatus.UNKNOWN,
labels=[
"Label1",
"Label2",
],
owner={
"object_id": "873b5263-5d34-4149-b356-ad341b01e123",
},
resource_group_name="myRg",
status=azure_native.securityinsights.Status.NEW,
workspace_name="myWorkspace")
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const hunt = new azure_native.securityinsights.Hunt("hunt", {
attackTactics: [azure_native.securityinsights.AttackTactic.Reconnaissance],
attackTechniques: ["T1595"],
description: "Log4J Hunt Description",
displayName: "Log4J new hunt",
huntId: "163e7b2a-a2ec-4041-aaba-d878a38f265f",
hypothesisStatus: azure_native.securityinsights.HypothesisStatus.Unknown,
labels: [
"Label1",
"Label2",
],
owner: {
objectId: "873b5263-5d34-4149-b356-ad341b01e123",
},
resourceGroupName: "myRg",
status: azure_native.securityinsights.Status.New,
workspaceName: "myWorkspace",
});
resources:
hunt:
type: azure-native:securityinsights:Hunt
properties:
attackTactics:
- Reconnaissance
attackTechniques:
- T1595
description: Log4J Hunt Description
displayName: Log4J new hunt
huntId: 163e7b2a-a2ec-4041-aaba-d878a38f265f
hypothesisStatus: Unknown
labels:
- Label1
- Label2
owner:
objectId: 873b5263-5d34-4149-b356-ad341b01e123
resourceGroupName: myRg
status: New
workspaceName: myWorkspace
Create Hunt Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Hunt(name: string, args: HuntArgs, opts?: CustomResourceOptions);
@overload
def Hunt(resource_name: str,
args: HuntArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Hunt(resource_name: str,
opts: Optional[ResourceOptions] = None,
description: Optional[str] = None,
display_name: Optional[str] = None,
resource_group_name: Optional[str] = None,
workspace_name: Optional[str] = None,
attack_tactics: Optional[Sequence[Union[str, AttackTactic]]] = None,
attack_techniques: Optional[Sequence[str]] = None,
hunt_id: Optional[str] = None,
hypothesis_status: Optional[Union[str, HypothesisStatus]] = None,
labels: Optional[Sequence[str]] = None,
owner: Optional[HuntOwnerArgs] = None,
status: Optional[Union[str, Status]] = None)
func NewHunt(ctx *Context, name string, args HuntArgs, opts ...ResourceOption) (*Hunt, error)
public Hunt(string name, HuntArgs args, CustomResourceOptions? opts = null)
type: azure-native:securityinsights:Hunt
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args HuntArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args HuntArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args HuntArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args HuntArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args HuntArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var huntResource = new AzureNative.SecurityInsights.Hunt("huntResource", new()
{
Description = "string",
DisplayName = "string",
ResourceGroupName = "string",
WorkspaceName = "string",
AttackTactics = new[]
{
"string",
},
AttackTechniques = new[]
{
"string",
},
HuntId = "string",
HypothesisStatus = "string",
Labels = new[]
{
"string",
},
Owner = new AzureNative.SecurityInsights.Inputs.HuntOwnerArgs
{
AssignedTo = "string",
Email = "string",
ObjectId = "string",
OwnerType = "string",
UserPrincipalName = "string",
},
Status = "string",
});
example, err := securityinsights.NewHunt(ctx, "huntResource", &securityinsights.HuntArgs{
Description: pulumi.String("string"),
DisplayName: pulumi.String("string"),
ResourceGroupName: pulumi.String("string"),
WorkspaceName: pulumi.String("string"),
AttackTactics: pulumi.StringArray{
pulumi.String("string"),
},
AttackTechniques: pulumi.StringArray{
pulumi.String("string"),
},
HuntId: pulumi.String("string"),
HypothesisStatus: pulumi.String("string"),
Labels: pulumi.StringArray{
pulumi.String("string"),
},
Owner: &securityinsights.HuntOwnerArgs{
AssignedTo: pulumi.String("string"),
Email: pulumi.String("string"),
ObjectId: pulumi.String("string"),
OwnerType: pulumi.String("string"),
UserPrincipalName: pulumi.String("string"),
},
Status: pulumi.String("string"),
})
var huntResource = new Hunt("huntResource", HuntArgs.builder()
.description("string")
.displayName("string")
.resourceGroupName("string")
.workspaceName("string")
.attackTactics("string")
.attackTechniques("string")
