Security Center API Overview - Security Center

API standard and pre-built SDKs in multi-language

The OpenAPI specification of this product (Sas/2018-12-03) follows the RPC standard. Alibaba Cloud provides pre-built SDKs for popular programming languages to abstract low-level complexities such as request signing. This enables developers to call APIs using language-specific syntax without dealing with HTTP details directly.

Custom signature

If your specific needs, such as a customized signature, are not supported by the SDK, manually sign requests using the signature mechanism. Note that manual signing requires significant effort (usually about 5 business days). For support, join our DingTalk group (ID: 147535001692).

Before you begin

An Alibaba Cloud account has full administrative privileges. A compromised AccessKey pair exposes all associated resources to unauthorized access, posing a significant security risk. To call APIs securely, create a Resource Access Management (RAM) user with API access only, configure its AccessKey pairs, and implement the principle of least privilege (PoLP) through RAM policies. Use the Alibaba Cloud account only when its permissions are explicitly required for specific scenarios.

Add Proxy

API	Title	Description
ModifyHybridProxyCluster	ModifyHybridProxyCluster	Modify proxy cluster.
ModifyHybridProxyPolicy	ModifyHybridProxyPolicy	Modify proxy policy.
UnBindHybridProxy	UnBindHybridProxy	Removes servers from a proxy cluster.
DeleteHybridProxyCluster	DeleteHybridProxyCluster	Deletes a proxy cluster based on the name of the proxy cluster.
DeleteHybridProxy	DeleteHybridProxy	Removes a proxy node from a specified proxy cluster.

Application Whitelist

API	Title	Description
DescribeWhiteListProcess	DescribeWhiteListProcess	Queries the information about the processes that are detected in an application whitelist policy.

Agentless Detection

API	Title	Description
UpdateMaliciousFileWhitelistConfig	UpdateMaliciousFileWhitelistConfig	Modifies an alert whitelist rule of sensitive files that are detected by using the agentless detection feature.
CreateMaliciousFileWhitelistConfig	Create Sensitive File Alert Whitelist Rule of Agentless Detection	Get alert whitelist configuration details
ListMaliciousFileWhitelistConfigs	ListMaliciousFileWhitelistConfigs	Queries the alert whitelist rules of sensitive files that are detected by using the agentless detection feature.
ListAgentlessRegion	ListAgentlessRegion	Queries the regions that are supported by the agentless detection feature.

Core File Monitoring

API	Title	Description
UpdateFileProtectEventStatus	UpdateFileProtectEventStatus	Modifies the status of core file monitoring events reported by the Security Center agent.
UpdateFileProtectRemark	Modify Core File Monitoring Event Remarks	Modify Alert Remarks
GetFileProtectEvent	GetFileProtectEvent	Retrieves information about core file monitoring events.

Proactive Defense for Containers

API	Title	Description
Non-Mirror Program Defense	Non-Mirror Program Defense
GetContainerDefenseRuleDetail	GetContainerDefenseRuleDetail	Retrieves the details of a rule for non-image program defense.
Risk mirror blocking	Risk mirror blocking
GetOpaClusterImageList	Get Cluster Image Information	Get cluster image information.

Agent client

API	Title	Description
DescribeClientProblemType	Query the client-side issue list	Retrieve the categorization list of client-side issues for diagnosis.

Asset management

API	Title	Description
ListCloudAssetInstances	ListCloudAssetInstances	Queries cloud service assets.
GetCloudAssetSummary	Get Cloud Asset Summary	Get Cloud Asset Summary
GetCloudAssetDetail	GetCloudAssetDetail	Obtains the details of cloud assets.
ModifyPushAllTask	ModifyPushAllTask	Performs security check tasks on servers with a few clicks.
DescribeFieldStatistics	DescribeFieldStatistics	Queries the statistics of servers.
DescribeInstanceStatistics	DescribeInstanceStatistics	Queries the statistics of assets that are protected by Security Center.
DescribeCloudCenterInstances	DescribeCloudCenterInstances	Queries the information about assets that meet specific search conditions. For example, you can search for assets by the instance name or region of the asset.
DescribeSearchCondition	DescribeSearchCondition	Queries the filter conditions that are used to search for assets.
DescribeCriteria	DescribeCriteria	Queries the filter conditions that are used to search for assets in fuzzy match mode.
AddCloudVendorAccountAK	AddCloudVendorAccountAK	Adds the configuration information of multi-cloud assets.
DeleteCloudVendorAccountAK	DeleteCloudVendorAccountAK	Delete multi-cloud asset synchronization configuration.
DescribeCloudVendorAccountAKList	DescribeCloudVendorAccountAKList	Queries the multi-cloud assets added to Security Center.
ModifyCloudVendorAccountAK	ModifyCloudVendorAccountAK	Modifies the configuration of the AccessKey pair for a third-party account.
AddCloudVendorTrialConfig	AddCloudVendorTrialConfig	Adds configurations of connecting the audit logs of a third-party cloud asset.
GetSupportedModules	GetSupportedModules	Get the list of modules supported by authorization.

Asset fingerprints

API	Title	Description
DescribePropertyScaProcessDetail	DescribePropertyScaProcessDetail	Queries the Java processes that are collected by the asset fingerprints feature of Security Center in your assets.
GetAssetsPropertyItem	GetAssetsPropertyItem	Queries the aggregation information about the asset fingerprints of the startup item, kernel module, or website type.
GetAssetsPropertyDetail	Query Asset Fingerprint Details List	Query detailed information of asset fingerprints
DescribePropertyCronDetail	Query Asset Fingerprint Investigation Task List Details	Query Asset Fingerprint Scheduled Task Details
DescribePropertyCount	DescribePropertyCount	Queries the statistics of asset fingerprints. The assets include processes, ports, software, accounts, middleware, websites, web services, scheduled tasks, startup items, and databases.
DescribePropertyPortDetail	Query Asset Fingerprint Information of Port Assets	Query Details of Asset Fingerprint Port Collection
DescribePropertyProcDetail	Query Asset Fingerprint of Process Assets	Query Details of Asset Fingerprint Collection Process
DescribePropertySoftwareDetail	Retrieve detailed information of a software in the software list	Query details of asset fingerprint software collection
DescribePropertyUserDetail	Query the fingerprint information of server account assets	Query asset fingerprint user details
DescribeModuleConfig	DescribeModuleConfig	Queries the configurations of the asset fingerprint module.
DescribePropertyScaDetail	Query Asset Fingerprint Middleware List Details	Query Asset Fingerprint Collection Middleware Details

Security score

API	Title	Description
GetSecurityScoreRule	GetSecurityScoreRule	Retrieves the details of the deduction modules of the security score feature, including custom settings.
ChangeSecurityScoreRule	ChangeSecurityScoreRule	Modifies the details of the deduction modules of the security score feature, including custom settings.
DescribeSecureSuggestion	Query Security Risk Handling Suggestions Details	Query Security Risk Handling Suggestions Details

Asset exposure analysis

API	Title	Description
DescribeExposedInstanceList	DescribeExposedInstanceList	Queries the information about the assets that are exposed on the Internet.
DescribeExposedStatisticsDetail	DescribeExposedStatisticsDetail	Queries the gateway assets, ports, system components, or public IP addresses that are exposed on the Internet.

Container management

API	Title	Description
ListUuidsByAppId	ListUuidsByAppId	Queries the UUIDs of Serverless App Engine (SAE) instances based on an application ID.
ListMachineApps	ListMachineApps	Queries Serverless App Engine (SAE) applications.
DescribeImageRepoCriteria	DescribeImageRepoCriteria	Obtains the filter conditions that are supported by the image repository.

Container visualization

API	Title	Description
FindContainerNetworkConnect	FindContainerNetworkConnect	Container Network Connection

Image security scans

API	Title	Description
UpdateWhiteList	UpdateWhiteList	Updates the IP address whitelist of an image repository.
GetRegistryScanDayNum	GetRegistryScanDayNum	Queries the time range of image scans.
GetDockerhubImageRiskStatistic	GetDockerhubImageRiskStatistic	Queries the risk statistics of Docker Hub images.
ListImageRegistryExtra	ListImageRegistryExtra	Queries the additional configuration information about an image repository.
DescribeImageSensitiveFileList	DescribeImageSensitiveFileList	Queries information about sensitive files.
DescribeImageVulList	DescribeImageVulList	Retrieves the details of vulnerabilities that are detected by using container image scan and the affected images.
DescribeImageGroupedVulList	DescribeImageGroupedVulList	Queries image vulnerabilities.

