Package com.microsoft.graph.models.security

Class ProcessEvidence

java.lang.Object
com.microsoft.graph.models.security.AlertEvidence
com.microsoft.graph.models.security.ProcessEvidence
All Implemented Interfaces:
com.microsoft.kiota.serialization.AdditionalDataHolder, com.microsoft.kiota.serialization.Parsable, com.microsoft.kiota.store.BackedModel
@Generated("com.microsoft.kiota") public class ProcessEvidence extends AlertEvidence implements com.microsoft.kiota.serialization.Parsable

  • Constructor Details

    • ProcessEvidence

      public ProcessEvidence()
      Instantiates a new ProcessEvidence and sets the default values.

  • Method Details

    • createFromDiscriminatorValue

      @Nonnull public static ProcessEvidence createFromDiscriminatorValue(@Nonnull com.microsoft.kiota.serialization.ParseNode parseNode)
      Creates a new instance of the appropriate class based on discriminator value
      Parameters:
      parseNode - The parse node to use to read the discriminator value and create the object
      Returns:
      a ProcessEvidence

    • getDetectionStatus

      @Nullable public DetectionStatus getDetectionStatus()
      Gets the detectionStatus property value. The status of the detection.The possible values are: detected, blocked, prevented, unknownFutureValue.
      Returns:
      a DetectionStatus

    • getFieldDeserializers

      @Nonnull public Map<String,Consumer<com.microsoft.kiota.serialization.ParseNode>> getFieldDeserializers()
      The deserialization information for the current model
      Specified by:
      getFieldDeserializers in interface com.microsoft.kiota.serialization.Parsable
      Overrides:
      getFieldDeserializers in class AlertEvidence
      Returns:
      a Map<String,Consumer<com.microsoft.kiota.serialization.ParseNode>>

    • getImageFile

      @Nullable public FileDetails getImageFile()
      Gets the imageFile property value. Image file details.
      Returns:
      a FileDetails

    • getMdeDeviceId

      @Nullable public String getMdeDeviceId()
      Gets the mdeDeviceId property value. A unique identifier assigned to a device by Microsoft Defender for Endpoint.
      Returns:
      a String

    • getParentProcessCreationDateTime

      @Nullable public OffsetDateTime getParentProcessCreationDateTime()
      Gets the parentProcessCreationDateTime property value. Date and time when the parent of the process was created. The DateTimeOffset type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z.
      Returns:
      a OffsetDateTime

    • getParentProcessId

      @Nullable public Long getParentProcessId()
      Gets the parentProcessId property value. Process ID (PID) of the parent process that spawned the process.
      Returns:
      a Long

    • getParentProcessImageFile

      @Nullable public FileDetails getParentProcessImageFile()
      Gets the parentProcessImageFile property value. Parent process image file details.
      Returns:
      a FileDetails

    • getProcessCommandLine

      @Nullable public String getProcessCommandLine()
      Gets the processCommandLine property value. Command line used to create the new process.
      Returns:
      a String

    • getProcessCreationDateTime

      @Nullable public OffsetDateTime getProcessCreationDateTime()
      Gets the processCreationDateTime property value. Date and time when the process was created. The DateTimeOffset type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z.
      Returns:
      a OffsetDateTime

    • getProcessId

      @Nullable public Long getProcessId()
      Gets the processId property value. Process ID (PID) of the newly created process.
      Returns:
      a Long

    • getUserAccount

      @Nullable public UserAccount getUserAccount()
      Gets the userAccount property value. User details of the user that ran the process.
      Returns:
      a UserAccount

    • serialize

      public void serialize(@Nonnull com.microsoft.kiota.serialization.SerializationWriter writer)
      Serializes information the current object
      Specified by:
      serialize in interface com.microsoft.kiota.serialization.Parsable
      Overrides:
      serialize in class AlertEvidence
      Parameters:
      writer - Serialization writer to use to serialize this model

    • setDetectionStatus

      public void setDetectionStatus(@Nullable DetectionStatus value)
      Sets the detectionStatus property value. The status of the detection.The possible values are: detected, blocked, prevented, unknownFutureValue.
      Parameters:
      value - Value to set for the detectionStatus property.

    • setImageFile

      public void setImageFile(@Nullable FileDetails value)
      Sets the imageFile property value. Image file details.
      Parameters:
      value - Value to set for the imageFile property.

    • setMdeDeviceId

      public void setMdeDeviceId(@Nullable String value)
      Sets the mdeDeviceId property value. A unique identifier assigned to a device by Microsoft Defender for Endpoint.
      Parameters:
      value - Value to set for the mdeDeviceId property.

    • setParentProcessCreationDateTime

      public void setParentProcessCreationDateTime(@Nullable OffsetDateTime value)
      Sets the parentProcessCreationDateTime property value. Date and time when the parent of the process was created. The DateTimeOffset type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z.
      Parameters:
      value - Value to set for the parentProcessCreationDateTime property.

    • setParentProcessId

      public void setParentProcessId(@Nullable Long value)
      Sets the parentProcessId property value. Process ID (PID) of the parent process that spawned the process.
      Parameters:
      value - Value to set for the parentProcessId property.

    • setParentProcessImageFile

      public void setParentProcessImageFile(@Nullable FileDetails value)
      Sets the parentProcessImageFile property value. Parent process image file details.
      Parameters:
      value - Value to set for the parentProcessImageFile property.

    • setProcessCommandLine

      public void setProcessCommandLine(@Nullable String value)
      Sets the processCommandLine property value. Command line used to create the new process.
      Parameters:
      value - Value to set for the processCommandLine property.

    • setProcessCreationDateTime

      public void setProcessCreationDateTime(@Nullable OffsetDateTime value)
      Sets the processCreationDateTime property value. Date and time when the process was created. The DateTimeOffset type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z.
      Parameters:
      value - Value to set for the processCreationDateTime property.

    • setProcessId

      public void setProcessId(@Nullable Long value)
      Sets the processId property value. Process ID (PID) of the newly created process.
      Parameters:
      value - Value to set for the processId property.

    • setUserAccount

      public void setUserAccount(@Nullable UserAccount value)
      Sets the userAccount property value. User details of the user that ran the process.
      Parameters:
      value - Value to set for the userAccount property.