.huntId("string")
.hypothesisStatus("string")
.labels("string")
.owner(HuntOwnerArgs.builder()
.assignedTo("string")
.email("string")
.objectId("string")
.ownerType("string")
.userPrincipalName("string")
.build())
.status("string")
.build());
hunt_resource = azure_native.securityinsights.Hunt("huntResource",
description="string",
display_name="string",
resource_group_name="string",
workspace_name="string",
attack_tactics=["string"],
attack_techniques=["string"],
hunt_id="string",
hypothesis_status="string",
labels=["string"],
owner={
"assigned_to": "string",
"email": "string",
"object_id": "string",
"owner_type": "string",
"user_principal_name": "string",
},
status="string")
const huntResource = new azure_native.securityinsights.Hunt("huntResource", {
description: "string",
displayName: "string",
resourceGroupName: "string",
workspaceName: "string",
attackTactics: ["string"],
attackTechniques: ["string"],
huntId: "string",
hypothesisStatus: "string",
labels: ["string"],
owner: {
assignedTo: "string",
email: "string",
objectId: "string",
ownerType: "string",
userPrincipalName: "string",
},
status: "string",
});
type: azure-native:securityinsights:Hunt
properties:
attackTactics:
- string
attackTechniques:
- string
description: string
displayName: string
huntId: string
hypothesisStatus: string
labels:
- string
owner:
assignedTo: string
email: string
objectId: string
ownerType: string
userPrincipalName: string
resourceGroupName: string
status: string
workspaceName: string
Hunt Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Hunt resource accepts the following input properties:
- Description string
- The description of the hunt
- Display
Name string - The display name of the hunt
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Workspace
Name string - The name of the workspace.
- Attack
Tactics List<Union<string, Pulumi.Azure Native. Security Insights. Attack Tactic>> - A list of mitre attack tactics the hunt is associated with
- Attack
Techniques List<string> - A list of a mitre attack techniques the hunt is associated with
- Hunt
Id string - The hunt id (GUID)
- Hypothesis
Status string | Pulumi.Azure Native. Security Insights. Hypothesis Status - The hypothesis status of the hunt.
- Labels List<string>
- List of labels relevant to this hunt
- Owner
Pulumi.
Azure Native. Security Insights. Inputs. Hunt Owner - Describes a user that the hunt is assigned to
- Status
string | Pulumi.
Azure Native. Security Insights. Status - The status of the hunt.
- Description string
- The description of the hunt
- Display
Name string - The display name of the hunt
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Workspace
Name string - The name of the workspace.
- Attack
Tactics []string - A list of mitre attack tactics the hunt is associated with
- Attack
Techniques []string - A list of a mitre attack techniques the hunt is associated with
- Hunt
Id string - The hunt id (GUID)
- Hypothesis
Status string | HypothesisStatus - The hypothesis status of the hunt.
- Labels []string
- List of labels relevant to this hunt
- Owner
Hunt
Owner Args - Describes a user that the hunt is assigned to
- Status string | Status
- The status of the hunt.
- description String
- The description of the hunt
- display
Name String - The display name of the hunt
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- workspace
Name String - The name of the workspace.
- attack
Tactics List<Either<String,AttackTactic>> - A list of mitre attack tactics the hunt is associated with
- attack
Techniques List<String> - A list of a mitre attack techniques the hunt is associated with
- hunt
Id String - The hunt id (GUID)
- hypothesis
Status String | HypothesisStatus - The hypothesis status of the hunt.
- labels List<String>
- List of labels relevant to this hunt
- owner
Hunt
Owner - Describes a user that the hunt is assigned to
- status String | Status
- The status of the hunt.
- description string
- The description of the hunt
- display
Name string - The display name of the hunt
- resource
Group stringName - The name of the resource group. The name is case insensitive.
- workspace
Name string - The name of the workspace.