Configuration Assessment

API	Title	Description
CreateCheckPolicy	Create Custom Check Policy Category	Create Policy
CreateCheckItem	Create Custom Check Item	User creates a custom check item
DeleteCheckItem	Delete Custom Check Item	Delete custom check item for Situation Awareness
ListCheckItems	Query Custom Check Items	List custom check items for situational awareness
UpdateCheckPolicy	Modify Custom Check Item Policy Classification Settings	Update Custom Policy
VerifyCheckInstanceResult	VerifyCheckInstanceResult	Verifies the instances on which risks are detected based on a check item.
VerifyCheckResult	VerifyCheckResult	Verifies risk items that are detected based on check items.
RemoveCheckResultWhiteList	RemoveCheckResultWhiteList	Removes the check items of the configuration assessment feature from the whitelist.
AddCheckResultWhiteList	AddCheckResultWhiteList	Adds the check items of the configuration assessment feature to the whitelist.
GetCheckSummary	GetCheckSummary	Queries the summary information about the configuration checks on cloud services.
ListInstanceCatalog	ListInstanceCatalog	Queries the asset types and asset subtypes for configuration assessment.
SubmitCheck	SubmitCheck	Submits a configuration assessment task.
ChangeCheckConfig	ChangeCheckConfig	Modifies the configuration items of the configuration assessment feature.
GetCheckCountStatistic	GetCheckCountStatistic	Queries statistics on the number of risk items in cloud security posture management (CSPM) for cloud services.
ListCheckInstanceResult	ListCheckInstanceResult	Queries the instances that failed a specified check item of configuration assessment.
ListCheckResult	ListCheckResult	Retrieves the details of the risk items that are detected in the configuration checks on cloud services.
ListCheckStandard	ListCheckStandard	Queries the standards of configuration checks.
ListCheckItem	ListCheckItem	Queries the check items that can be customized.
DescribeRiskCheckItemResult	DescribeRiskCheckItemResult	Queries the assets that are affected by the risk item detected in configuration assessment based on a specified check item.
ListCheckRule	Query Cloud Security Posture Management Check Rules	Display cloud product configuration check rules
ListOperationTask	Query Cloud Security Posture Management Operation Tasks	Display the list of cloud product configuration check, repair, and rollback tasks
ListCheckPolicies	Query Custom Check Item Policy Classification	List User Policies
UpdateCheckItem	Update Custom Check Item	User creates a custom check item
DeleteCheckPolicy	DeleteCheckPolicy	Delete custom scope directories in Cloud Security Posture Management (CSPM) custom checks. You can remove assigned standards, requirements, or sections.

Protection against ransomware

API	Title	Description
DescribeSnapshots	DescribeSnapshots	Queries the backup snapshots that are created for anti-ransomware.
DescribeSupportRegion	DescribeSupportRegion	Queries the regions in which the anti-ransomware feature is supported.

Tamper protection

API	Title	Description
DescribeWebLockExclusiveFileType	DescribeWebLockExclusiveFileType	Queries the types of files that are excluded from web tamper proofing.

Virus detection

API	Title	Description
CreateVirusScanOnceTask	CreateVirusScanOnceTask	Creates a one-time virus scan task that is immediately executed.
GetVirusScanConfig	GetVirusScanConfig	Queries the configurations of a periodic virus scan task.
DescribeScanTaskProgress	DescribeScanTaskProgress	Queries the progress of a virus scan task.

Alerts

API	Title	Description
DescribeNsasSuspEventType	DescribeNsasSuspEventType	Queries the information about an alert type.
DescribeSuspEvents	DescribeSuspEvents	Queries a list of alert events that are generated without aggregation.
DescribeSuspEventDetail	DescribeSuspEventDetail	Queries the details of an exception. An alert event consists of an alert and exceptions. Each alert event is associated with multiple exceptions.
DescribeAttackAnalysisData	DescribeAttackAnalysisData	Queries the statistics of attack analysis.

Brute-force attacks protection

API	Title	Description
DescribeAntiBruteForceRules	Query Created Anti-Brute Force Rules	Query the list of anti-brute force rules

Vulnerabilities

API	Title	Description
DescribeVulNumStatistics	DescribeVulNumStatistics	Queries the statistics of vulnerabilities.
ListVulAutoRepairConfig	ListVulAutoRepairConfig	Queries the existing configurations of vulnerabilities that can be automatically fixed.
ModifyEmgVulSubmit	ModifyEmgVulSubmit	Scans for urgent vulnerabilities.
ModifyCreateVulWhitelist	ModifyCreateVulWhitelist	Adds vulnerabilities to the whitelist. After you add the vulnerabilities to the whitelist, Security Center no longer generates alerts for the vulnerabilities.
DescribeVulList	DescribeVulList	Queries vulnerabilities by type.
DescribeEmgVulItem	DescribeEmgVulItem	Retrieves the details of urgent vulnerabilities.
DescribeGroupedVul	DescribeGroupedVul	Queries vulnerabilities by group.
DescribeVulDetails	DescribeVulDetails	Queries the details about a vulnerability.
DescribeVulWhitelist	DescribeVulWhitelist	Queries the whitelist of vulnerabilities by page.
ExportVul	ExportVul	Exports vulnerabilities.
GetVulStatistics	GetVulStatistics	Queries the statistics on vulnerabilities in asset groups.

Baselines

API	Title	Description
ListBaselineCheckWhiteRecord	ListBaselineCheckWhiteRecord	Queries the whitelist rules for a baseline check item.
ListCheckItemWarningSummary	ListCheckItemWarningSummary	Queries the risk statistics of check items by page.
ListCheckItemWarningMachine	Get Warning Machines for a Specific Baseline Check Item	Query the list of warning machines for a specific baseline check item.
IgnoreCheckItems	IgnoreCheckItems	Adds risk items to the whitelist or removes risk items from the whitelist by specifying servers and risk items.
DescribeCheckWarningDetail	DescribeCheckWarningDetail	Queries the details about a specified check item.
DescribeWarningMachines	DescribeWarningMachines	Queries information about servers on which a baseline check is performed. The information includes the IDs of the servers, the statistics of a risk item, and the status of the risk item.
ExportWarning	ExportWarning	Exports baseline check results.
DescribeStrategy	DescribeStrategy	Queries the details about baseline check policies.
UpdateBaselineCheckWhiteRecord	UpdateBaselineCheckWhiteRecord	Updates the whitelist rule for a baseline check item.
ExecStrategy	ExecStrategy	Performs a baseline check on servers to which a specified baseline check policy is applied.

Honey

API	Title	Description
GetHoneypotAttackStatistics	GetHoneypotAttackStatistics	Get honeypot attack statistics

Log analysis

API	Title	Description
DescribeLogMeta	DescribeLogMeta	Queries the configurations of the log analysis feature provided by Security Center.
ModifyClearLogstoreStorage	ModifyClearLogstoreStorage	Deletes all logs that occupy your log storage.

Notifications

API	Title	Description
ModifyNoticeConfig	ModifyNoticeConfig	Modifies notification settings.
DescribeNoticeConfig	DescribeNoticeConfig	Queries notification settings.
DescribeDataSource	DescribeDataSource	Queries data sources for DingTalk notifications. You can configure the types of alerts for which you want to use a DingTalk chatbot to send notifications based on the data sources.

Export check results

API	Title	Description
DescribeExportInfo	DescribeExportInfo	Queries the progress of a task that exports your assets to an Excel file.
ExportRecord	ExportRecord	Exports the check results on the Host, Cloud Platform Configuration Assessment, Image Security, Attack Awareness, and AK leak detection pages to Excel files.

