Available in VPC
Check the resource information of WebShell Behavior Detector. All activities that you can perform in WebShell Behavior Detector are mapped with the resource type and task history by resource type (action) defined in Resource Manager. Based on the value mapped, the task history actually performed by users is collected in Cloud Activity Tracer, and the admin can use it when monitoring the users' activities or creating audit reports. In addition, the resource type is used as a standard for usage permissions by user in Sub Account.
The following describes the resource and task history by resource type:
- Resource
- Unit of key information managed by each service
- Object that can be created, changed, and deleted by the user
- Unique value by each service of NAVER Cloud Platform
- Task history by resource type (action)
- History of tasks performed by the user through the console and API
- Act of creating, changing, or deleting resources
The following describes WebShell Behavior Detector's resource type and task history information by resource type:
| Service name (product code) | Resource type | Task history by resource type |
|---|---|---|
| WebShell Behavior Detector(WebshellBehaviorDetector) | DetectionTarget | Agent status changed |
| Confirm webshell behavior detection item | ||
| Delete webshell behavior detection item | ||
| Disable agent | ||
| Discard exceptions for items classified as exceptions | ||
| Enable agent | ||
| Except webshell behavior detection item | ||
| Isolate suspected webshell file | ||
| Modify detection target's memo | ||
| Modify excepted webshell behavior detection item's memo | ||
| Modify suspected webshell file's memo | ||
| Modify webshell behavior detection item's memo | ||
| Register detection target | ||
| Restore suspected webshell file | ||
| Uncofirm webshell behavior detection item | ||
| Unregister detection target | ||
| ExceptionRule | Add exception rule | |
| Delete exception rule | ||
| Modify memo | ||
| Restore deleted exception rule | ||
| Notification | Set notification interval | |
| ServerGroup | Create server group | |
| Delete server group | ||
| Modify server group name | ||
| Move the detection target to a server group |
Note
- Resource Manager: it is a service provided by NAVER Cloud Platform for free. For more information on how to use the service, see the Resource Manager user guide.
- Cloud Activity Tracer: it is a service provided by NAVER Cloud Platform for free. For more information on how to use the service, see the Cloud Activity Tracer user guide.
- Sub Account: it is a service provided by NAVER Cloud Platform for free. The permissions are designed based on the resource type defined in Resource Manager. However, because the resource type group and the action by resource type are configured in Sub Account, they differ from the group and action values defined in Resource Manager.