- attack
Tactics (string | AttackTactic)[] - A list of mitre attack tactics the hunt is associated with
- attack
Techniques string[] - A list of a mitre attack techniques the hunt is associated with
- hunt
Id string - The hunt id (GUID)
- hypothesis
Status string | HypothesisStatus - The hypothesis status of the hunt.
- labels string[]
- List of labels relevant to this hunt
- owner
Hunt
Owner - Describes a user that the hunt is assigned to
- status string | Status
- The status of the hunt.
- description str
- The description of the hunt
- display_
name str - The display name of the hunt
- resource_
group_ strname - The name of the resource group. The name is case insensitive.
- workspace_
name str - The name of the workspace.
- attack_
tactics Sequence[Union[str, AttackTactic]] - A list of mitre attack tactics the hunt is associated with
- attack_
techniques Sequence[str] - A list of a mitre attack techniques the hunt is associated with
- hunt_
id str - The hunt id (GUID)
- hypothesis_
status str | HypothesisStatus - The hypothesis status of the hunt.
- labels Sequence[str]
- List of labels relevant to this hunt
- owner
Hunt
Owner Args - Describes a user that the hunt is assigned to
- status str | Status
- The status of the hunt.
- description String
- The description of the hunt
- display
Name String - The display name of the hunt
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- workspace
Name String - The name of the workspace.
- attack
Tactics List<String | "Reconnaissance" | "ResourceDevelopment" | "Initial Access" | "Execution" | "Persistence" | "Privilege Escalation" | "Defense Evasion" | "Credential Access" | "Discovery" | "Lateral Movement" | "Collection" | "Exfiltration" | "Command And Control" | "Impact" | "Pre Attack" | "Impair Process Control" | "Inhibit Response Function"> - A list of mitre attack tactics the hunt is associated with
- attack
Techniques List<String> - A list of a mitre attack techniques the hunt is associated with
- hunt
Id String - The hunt id (GUID)
- hypothesis
Status String | "Unknown" | "Invalidated" | "Validated" - The hypothesis status of the hunt.
- labels List<String>
- List of labels relevant to this hunt
- owner Property Map
- Describes a user that the hunt is assigned to
- status String | "New" | "Active" | "Closed"
- The status of the hunt.
Outputs
All input properties are implicitly available as output properties. Additionally, the Hunt resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Name string
- The name of the resource
- System
Data Pulumi.Azure Native. Security Insights. Outputs. System Data Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Etag string
- Etag of the azure resource
- Id string
- The provider-assigned unique ID for this managed resource.
- Name string
- The name of the resource
- System
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Etag string
- Etag of the azure resource
- id String
- The provider-assigned unique ID for this managed resource.
- name String
- The name of the resource
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag String
- Etag of the azure resource
- id string
- The provider-assigned unique ID for this managed resource.
- name string
- The name of the resource
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag string
- Etag of the azure resource
- id str
- The provider-assigned unique ID for this managed resource.
- name str
- The name of the resource
- system_
data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type str
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag str
- Etag of the azure resource
- id String
- The provider-assigned unique ID for this managed resource.