File detect

API	Title	Description
GetFileDetectApiInvokeInfo	GetFileDetectApiInvokeInfo	Obtains the usage information of the malicious file detection SDK.

Malicious file detection OSS

API	Title	Description
ListOssScanConfig	ListOssScanConfig	Queries the configuration of an Object Storage Service (OSS) file detection policy.
ListObjectScanEvent	ListObjectScanEvent	Queries alerts that are generated for malicious files.
GetOssBucketScanStatistic	GetOssBucketScanStatistic	Queries the statistics about an Object Storage Service (OSS) bucket check.
UpdateOssScanConfig	UpdateOssScanConfig	Modifies a policy of detecting Object Storage Service (OSS) objects by using the SDK for malicious file detection feature.
CreateOssScanConfig	CreateOssScanConfig	Creates a policy for detecting malicious Object Storage Service (OSS) objects by using the SDK for malicious file detection feature.
GetOssScanConfig	GetOssScanConfig	Queries the configurations of an Object Storage Service (OSS) bucket check policy.

Malicious Behavior Defense

API	Title	Description
AddClientUserDefineRule	AddClientUserDefineRule	Creates a custom defense rule.

Website Security

API	Title	Description
DescribeDomainSecureVulList	DescribeDomainSecureVulList	Queries a list of vulnerabilities in your website security report.
DescribeDomainSecureRiskList	DescribeDomainSecureRiskList	Queries a list of risky websites in your website security report and the security information about the websites, including the number of vulnerabilities and the number of alerts.
DescribeDomainSecureAlarmList	DescribeDomainSecureAlarmList	Queries the security alert data of a website security report.
DescribeDomainSecureStatistics	DescribeDomainSecureStatistics	Queries the statistics in your website security report, including the number of websites and the number of security events.
DescribeDomainSecureScore	DescribeDomainSecureScore	Queries the security score in your website security report. The full score is 100.

Billing

API	Title	Description
GetAuthSummary	GetAuthSummary	Queries the statistics of asset protection quota.
DescribeVersionConfig	DescribeVersionConfig	Queries the details about the edition of purchased Security Center.
ModifyPostPayModuleSwitch	Modify the Status of Pay-As-You-Go Features	Operate the Postpaid Module Switch
UpdatePostPaidBindRel	Change Pay-As-You-Go Service Protection Version	Change Postpaid Asset Authorization Version

Other

API	Title	Description
DescribeTraceInfoDetail	DescribeTraceInfoDetail	Queries the trace information about alerts.
DescribeImageRepoList	DescribeImageRepoList	Queries the statistics and configurations of the feature that protects images.
ListImageRegistryRegion	Query the Regions that support access to private image repositories	Query the Regions that support access to private image repositories.
DescribeMonitorAccounts	DescribeMonitorAccounts	Queries the list of accounts that are added to the multi-account management feature as members.
GetSwitchRegionDetail	GetSwitchRegionDetail	Retrieves the details of a migration operation. For example, you can query the progress and status of a migration operation after you migrate a server from a region in the Chinese mainland to the Singapore region.
ListHoneypotProbeUuid	ListHoneypotProbeUuid	Query installed probes
ListK8sAccessInfo	ListK8sAccessInfo	Queries the information about Kubernetes clusters that are added to Security Center.
GenerateK8sAccessInfo	GenerateK8sAccessInfo	Generates a command that is used to add a self-managed Kubernetes cluster.
CreateCustomizedDict	CreateCustomizedDict	Creates custom weak password rules.
GetCheckStructure	GetCheckStructure	Obtains the structure information about check items provided by the configuration assessment feature.
DescribeCustomizeReportConfigDetail	DescribeCustomizeReportConfigDetail	Obtains the configurations of a security report.
GetDefenceCount	GetDefenceCount	Queries the numbers of handled alerts of the precision defense type and the web tamper proofing type.
SaveCustomizeReportConfig	SaveCustomizeReportConfig	Saves the configurations of a custom security report.
DescribeScreenScoreThread	DescribeScreenScoreThread	Queries the trends of the scores on the security dashboard.
SubmitOperationTask	SubmitOperationTask	Submits a repair task of risk items detected in configuration assessment or rolls back a repair task that is executed.
CheckTrialFixCount	CheckTrialFixCount	Checks whether the remaining quota of the vulnerability fixing feature is sufficient for a free trial user of Security Center and queries the quota usage required for the current fix operation.
CreateMonitorAccount	CreateMonitorAccount	Creates a list of members of the account monitored by Security Center type by using the multi-account management feature.
ListAccountsInResourceDirectory	ListAccountsInResourceDirectory	Queries members in the resource directory that is involved when the multi-account management feature is enabled.
CreateRdDefaultSyncList	CreateRdDefaultSyncList	Creates an automatic account management policy for members of the account monitored by Security Center type by using the multi-account management feature. After the policy is created, the members that are newly added to the specified resource directory are automatically added to the list of members of the account monitored by Security Center type.
DescribeImageListByBuildRisk	DescribeImageListByBuildRisk	Queries a list of images that are affected by image build command risks by page.
DescribeImageBuildRiskByKey	DescribeImageBuildRiskByKey	Queries image build command risks by page.
DescribeNeedAsyncQuery	DescribeNeedAsyncQuery	Queries whether slow queries need to be optimized.
DescribeCheckWarningCount	DescribeCheckWarningCount	Queries the number of alerts that are triggered by a check item.
GetCurrentVersionPublish	GetCurrentVersionPublish	Queries the publish details of the Security Center agent.
ListOperationProcessDetail	Query operation task subtasks list	Query operation task sub-task list.
ListOperationProcess	ListOperationProcess	Queries a list of operation tasks.
DescribeImageRiskLevelStatistic	DescribeImageRiskLevelStatistic	Queries the number of images on which security alerts are generated. Security alerts are generated for risks such as vulnerabilities, baselines risks, and malicious samples.
DescribeImageSecurityScanCount	DescribeImageSecurityScanCount	Queries the number of security events detected on an image.
GetDockerhubImageRiskRankInfo	GetDockerhubImageRiskRankInfo	Queries the ranking of images in each dimension.
ListDockerhubImage	ListDockerhubImage	Queries the risk overview of official Docker Hub images.
GetInstanceAlarmStatistics	Get Server Alarm Statistics	Count the number of security events for a single instance
GrantSwitchAgreement	Function Migration Authorization Interface	Authorization for Switching Migration
ModifyServerlessAuthToMachine	Manage Serverless Asset Authorization	Manage Serverless Asset Authorization
ModifyBinarySecurityPolicy	Modify Container Image Signature Security Policy	Modify Container Image Signature Security Policy.
GetAttackPathEventDetail	GetAttackPathEventDetail	Query Attack Path Event Details.
InstallAegisForLingjun	Install Cloud Security Center Client on Lingjun Bare Metal	Install Aegis client on Lingjun bare metal.
ListAegisForLingjunStatus	Query the Aegis Client Installation Result for Lingjun Bare Metal	Query the Aegis client installation result for Lingjun bare metal.
DescribeAIAssetSummary	DescribeAIAssetSummary	Queries the overview of user AI assets.
DescribePluginSummary	DescribePluginSummary	Queries statistics on the client plug-in installation status.
DescribeCustomizedDict	Query Custom Weak Passwords	View the result of custom weak password uploads
ListUniBackupRecord	List Database Backup Records	List Database Backup Records
HandleSimilarMaliciousFiles	Batch Process Malicious Alerts	Batch process malicious alerts.
GenerateClusterScannerWebhookYaml	Generate Cluster Scanner Component Access Configuration	Generate K8s cluster scan access configuration.
DescribeClusterScannerList	View Cluster Scanner List	Query the status of cluster scanning components.
GetClusterScannerYaml	View Cluster Scan Component Access Configuration	Query K8s cluster scan access configuration.
GetAgentlessTaskUsedSizeEstimate	Get Agentless Detection Estimated Volume	Query the estimated volume for agentless detection.
ListCloudAssetMatchOperators	Get the list of cloud product configuration rule operators.	Get the list of cloud product configuration rule operators
ListCloudAssetSchemas	Get the list of asset structure definitions.	Get the list of cloud product asset structure
UpdateMultiUserInstances	Authorization Allocation Management	Modify Multi-Account Instance Configuration
GetInstanceAuthRange	Get Instance Authorization Value Range	Get Instance Authorization Value Range
ListMultiUserInstances	Query Multi-Account Authorization Allocation List	Query Multi-Account Authorization Allocation List
DescribeCloudVendorProductTemplateConfig	Query Agentic SOC Supported Cloud Vendor Product Access Template Configuration	Get the cloud product access template for vendors
GetValidDeductInstances	Get Valid Resource Package Instances	Get Valid Resource Package Instances
ListAttackEventInfo	Get Attack Analysis Event List	Get Attack Analysis Event List
GetAttackEventDetail	Get Attack Analysis Event Details	Get Attack Analysis Event Details
GetAttackEventDashboard	Get Attack Analysis Dashboard Information	Get Attack Analysis Dashboard Information
DescribeSuspiciousSecurityEventyStatistics	Query Alarm Security Event Statistics	Query Alarm Security Event Statistics
ListClusterCheckResult	Query Cluster Check Item Scan Results	Query Cluster Check Item Scan Results
GetClusterCheckSummary	Query the number of cluster inspection item risks	Query the number of cluster inspection item risks
ListKspmInstances	Query Kubernetes Assets	Get KSPM Asset List

