public sealed class Indicator : IMessage<Indicator>, IEquatable<Indicator>, IDeepCloneable<Indicator>, IBufferMessage, IMessage
Reference documentation and code samples for the Security Command Center v2 API class Indicator.
Represents what's commonly known as an indicator of compromise (IoC) in
computer forensics. This is an artifact observed on a network or in an
operating system that, with high confidence, indicates a computer intrusion.
For more information, see Indicator of
compromise.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThe \u003ccode\u003eIndicator\u003c/code\u003e class in the Security Command Center v2 API represents an indicator of compromise (IoC), which is an artifact that strongly suggests a computer intrusion.\u003c/p\u003e\n"],["\u003cp\u003eThis class implements several interfaces including \u003ccode\u003eIMessage\u003c/code\u003e, \u003ccode\u003eIEquatable\u003c/code\u003e, \u003ccode\u003eIDeepCloneable\u003c/code\u003e, and \u003ccode\u003eIBufferMessage\u003c/code\u003e, inheriting from the base \u003ccode\u003eobject\u003c/code\u003e class.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eIndicator\u003c/code\u003e class includes properties for domains, IP addresses, signatures, and URIs, each designed to hold lists of corresponding data related to potential security compromises.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eIndicator\u003c/code\u003e class offers two constructors: one default and another that duplicates another \u003ccode\u003eIndicator\u003c/code\u003e instance.\u003c/p\u003e\n"]]],[],null,[]]