- name String
- The name of the resource
- system
Data Property Map - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- etag String
- Etag of the azure resource
Supporting Types
AttackTactic, AttackTacticArgs
- Reconnaissance
- Reconnaissance
- Resource
Development - ResourceDevelopment
- Initial
Access - InitialAccess
- Execution
- Execution
- Persistence
- Persistence
- Privilege
Escalation - PrivilegeEscalation
- Defense
Evasion - DefenseEvasion
- Credential
Access - CredentialAccess
- Discovery
- Discovery
- Lateral
Movement - LateralMovement
- Collection
- Collection
- Exfiltration
- Exfiltration
- Command
And Control - CommandAndControl
- Impact
- Impact
- Pre
Attack - PreAttack
- Impair
Process Control - ImpairProcessControl
- Inhibit
Response Function - InhibitResponseFunction
- Attack
Tactic Reconnaissance - Reconnaissance
- Attack
Tactic Resource Development - ResourceDevelopment
- Attack
Tactic Initial Access - InitialAccess
- Attack
Tactic Execution - Execution
- Attack
Tactic Persistence - Persistence
- Attack
Tactic Privilege Escalation - PrivilegeEscalation
- Attack
Tactic Defense Evasion - DefenseEvasion
- Attack
Tactic Credential Access - CredentialAccess
- Attack
Tactic Discovery - Discovery
- Attack
Tactic Lateral Movement - LateralMovement
- Attack
Tactic Collection - Collection
- Attack
Tactic Exfiltration - Exfiltration
- Attack
Tactic Command And Control - CommandAndControl
- Attack
Tactic Impact - Impact
- Attack
Tactic Pre Attack - PreAttack
- Attack
Tactic Impair Process Control - ImpairProcessControl
- Attack
Tactic Inhibit Response Function - InhibitResponseFunction
- Reconnaissance
- Reconnaissance
- Resource
Development - ResourceDevelopment
- Initial
Access - InitialAccess
- Execution
- Execution
- Persistence
- Persistence
- Privilege
Escalation - PrivilegeEscalation
- Defense
Evasion - DefenseEvasion
- Credential
Access - CredentialAccess
- Discovery
- Discovery
- Lateral
Movement - LateralMovement
- Collection
- Collection
- Exfiltration
- Exfiltration
- Command
And Control - CommandAndControl
- Impact
- Impact
- Pre
Attack - PreAttack
- Impair
Process Control - ImpairProcessControl
- Inhibit
Response Function - InhibitResponseFunction
- Reconnaissance
- Reconnaissance
- Resource
Development - ResourceDevelopment
- Initial
Access - InitialAccess
- Execution
- Execution
- Persistence
- Persistence
- Privilege
Escalation - PrivilegeEscalation
- Defense
Evasion - DefenseEvasion
- Credential
Access - CredentialAccess
- Discovery
- Discovery
- Lateral
Movement - LateralMovement
- Collection
- Collection
- Exfiltration
- Exfiltration
- Command
And Control - CommandAndControl
- Impact
- Impact
- Pre
Attack - PreAttack
- Impair
Process Control - ImpairProcessControl
- Inhibit
Response Function - InhibitResponseFunction
- RECONNAISSANCE
- Reconnaissance
- RESOURCE_DEVELOPMENT
- ResourceDevelopment
- INITIAL_ACCESS
- InitialAccess
- EXECUTION
- Execution
- PERSISTENCE
- Persistence
- PRIVILEGE_ESCALATION
- PrivilegeEscalation
- DEFENSE_EVASION
- DefenseEvasion
- CREDENTIAL_ACCESS
- CredentialAccess
- DISCOVERY
- Discovery
- LATERAL_MOVEMENT
- LateralMovement
- COLLECTION
- Collection
- EXFILTRATION
- Exfiltration
- COMMAND_AND_CONTROL
- CommandAndControl
- IMPACT
- Impact
- PRE_ATTACK
- PreAttack
- IMPAIR_PROCESS_CONTROL
- ImpairProcessControl
- INHIBIT_RESPONSE_FUNCTION
- InhibitResponseFunction
- "Reconnaissance"
- Reconnaissance
- "Resource
Development" - ResourceDevelopment
- "Initial
Access" - InitialAccess
- "Execution"
- Execution
- "Persistence"
- Persistence
- "Privilege
Escalation" - PrivilegeEscalation
- "Defense
Evasion" - DefenseEvasion
- "Credential
Access" - CredentialAccess
- "Discovery"
- Discovery
- "Lateral
Movement" - LateralMovement
- "Collection"
- Collection
- "Exfiltration"
- Exfiltration
- "Command
And Control" - CommandAndControl
- "Impact"
- Impact
- "Pre
Attack" - PreAttack
- "Impair
Process Control" - ImpairProcessControl
- "Inhibit
Response Function" - InhibitResponseFunction
HuntOwner, HuntOwnerArgs
- Assigned
To string - The name of the user the hunt is assigned to.
- Email string
- The email of the user the hunt is assigned to.
- Object
Id string - The object id of the user the hunt is assigned to.