Others

API	Title	Description
AddAssetSelectionCriteria	AddAssetSelectionCriteria	Select an operation for assets.
AddBaselineCheckWhiteRecord	AddBaselineCheckWhiteRecord	Creates a whitelist rule for a baseline check item.
AddCheckInstanceResultWhiteList	AddCheckInstanceResultWhiteList	Adds instances on which risks are detected based on check items of the configuration assessment feature to a whitelist.
AddContainerDefenseRule	AddContainerDefenseRule	Creates a rule for non-image program defense.
AddContainerPluginRule	AddContainerPluginRule	Creates a defense rule against container escapes.
AddIdcProbe	AddIdcProbe	Creates an IDC probe to add assets in a data center to Security Center and manage the assets by using the Security Center console.
AddImageEventOperation	AddImageEventOperation	Creates an alert handling rule.
AddImageVulWhiteList	AddImageVulWhiteList	Adds image vulnerabilities to the whitelist.
AddInstallCode	AddInstallCode	Creates a command that is used to install the Security Center agent.
AddPrivateRegistry	AddPrivateRegistry	Adds a self-managed image repository.
AddProtectVpcList	Add or Update the Whitelist for VPC Purchases	Add or update the whitelist for VPC purchases
AddPublishBatch	AddPublishBatch	Upgrades the Security Center agent in batches.
AddSasContainerWebDefenseRule	AddSasContainerWebDefenseRule	Creates a rule for container tamper-proofing.
AddSasModuleTrial	AddSasModuleTrial	Enables the trial use of Security Center value-added features, including vulnerability fixing and threat analysis and response.
AddTagWithUuid	AddTagWithUuid	Adds a tag to assets.
AddUninstallClientsByUuids	AddUninstallClientsByUuids	Adds servers from which you want to uninstall the Security Center agent.
AddVpcHoneyPot	AddVpcHoneyPot	Creates a honeypot.
AdvanceSecurityEventOperations	AdvanceSecurityEventOperations	Queries the configurations of an advanced whitelist rule.
BatchCreateMaliciousNote	BatchCreateMaliciousNote	Adds alert description in batches.
BatchDeleteMaliciousFileWhitelistConfig	BatchDeleteMaliciousFileWhitelistConfig	Deletes whitelist rules for alerts generated for sensitive files that are detected by using the agentless detection feature in batches.
BatchOperateCommonOverallConfig	BatchOperateCommonOverallConfig	Enables or disables multiple features in proactive defense at a time.
BatchUpdateMaliciousFileWhitelistConfig	BatchUpdateMaliciousFileWhitelistConfig	Modifies multiple alert whitelist rules of sensitive files that are detected by using the agentless detection feature at a time.
BindAuthToMachine	BindAuthToMachine	Binds servers to Security Center or unbinds servers from Security Center.
BindHybridProxy	BindHybridProxy	Adds servers to Security Center over a proxy server. After you create a proxy cluster and deploy a proxy server, you can connect a server to the proxy cluster as a client. This way, the server is added to Security Center over the proxy server and is protected.
CancelOnceTask	CancelOnceTask	Cancels the main task.
ChangeAssetRefreshTaskConfig	ChangeAssetRefreshTaskConfig	Modifies the interval of asset synchronization configurations.
ChangeCheckCustomConfig	ChangeCheckCustomConfig	Modifies the custom configuration items of a check item.
ChangeUserLang	ChangeUserLang	Modifies the language settings of log analysis. The modification on the language settings takes effect within 12 hours and affects only the language of the descriptions for security events in security logs.
CheckSecurityEventId	CheckSecurityEventId	Checks whether one or more alerts are generated on a specified server based on alert IDs.
CheckStsTokenAuth	CheckStsTokenAuth	Checks a Security Token Service (STS) token and returns the ID of the Alibaba Cloud account.
CheckUserHasEcs	CheckUserHasEcs	Checks whether Elastic Compute Service (ECS) instances exist.
ConfirmVirusEvents	ConfirmVirusEvents	Confirms the alert events that you want to handle.
CopyCustomizeReportConfig	CopyCustomizeReportConfig	Clones an existing security report. The new security report has the same configuration as the existing security report.
CreateAgentlessScanTask	CreateAgentlessScanTask	Creates an agentless detection task.
CreateAntiBruteForceRule	CreateAntiBruteForceRule	Creates a defense rule against brute-force attacks.
CreateAssetSelectionConfig	CreateAssetSelectionConfig	Create asset selection configurations.
CreateAttackPathSensitiveAssetConfig	Create Attack Path Sensitive Asset Settings	Create attack path sensitive asset configuration.
CreateAttackPathWhitelist	CreateAttackPathWhitelist	Create Attack Path Whitelist.
CreateAttestor	CreateAttestor	Creates a witness.
CreateBackupPolicy	CreateBackupPolicy	Creates an anti-ransomware policy for servers.
CreateBatchUploadUrl	CreateBatchUploadUrl	Queries the parameters that are required to upload a file for detection.
CreateBinarySecurityPolicy	CreateBinarySecurityPolicy	Creates a binary security policy.
CreateContainerScanTask	CreateContainerScanTask	Creates a container scan task.
CreateContainerScanTaskByAppName	CreateContainerScanTaskByAppName	Creates a scan task for a running container application based on the application name.
CreateCustomBlockRecord	CreateCustomBlockRecord	Creates an IP address blocking policy for one or more servers.
CreateCycleTask	CreateCycleTask	Creates a periodic scan task. The task can be an image scan task, urgent vulnerability scan task, or virus scan task.
CreateDynamicDict	CreateDynamicDict	Creates a dynamic dictionary of weak passwords.
CreateFileDetect	CreateFileDetect	Pushes a file to the cloud for detection.
CreateFileDetectUploadUrl	CreateFileDetectUploadUrl	Queries the parameters that are required to upload a file for detection.
CreateFileProtectRule	CreateFileProtectRule	Creates a core file monitoring rule.
CreateFileUploadLimit	CreateFileUploadLimit	Specifies the queries per second (QPS) limit on the files uploaded from the client.
CreateHoneypot	CreateHoneypot	Creates a honeypot.
CreateHoneypotNode	CreateHoneypotNode	Creates a management node.
CreateHoneypotPreset	CreateHoneypotPreset	Creates a honeypot template.
CreateHoneypotProbe	CreateHoneypotProbe	Creates a probe.
CreateHoneypotProbeBind	CreateHoneypotProbeBind	Creates a monitoring or forwarding service for a probe.
CreateHybridProxyCluster	CreateHybridProxyCluster	Creates a hybrid-cloud proxy cluster.
CreateInterceptionRule	CreateInterceptionRule	Creates a defense rule in the container firewall module.
CreateInterceptionTarget	CreateInterceptionTarget	Creates a defense object.
CreateJenkinsImageRegistry	CreateJenkinsImageRegistry	Creates a Jenkins image repository.
CreateJenkinsImageScanTask	CreateJenkinsImageScanTask	Creates a Jenkins scan task.
CreateMaliciousNote	CreateMaliciousNote	Adds remarks to alert events for agentless detection.
CreateOpaClusterPlugin	CreateOpaClusterPlugin	Installs the components that are required by at-risk image blocking. The components are policy-template-controller, gatekeeper, and logtail-ds.
CreateOpaStrategyNew	CreateOpaStrategyNew	Creates a rule to block at-risk images.
CreateOrUpdateAssetGroup	CreateOrUpdateAssetGroup	Modifies the mapping between an asset and an asset group. For example, you can call this operation to modify the server group to which the asset belongs or the asset list of the asset group.
CreateOrUpdateAutoTagRule	CreateOrUpdateAutoTagRule	Creates an asset auto-tagging rule or modifies an asset auto-tagging rule that is created on the Asset Management Rule tab.
CreateOrUpdateDingTalk	CreateOrUpdateDingTalk	Creates or modifies a DingTalk chatbot that sends notifications.
CreateOssBucketScanTask	CreateOssBucketScanTask	Creates a bucket check task.
CreateRestoreJob	CreateRestoreJob	Creates a restoration task.
CreateSasTrial	CreateSasTrial	Applies for a trial of Security Center.
