IOCDetails
Details of IOC for a matched file.
Fields
| Field | Type | Description |
|---|---|---|
| feedType | FeedType! | Source type of the intel feed, for example RUBRIK, CROWDSTRIKE, or TAXII_2_1. Used by clients to gate per-feed actions such as enabling or disabling IOC. |
| intelFeedName | String! | Name of the intel feed for the IOC. |
| iocHashHex | String! | Hash of the IOC. |
| iocRuleAuthor | String! | Author of the IOC. |
| iocStatus | FeedEntryStatus! | Status of the feed entry. |
| malwareDescription | String! | Description of the malware for the IOC. |
| malwareName | String! | Name of the malware for the IOC. |
| matchType | IndicatorOfCompromiseKind! | Type of threat match. |
Used By
Referenced by