- Owner
Type string | Pulumi.Azure Native. Security Insights. Owner Type - The type of the owner the hunt is assigned to.
- User
Principal stringName - The user principal name of the user the hunt is assigned to.
- Assigned
To string - The name of the user the hunt is assigned to.
- Email string
- The email of the user the hunt is assigned to.
- Object
Id string - The object id of the user the hunt is assigned to.
- Owner
Type string | OwnerType - The type of the owner the hunt is assigned to.
- User
Principal stringName - The user principal name of the user the hunt is assigned to.
- assigned
To String - The name of the user the hunt is assigned to.
- email String
- The email of the user the hunt is assigned to.
- object
Id String - The object id of the user the hunt is assigned to.
- owner
Type String | OwnerType - The type of the owner the hunt is assigned to.
- user
Principal StringName - The user principal name of the user the hunt is assigned to.
- assigned
To string - The name of the user the hunt is assigned to.
- email string
- The email of the user the hunt is assigned to.
- object
Id string - The object id of the user the hunt is assigned to.
- owner
Type string | OwnerType - The type of the owner the hunt is assigned to.
- user
Principal stringName - The user principal name of the user the hunt is assigned to.
- assigned_
to str - The name of the user the hunt is assigned to.
- email str
- The email of the user the hunt is assigned to.
- object_
id str - The object id of the user the hunt is assigned to.
- owner_
type str | OwnerType - The type of the owner the hunt is assigned to.
- user_
principal_ strname - The user principal name of the user the hunt is assigned to.
- assigned
To String - The name of the user the hunt is assigned to.
- email String
- The email of the user the hunt is assigned to.
- object
Id String - The object id of the user the hunt is assigned to.
- owner
Type String | "Unknown" | "User" | "Group" - The type of the owner the hunt is assigned to.
- user
Principal StringName - The user principal name of the user the hunt is assigned to.
HuntOwnerResponse, HuntOwnerResponseArgs
- Assigned
To string - The name of the user the hunt is assigned to.
- Email string
- The email of the user the hunt is assigned to.
- Object
Id string - The object id of the user the hunt is assigned to.
- Owner
Type string - The type of the owner the hunt is assigned to.
- User
Principal stringName - The user principal name of the user the hunt is assigned to.
- Assigned
To string - The name of the user the hunt is assigned to.
- Email string
- The email of the user the hunt is assigned to.
- Object
Id string - The object id of the user the hunt is assigned to.
- Owner
Type string - The type of the owner the hunt is assigned to.
- User
Principal stringName - The user principal name of the user the hunt is assigned to.
- assigned
To String - The name of the user the hunt is assigned to.
- email String
- The email of the user the hunt is assigned to.
- object
Id String - The object id of the user the hunt is assigned to.
- owner
Type String - The type of the owner the hunt is assigned to.
- user
Principal StringName - The user principal name of the user the hunt is assigned to.
- assigned
To string - The name of the user the hunt is assigned to.
- email string
- The email of the user the hunt is assigned to.
- object
Id string - The object id of the user the hunt is assigned to.
- owner
Type string - The type of the owner the hunt is assigned to.
- user
Principal stringName - The user principal name of the user the hunt is assigned to.
- assigned_
to str - The name of the user the hunt is assigned to.
- email str
- The email of the user the hunt is assigned to.
- object_
id str - The object id of the user the hunt is assigned to.
- owner_
type str - The type of the owner the hunt is assigned to.
- user_
principal_ strname - The user principal name of the user the hunt is assigned to.
- assigned
To String - The name of the user the hunt is assigned to.
- email String
- The email of the user the hunt is assigned to.
- object
Id String - The object id of the user the hunt is assigned to.
- owner
Type String - The type of the owner the hunt is assigned to.
- user
Principal StringName - The user principal name of the user the hunt is assigned to.