CreateServiceLinkedRole	CreateServiceLinkedRole	Creates a service-linked role and authorizes Security Center to access cloud resources.
CreateServiceTrail	CreateServiceTrail	Create a service trail.
CreateSimilarSecurityEventsQueryTask	CreateSimilarSecurityEventsQueryTask	Creates a task to query alert events that are triggered by the same rule or of the same alert type.
CreateSoarStrategyTask	CreateSoarStrategyTask	Creates a task on the My Policies tab of the Playbook page.
CreateSuspEventNote	CreateSuspEventNote	Adds remarks to an alert event.
CreateUniBackupPolicy	CreateUniBackupPolicy	Creates an anti-ransomware policy for a database.
CreateUniRestorePlan	CreateUniRestorePlan	Creates a restoration task for a database.
CreateUserSetting	CreateUserSetting	Creates the risk level settings for baseline check items.
CreateVulAutoRepairConfig	CreateVulAutoRepairConfig	Creates a list of vulnerabilities that can be automatically fixed. After the list is created, you can select the list when you create a vulnerability fixing task on the Playbook page.
DeleteAntiBruteForceRule	DeleteAntiBruteForceRule	Deletes the specified defense rules against brute-force attacks.
DeleteAttackPathSensitiveAssetConfig	DeleteAttackPathSensitiveAssetConfig	Delete attack path sensitive asset.
DeleteAttackPathWhitelist	DeleteAttackPathWhitelist	Delete Attack Path Whitelist.
DeleteAttestor	DeleteAttestor	Deletes a witness.
DeleteAutoTagRules	DeleteAutoTagRules	Deletes asset auto-tagging rules that are created by using the feature of asset management rules. You can create rules on the System Configuration > Feature Settings > Multi-cloud Configuration Management > Asset Management Rule page in the Security Center console.
DeleteBackupPolicy	DeleteBackupPolicy	Deletes an anti-ransomware policy.
DeleteBackupPolicyMachine	DeleteBackupPolicyMachine	Deletes a server from a specified anti-ransomware policy.
DeleteBackupSnapshot	DeleteBackupSnapshot	Deletes a backup snapshot that is created for anti-ransomware.
DeleteBaselineCheckWhiteRecord	DeleteBaselineCheckWhiteRecord	Deletes the whitelist record for a baseline check item.
DeleteBinarySecurityPolicy	DeleteBinarySecurityPolicy	Deletes a binary security policy from the container signature feature.
DeleteClientUserDefineRule	DeleteClientUserDefineRule	Deletes specified custom defense rules.
DeleteContainerDefenseRule	DeleteContainerDefenseRule	Deletes a rule for non-image program defense.
DeleteContainerPluginRule	DeleteContainerPluginRule	Deletes a defense rule against container escapes.
DeleteCustomBlockRecord	DeleteCustomBlockRecord	Deletes a specified IP address blocking policy from one or more servers.
DeleteCustomizeReport	DeleteCustomizeReport	Deletes a custom security report.
DeleteCustomizedDict	DeleteCustomizedDict	Deletes the file that is uploaded to create custom weak password rules.
DeleteCycleTask	DeleteCycleTask	Deletes a periodic scan task. The task can be an image scan task, urgent vulnerability scan task, or virus scan task.
DeleteDingTalk	DeleteDingTalk	Deletes a DingTalk chatbot on the DingTalk Chatbot tab of the Notification Settings page.
DeleteFileProtectRule	DeleteFileProtectRule	Deletes core file monitoring rules.
DeleteGroup	DeleteGroup	Deletes a server group.
DeleteHoneypot	DeleteHoneypot	Deletes a specified honeypot.
DeleteHoneypotNode	DeleteHoneypotNode	Deletes a specified management node.
DeleteHoneypotPreset	DeleteHoneypotPreset	Deletes a specified honeypot template.
DeleteHoneypotProbe	DeleteHoneypotProbe	Deletes a specified probe.
DeleteHoneypotProbeBind	DeleteHoneypotProbeBind	Delete the probe service.
DeleteIdcProbe	DeleteIdcProbe	Deletes an IDC probe that is created in Security Center.
DeleteImageEventOperation	DeleteImageEventOperation	Deletes an alert handling rule.
DeleteImageVulWhitelist	DeleteImageVulWhitelist	Deletes an image vulnerability whitelist.
DeleteInstallCode	DeleteInstallCode	Deletes the command that is used to install the Security Center agent.
DeleteInterceptionRule	DeleteInterceptionRule	Deletes a defense rule in the container firewall module.
DeleteInterceptionTarget	DeleteInterceptionTarget	Removes the network objects that are in effect in the container firewall.
DeleteK8sAccessInfo	DeleteK8sAccessInfo	Deletes the Kubernetes access information.
DeleteLoginBaseConfig	DeleteLoginBaseConfig	Deletes the basic configuration information from the logon security configurations for a specific asset.
DeleteMaliciousFileWhitelistConfig	DeleteMaliciousFileWhitelistConfig	Deletes a whitelist rule for alerts generated for sensitive files that are detected by using the agentless detection feature.
DeleteMaliciousNote	DeleteMaliciousNote	Removes the remarks added to alert events that are generated by the agentless detection feature.
DeleteMonitorAccount	DeleteMonitorAccount	Deletes a member of the account managed by Security Center type of the multi-account management feature.
DeleteOpaStrategyNew	DeleteOpaStrategyNew	Deletes rules of the at-risk image blocking type.
DeleteOssScanConfig	DeleteOssScanConfig	Deletes the configuration of an Object Storage Service (OSS) file detection policy.
DeletePrivateRegistry	DeletePrivateRegistry	Deletes a private image repository by using the ID of the image repository.
DeleteSasContainerWebDefenseRule	DeleteSasContainerWebDefenseRule	Deletes a rule for container tamper-proofing.
DeleteSearchCondition	DeleteSearchCondition	Deletes a frequently used search condition by using the asset management feature of the Assets module in the Security Center console.
DeleteSecurityEventMarkMissList	DeleteSecurityEventMarkMissList	Deletes multiple custom defense rules at a time. The custom defense rules are used to add false positive alerts to the whitelist.
DeleteServiceTrail	DeleteServiceTrail	Deletes a service trail.
DeleteSoarStrategyTask	DeleteSoarStrategyTask	Deletes a policy task that is in the waiting state on the Playbook page.
DeleteStrategy	DeleteStrategy	Deletes a baseline check policy.
DeleteSuspEventNode	DeleteSuspEventNode	Deletes the description of an alert.
DeleteTagWithUuid	DeleteTagWithUuid	Removes custom tags from assets.
DeleteUniBackupPolicy	DeleteUniBackupPolicy	Deletes anti-ransomware policies that are created for databases.
DeleteVpcHoneyPot	DeleteVpcHoneyPot	Deletes a honeypot.
DeleteVulAutoRepairConfig	DeleteVulAutoRepairConfig	Deletes configurations of of an automatic vulnerability fixing task at a time on the Playbook page.
DeleteVulWhitelist	DeleteVulWhitelist	Deletes a specified vulnerability whitelist.
DescribeAccessKeyLeakDetail	DescribeAccessKeyLeakDetail	Queries the details of AccessKey pair leaks.
DescribeAccesskeyLeakList	DescribeAccesskeyLeakList	Queries the AccessKey pair leaks that are detected on your assets.
DescribeAffectedAssets	DescribeAffectedAssets	Queries the affected servers in the result of a virus scan task.
DescribeAffectedMaliciousFileImages	DescribeAffectedMaliciousFileImages	Retrieves the details of malicious image samples.
DescribeAgentInstallStatus	DescribeAgentInstallStatus	Queries the installation status of the Security Center agent after you run an installation command by using Cloud Assistant. You can call this operation to query the installation status only if the installation request is initiated within 2 minutes.
DescribeAgentlessSensitiveFileByKey	DescribeAgentlessSensitiveFileByKey	Queries the list of assets on which a specific type of sensitive files are detected by using the agentless detection feature.
DescribeAlarmEventDetail	DescribeAlarmEventDetail	Queries the details about an alert event. An alert event consists of an alert and exceptions. Each alert event is associated with multiple exceptions.
DescribeAlarmEventStackInfo	DescribeAlarmEventStackInfo	Queries the stack information about an alert event.
DescribeAllEntity	DescribeAllEntity	Queries the information about all assets. The information includes asset group IDs and asset names.
DescribeAllGroups	DescribeAllGroups	Queries the information about server groups.
DescribeAllImageBaseline	DescribeAllImageBaseline	Queries baselines that are used in image baseline checks.
DescribeAllRegionsStatistics	DescribeAllRegionsStatistics	Queries the statistics on global security events, including the numbers of unfixed vulnerabilities, baseline risks, and alerts.
DescribeAppVulScanCycle	DescribeAppVulScanCycle	Queries the scan cycle for application vulnerabilities.
DescribeAssetDetailByUuid	DescribeAssetDetailByUuid	Queries the details of a server and the extended information about the server by using the UUID of the server.
DescribeAssetDetailByUuids	DescribeAssetDetailByUuids	Queries the details of Elastic Compute Service (ECS) instances.
DescribeAssetSummary	DescribeAssetSummary	The ID of the request, which is used to locate and troubleshoot issues.
DescribeAssetsScaProcessNum	DescribeAssetsScaProcessNum	Queries the number of Java processes in an asset by using the asset fingerprints feature of Security Center.
DescribeAssetsSecurityEventSummary	DescribeAssetsSecurityEventSummary	Queries the risk information about containers.
DescribeAttestors	DescribeAttestors	Queries a list of witnesses.
DescribeAutoDelConfig	DescribeAutoDelConfig	Queries the number of days during which a detected vulnerability is retained before the vulnerability is automatically deleted.
DescribeBackUpExportInfo	DescribeBackUpExportInfo	Queries the information about a file to which archived alert events are exported.
DescribeBackupClients	DescribeBackupClients	Queries the servers on which the anti-ransomware agent is installed in a specified region.
DescribeBackupFiles	DescribeBackupFiles	Queries backup files.
DescribeBackupMachineStatus	DescribeBackupMachineStatus	Queries the backup status of a sever to which an anti-ransomware policy is applied.
DescribeBackupPolicies	DescribeBackupPolicies	Queries anti-ransomware policies.
DescribeBackupPolicy	DescribeBackupPolicy	Retrieves the details of an anti-ransomware policy for servers.
DescribeBackupRestoreCount	DescribeBackupRestoreCount	Queries the statistics of restoration tasks.
DescribeBinarySecurityPolicies	DescribeBinarySecurityPolicies	Queries binary security policies.
DescribeBruteForceRecords	DescribeBruteForceRecords	Queries the IP addresses that are blocked by a defense rule against brute-force attacks.
DescribeBruteForceSummary	DescribeBruteForceSummary	Queries the statistics of IP address blocking policies that are used to defend against brute-force attacks and trigger alerts.
DescribeCanAccessVpcSale	Check if the Asset Can be Sold by VPC	Check if the asset can be sold by VPC
DescribeCanFixVulList	DescribeCanFixVulList	Queries the list of fixable vulnerabilities.
DescribeCanTrySas	DescribeCanTrySas	Checks the permissions on the trial use of Security Center.
DescribeChartData	DescribeChartData	Queries the chart data of a security report.
DescribeChartList	DescribeChartList	Queries the charts that are supported by using the security report feature of Security Center.
DescribeCheckEcsWarnings	DescribeCheckEcsWarnings	Queries the number of weak passwords that can cause high risks to your assets.
DescribeCheckFixDetails	DescribeCheckFixDetails	Queries the parameters that you can configure to fix specified risk items.
DescribeCheckResult	DescribeCheckResult	Queries the result of the ISO 27001 compliance check.
DescribeCheckWarningMachines	DescribeCheckWarningMachines	Queries the servers on which the same risk item is detected by specifying a baseline and a check item.
DescribeCheckWarningSummary	DescribeCheckWarningSummary	Queries the statistical information about baseline check results. The information includes the number of servers on which a baseline check is performed, the number of baseline check items, and the pass rate of check items in the last baseline check.
DescribeCheckWarnings	DescribeCheckWarnings	Queries information about specified risk items and the check items of a specified server.
DescribeClientConfSetup	DescribeClientConfSetup	Queries the configurations of the Security Center agent.
DescribeClientConfStrategy	DescribeClientConfStrategy	Queries the configurations of servers to which different tags are added.
DescribeCloudProductFieldStatistics	DescribeCloudProductFieldStatistics	Queries the statistics of cloud services whose instances are protected by Security Center.
DescribeCloudVendorTrialConfig	Query Third-Party Cloud Asset Audit Log Access Configuration	Query the trail configuration attributes of the corresponding AK configuration
DescribeClusterBasicInfo	DescribeClusterBasicInfo	Queries the information about an cluster based on the cluster ID.
DescribeClusterHostSecuritySummary	DescribeClusterHostSecuritySummary	Queries the statistical information about host security.
DescribeClusterImageSecuritySummary	DescribeClusterImageSecuritySummary	Queries the statistical information about image security.
DescribeClusterInfoList	DescribeClusterInfoList	Queries the information about a cluster.
DescribeClusterNetwork	DescribeClusterNetwork	Retrieves information about the network topology edge by cluster.
DescribeClusterVulStatistics	DescribeClusterVulStatistics	Queries the statistics of vulnerabilities that are detected on a cluster.
DescribeCommonOverallConfig	DescribeCommonOverallConfig	Queries the information about a specified feature.
DescribeCommonOverallConfigList	DescribeCommonOverallConfigList	Queries the configurations of features in proactive defense.
DescribeCommonTargetConfig	DescribeCommonTargetConfig	Queries the configurations of the proactive defense feature.
DescribeCommonTargetResultList	DescribeCommonTargetResultList	Queries the information about the servers based on the specified configuration item.
DescribeConcernNecessity	DescribeConcernNecessity	Queries the priorities to fix vulnerabilities.
DescribeContainerApps	DescribeContainerApps	Queries the information about a containerized application.
DescribeContainerCriteria	DescribeContainerCriteria	Obtains the filter conditions that you can use to filter the containers.
DescribeContainerFieldStatistics	DescribeContainerFieldStatistics	Queries the statistical information about containers.
DescribeContainerGroupedFieldDetail	DescribeContainerGroupedFieldDetail	Queries the attribute details of containers.
DescribeContainerInstances	DescribeContainerInstances	Queries the information about containers.
DescribeContainerScanConfig	DescribeContainerScanConfig	Queries the configurations of the vulnerability scan of one or more running container applications.
DescribeContainerServiceK8sClusterKritisStatus	DescribeContainerServiceK8sClusterKritisStatus	Queries the Kritis status of a Container Service for Kubernetes (ACK) cluster.
DescribeContainerServiceK8sClusterNamespaces	DescribeContainerServiceK8sClusterNamespaces	Queries the namespace of a Container Service for Kubernetes (ACK) cluster.
DescribeContainerServiceK8sClusters	DescribeContainerServiceK8sClusters	Queries a list of Container Service for Kubernetes (ACK) clusters.
DescribeContainerStatistics	DescribeContainerStatistics	Queries the alert statistics of container assets.
DescribeContainerTags	DescribeContainerTags	Retrieves the details of container assets by using an attribute.
DescribeCountNotScannedImage	DescribeCountNotScannedImage	Queries the number of images that are not scanned.
DescribeCountScannedImage	DescribeCountScannedImage	Queries the number of images that are scanned.
DescribeCustomBlockInstances	DescribeCustomBlockInstances	Queries the list of servers on which the custom defense rule against brute-force attacks takes effect.