HypothesisStatus, HypothesisStatusArgs
- Unknown
- Unknown
- Invalidated
- Invalidated
- Validated
- Validated
- Hypothesis
Status Unknown - Unknown
- Hypothesis
Status Invalidated - Invalidated
- Hypothesis
Status Validated - Validated
- Unknown
- Unknown
- Invalidated
- Invalidated
- Validated
- Validated
- Unknown
- Unknown
- Invalidated
- Invalidated
- Validated
- Validated
- UNKNOWN
- Unknown
- INVALIDATED
- Invalidated
- VALIDATED
- Validated
- "Unknown"
- Unknown
- "Invalidated"
- Invalidated
- "Validated"
- Validated
OwnerType, OwnerTypeArgs
- Unknown
- UnknownThe incident owner type is unknown
- User
- UserThe incident owner type is an AAD user
- Group
- GroupThe incident owner type is an AAD group
- Owner
Type Unknown - UnknownThe incident owner type is unknown
- Owner
Type User - UserThe incident owner type is an AAD user
- Owner
Type Group - GroupThe incident owner type is an AAD group
- Unknown
- UnknownThe incident owner type is unknown
- User
- UserThe incident owner type is an AAD user
- Group
- GroupThe incident owner type is an AAD group
- Unknown
- UnknownThe incident owner type is unknown
- User
- UserThe incident owner type is an AAD user
- Group
- GroupThe incident owner type is an AAD group
- UNKNOWN
- UnknownThe incident owner type is unknown
- USER
- UserThe incident owner type is an AAD user
- GROUP
- GroupThe incident owner type is an AAD group
- "Unknown"
- UnknownThe incident owner type is unknown
- "User"
- UserThe incident owner type is an AAD user
- "Group"
- GroupThe incident owner type is an AAD group
Status, StatusArgs
- New
- New
- Active
- Active
- Closed
- Closed
- Status
New - New
- Status
Active - Active
- Status
Closed - Closed
- New
- New
- Active
- Active
- Closed
- Closed
- New
- New
- Active
- Active
- Closed
- Closed
- NEW
- New
- ACTIVE
- Active
- CLOSED
- Closed
- "New"
- New
- "Active"
- Active
- "Closed"
- Closed
SystemDataResponse, SystemDataResponseArgs
- Created
At string - The timestamp of resource creation (UTC).
- Created
By string - The identity that created the resource.
- Created
By stringType - The type of identity that created the resource.
- Last
Modified stringAt - The timestamp of resource last modification (UTC)
- Last
Modified stringBy - The identity that last modified the resource.
- Last
Modified stringBy Type - The type of identity that last modified the resource.
- Created
At string - The timestamp of resource creation (UTC).
- Created
By string - The identity that created the resource.
- Created
By stringType - The type of identity that created the resource.
- Last
Modified stringAt - The timestamp of resource last modification (UTC)
- Last
Modified stringBy - The identity that last modified the resource.
- Last
Modified stringBy Type - The type of identity that last modified the resource.
- created
At String - The timestamp of resource creation (UTC).
- created
By String - The identity that created the resource.
- created
By StringType - The type of identity that created the resource.
- last
Modified StringAt - The timestamp of resource last modification (UTC)
- last
Modified StringBy - The identity that last modified the resource.
- last
Modified StringBy Type - The type of identity that last modified the resource.
- created
At string - The timestamp of resource creation (UTC).
- created
By string - The identity that created the resource.
- created
By stringType - The type of identity that created the resource.
- last
Modified stringAt - The timestamp of resource last modification (UTC)
- last
Modified stringBy - The identity that last modified the resource.
- last
Modified stringBy Type - The type of identity that last modified the resource.
- created_
at str - The timestamp of resource creation (UTC).
- created_
by str - The identity that created the resource.
- created_
by_ strtype - The type of identity that created the resource.
- last_
modified_ strat - The timestamp of resource last modification (UTC)
- last_
modified_ strby - The identity that last modified the resource.
- last_
modified_ strby_ type - The type of identity that last modified the resource.
- created
At String - The timestamp of resource creation (UTC).
- created
By String - The identity that created the resource.
- created
By StringType - The type of identity that created the resource.
- last
Modified StringAt - The timestamp of resource last modification (UTC)
- last
Modified StringBy - The identity that last modified the resource.
- last
Modified StringBy Type - The type of identity that last modified the resource.
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:securityinsights:Hunt 163e7b2a-a2ec-4041-aaba-d878a38f265f /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0