DescribeCustomBlockRecords	DescribeCustomBlockRecords	Queries the defense rules against brute-force attacks that are applied to one or more servers.
DescribeCustomizeReportList	DescribeCustomizeReportList	Queries security reports.
DescribeCustomizedDictUploadInfo	DescribeCustomizedDictUploadInfo	Queries the Object Storage Service (OSS) information of the file that is uploaded to create custom weak password rules.
DescribeCustomizedStrategyTargets	DescribeCustomizedStrategyTargets	Queries the servers to which custom policies are applied.
DescribeCycleTaskList	DescribeCycleTaskList	Queries periodic scan tasks. The tasks include image scan tasks, urgent vulnerability scan tasks, and virus scan tasks.
DescribeDefaultKeyInfo	DescribeDefaultKeyInfo	Queries the keywords of a custom dictionary that is generated by using weak passwords.
DescribeDefaultProxyInstallVersion	DescribeDefaultProxyInstallVersion	Queries the default installation version of the proxy that is used in hybrid-cloud scenarios.
DescribeDingTalk	DescribeDingTalk	Obtains DingTalk notifications.
DescribeDomainCount	DescribeDomainCount	Queries the number of domain assets within your Alibaba Cloud account.
DescribeDomainDetail	DescribeDomainDetail	Queries the details of domain assets within your Alibaba Cloud account.
DescribeDomainList	DescribeDomainList	Queries the information about the domain assets within your Alibaba Cloud account.
DescribeDomainSecureSuggests	Query Website Security Report's Security Suggestions	Query Network Security Report - Security Suggestions
DescribeDynamicDict	DescribeDynamicDict	Queries custom weak password rules for the baseline check feature.
DescribeDynamicDictUploadInfo	DescribeDynamicDictUploadInfo	Queries the information about an uploaded Object Storage Service (OSS) object that contains custom weak passwords and is used for baseline checks.
DescribeEmgUserAgreement	DescribeEmgUserAgreement	Queries whether Security Center is authorized to scan for urgent vulnerabilities.
DescribeEventLevelCount	DescribeEventLevelCount	Queries the statistics of alert events by risk level.
DescribeEventOnStage	DescribeEventOnStage	Queries the platforms that are supported by the feature of container threat detection.
DescribeExcludeSystemPath	DescribeExcludeSystemPath	Queries the directories that are excluded from anti-ransomware.
DescribeExposedCheckWarning	DescribeExposedCheckWarning	Queries the weak password-related risks of a specified server that is exposed on the Internet.
DescribeExposedInstanceCriteria	DescribeExposedInstanceCriteria	Queries the search conditions that are used to search for exposed assets.
DescribeExposedInstanceDetail	DescribeExposedInstanceDetail	Queries the details of a specified server that is exposed on the Internet.
DescribeExposedStatistics	DescribeExposedStatistics	Queries the exposure statistics of the assets on the Internet.
DescribeFixUsedCount	DescribeFixUsedCount	Queries the number of vulnerabilities that are fixed by the pay-as-you-go vulnerability fixing feature.
DescribeFrontVulPatchList	DescribeFrontVulPatchList	Queries the pre-patches that are required to fix a specified Windows system vulnerability.
DescribeGraph4InvestigationOnline	Query the Investigation and Tracing Graph of an Alert Event	Alert Event Investigation
DescribeGroupStruct	DescribeGroupStruct	Queries the structure of a group.
DescribeGroupedContainerInstances	DescribeGroupedContainerInstances	Queries containers by group type.
DescribeGroupedInstances	DescribeGroupedInstances	Queries the statistical information about assets based on a specified filter condition.
DescribeGroupedMaliciousFiles	DescribeGroupedMaliciousFiles	Queries a list of malicious image samples.
DescribeGroupedTags	DescribeGroupedTags	Queries the statistics of asset tags.
DescribeHcExportInfo	DescribeHcExportInfo	Queries the information about baseline export, including the name of the file to which baselines are exported and the download URL for the file.
DescribeHoneyPotAuth	DescribeHoneyPotAuth	Queries the statistics about the quota on honeypots.
DescribeHoneyPotSuspStatistics	DescribeHoneyPotSuspStatistics	Queries the information about top 5 virtual private clouds (VPCs) or assets for which alerts are most frequently generated.
DescribeHybridProxyClusterList	DescribeHybridProxyClusterList	Queries proxy clusters by page.
DescribeHybridProxyLinkedClientList	DescribeHybridProxyLinkedClientList	Queries the servers that are connected to a proxy in a hybrid cloud by page.
DescribeHybridProxyList	DescribeHybridProxyList	Queries the proxy nodes that are deployed in a proxy cluster by page.
DescribeHybridProxyPolicy	DescribeHybridProxyPolicy	Queries the data collection configurations of a proxy cluster.
DescribeIdcAssetCriteria	DescribeIdcAssetCriteria	Queries the search conditions that can be used to query data center assets found after scanning in fuzzy match mode.
DescribeIdcProbeList	Query IDC Data Center Asset Discovery Probe List	Query IDC probe list
DescribeIdcProbeScanResultList	DescribeIdcProbeScanResultList	Queries assets that are identified by Internet Data Center (IDC) probes.
DescribeImage	DescribeImage	Queries an image digest.
DescribeImageBaselineCheckResult	DescribeImageBaselineCheckResult	Queries the security scan results of images.
DescribeImageBaselineCheckSummary	DescribeImageBaselineCheckSummary	Queries the check results of image baselines that are included in an image scan task.
DescribeImageBaselineDetail	DescribeImageBaselineDetail	Queries the details about the baseline check result for an image.
DescribeImageBaselineItemList	DescribeImageBaselineItemList	Queries baseline check results based on images.
DescribeImageBaselineStrategy	DescribeImageBaselineStrategy	Queries the information about a baseline check policy for images.
DescribeImageBuildRiskList	DescribeImageBuildRiskList	Queries a list of image build command risks by page.
DescribeImageCriteria	DescribeImageCriteria	Queries the search conditions that are used to query images.
DescribeImageEventOperationCondition	DescribeImageEventOperationCondition	Queries the conditions for handling alert events in an image.
DescribeImageEventOperationPage	DescribeImageEventOperationPage	Queries alert handling rules by page.
DescribeImageFixCycleConfig	DescribeImageFixCycleConfig	Queries the configurations of the scheduled fix of image risks.
DescribeImageFixTask	DescribeImageFixTask	Queries the tasks that you create to fix image risks.
DescribeImageInfoList	DescribeImageInfoList	Queries images.
DescribeImageInstances	DescribeImageInstances	Retrieves information about images.
DescribeImageLatestScanTask	DescribeImageLatestScanTask	Queries the most recent scan task that is created for an image.
DescribeImageListBySensitiveFile	DescribeImageListBySensitiveFile	Retrieves information about images that are affected by sensitive files.
DescribeImageListWithBaselineName	DescribeImageListWithBaselineName	Queries the details about images in the results of image baseline checks.
DescribeImageRepoDetailList	DescribeImageRepoDetailList	Queries the information about image repositories.
DescribeImageScanAuthCount	DescribeImageScanAuthCount	Retrieves the details of the quota for container image scan.
DescribeImageSensitiveFileByKey	DescribeImageSensitiveFileByKey	Queries the sensitive files in an image.
DescribeImageStatistics	DescribeImageStatistics	Queries the risk statistics of container images.
DescribeImageVulWhiteList	DescribeImageVulWhiteList	Queries the whitelist of image vulnerabilities.
DescribeInstallCaptcha	DescribeInstallCaptcha	Queries the verification code for you to manually install the Security Center agent.
DescribeInstallCode	DescribeInstallCode	Queries the installation verification code that is used to run the installation command of the Security Center agent.
DescribeInstallCodes	DescribeInstallCodes	Queries the commands that are used to manually install the Security Center Agent.
DescribeInstanceAntiBruteForceRules	DescribeInstanceAntiBruteForceRules	Queries the information about servers to which a defense rule against brute-force attacks is applied.
DescribeInstanceRebootStatus	DescribeInstanceRebootStatus	Queries the status of the servers that you restart.
DescribeInstanceVulStatistics	DescribeInstanceVulStatistics	Queries the statistics of vulnerabilities that are detected on a cluster.
DescribeLatestScanTask	DescribeLatestScanTask	Queries the progress of the last virus scan task.
DescribeLogShipperStatus	DescribeLogShipperStatus	Queries the status information about the log analysis feature.
DescribeLoginBaseConfigs	DescribeLoginBaseConfigs	Queries the information about the configurations that are used to detect unusual logons to your servers.
DescribeLoginSwitchConfigs	DescribeLoginSwitchConfigs	Queries the alerting status for unapproved logon IP addresses, unapproved logon time ranges, or unapproved logon accounts.
DescribeLogstoreStorage	DescribeLogstoreStorage	Queries the purchased log storage capacity.
DescribeMachineCanReboot	DescribeMachineCanReboot	Queries whether a server can be restarted after the vulnerabilities on the server are fixed. The fixes take effect only after the server is restarted.
DescribeMatchedMaliciousNames	DescribeMatchedMaliciousNames	Queries a list of malicious image sample types.
DescribeOfflineMachines	DescribeOfflineMachines	Queries the information about the servers whose Security Center agent status is Offline.
DescribeOnceTask	DescribeOnceTask	Queries agent tasks.
DescribeOnceTaskLeafRecordPage	DescribeOnceTaskLeafRecordPage	Queries the sub-task information of one-time scan task. A sub-task can be an image scan task or an image asset synchronization task.
DescribePropertyCronItem	DescribePropertyCronItem	Queries the scheduled tasks of your assets.
DescribePropertyPortItem	DescribePropertyPortItem	Queries information about all ports.
DescribePropertyProcItem	DescribePropertyProcItem	Queries information about all processes.
DescribePropertyScaItem	DescribePropertyScaItem	Queries middleware fingerprints.
DescribePropertyScheduleConfig	DescribePropertyScheduleConfig	Queries the configurations of scheduled tasks of asset fingerprint collection.
DescribePropertySoftwareItem	DescribePropertySoftwareItem	Queries information about all software assets.
DescribePropertyTypeScaItem	DescribePropertyTypeScaItem	Queries middleware types.
DescribePropertyUsageTop	DescribePropertyUsageTop	Uses the asset fingerprints feature to obtain the statistics on top five most frequently detected ports, processes, software, accounts, or middleware.
DescribePropertyUserItem	DescribePropertyUserItem	Queries information about an account.
DescribeQuaraFileDownloadInfo	DescribeQuaraFileDownloadInfo	Queries the download information about a quarantined file.
DescribeReportExport	DescribeReportExport	Queries the information about a report export task.
DescribeReportRecipientStatus	DescribeReportRecipientStatus	Queries the status of a report recipient by using the security report feature of the System Configuration module in the Security Center console.
DescribeRestoreJobs	DescribeRestoreJobs	Queries the details about restoration tasks.
DescribeRestorePlans	DescribeRestorePlans	Queries restoration tasks.
DescribeRiskCheckResult	DescribeRiskCheckResult	Queries the check results of cloud service configurations by check item type or name.
DescribeRiskCheckSummary	DescribeRiskCheckSummary	Queries the summary information about the check results of cloud service configurations. The information includes the number of risk items, the risk rate, the number of affected assets, the check time, and the statistics about each type of check items.
DescribeRiskItemType	DescribeRiskItemType	Queries the types of check items in configuration assessment.
DescribeRiskListCheckResult	DescribeRiskListCheckResult	Queries the number of risk items detected in the configuration assessment of one or more cloud services by using the instance IDs of the cloud services.
DescribeRiskType	DescribeRiskType	Queries baseline types.
DescribeRisks	DescribeRisks	Queries the information about baselines based on baseline IDs or names.
DescribeSasPmAgentList	DescribeSasPmAgentList	Queries the servers on which you want to install the CloudMonitor agent.
DescribeScanTaskStatistics	DescribeScanTaskStatistics	Queries the statistics of virus detection tasks.
DescribeSecurityCheckScheduleConfig	DescribeSecurityCheckScheduleConfig	Queries the day of a week when custom check tasks are performed and the time range during which the custom check tasks are performed.
DescribeSecurityEventMarkMissList	DescribeSecurityEventMarkMissList	Queries the list of whitelist rules.
DescribeSecurityEventOperationStatus	DescribeSecurityEventOperationStatus	Queries the alert events that are triggered by the same IP address rule or of the same alert type as a specific alert event if you want to handle the specific alert event in batch operation mode.
DescribeSecurityEventOperations	DescribeSecurityEventOperations	Queries the operations that you can perform to handle an alert.
DescribeSecurityStatInfo	DescribeSecurityStatInfo	Queries the statistics of each security check item and the daily statistics in the trend chart based on each security check item.
DescribeServiceLinkedRoleStatus	DescribeServiceLinkedRoleStatus	Checks whether a service-linked role is created for Security Center.
DescribeSimilarEventScenarios	DescribeSimilarEventScenarios	Queries the scenarios in which alerts triggered by the same rule or rules of the same type are handled.
DescribeSimilarSecurityEvents	DescribeSimilarSecurityEvents	Queries alert events that are triggered by the same rule or of the same alert type.
DescribeSoarPlaybookTaskDetail	Query Playbook Task Details	Query the execution details of a remediation task playbook
DescribeSoarStrategies	DescribeSoarStrategies	Queries the policy templates on the Playbook page.
DescribeSoarStrategyParam	DescribeSoarStrategyParam	Queries the parameters of a policy on the Playbook page.
DescribeSoarStrategyTaskDetail	DescribeSoarStrategyTaskDetail	Retrieves the details of a policy task on the Playbook page, including the execution status of the task and the process information of the task.
DescribeSoarStrategyTaskParams	Query Task Center Strategy Task Parameters	Get the input parameters for a specific task
DescribeSoarStrategyTaskResult	Query Strategy Task Execution Results	Get the list of task execution results
DescribeSoarStrategyTasks	DescribeSoarStrategyTasks	Queries a list of policy tasks on the Playbook page.
DescribeSoarSubscribedStrategy	DescribeSoarSubscribedStrategy	Queries a list of policies created on the Playbook page of Security Center.
DescribeStrategyDetail	DescribeStrategyDetail	Queries the information about a baseline check policy.
DescribeStrategyExecDetail	DescribeStrategyExecDetail	Queries the results of the last baseline check by using a specified baseline check policy.
DescribeStrategyTarget	DescribeStrategyTarget	Queries the information about the assets to which a baseline check policy is applied.
DescribeStrictEventName	Query Alarm Names in Strict Mode	Strict mode supports alarm queries
DescribeSummaryInfo	DescribeSummaryInfo	Queries the security information about your assets. The information includes the security score and the numbers of protected and unprotected assets.
DescribeSupervisonInfo	DescribeSupervisonInfo	Queries the time when a system vulnerability was last detected.
DescribeSuspEventExportInfo	DescribeSuspEventExportInfo	Queries the information about an export task of exceptions.
DescribeSuspEventQuaraFiles	DescribeSuspEventQuaraFiles	Queries quarantined files by page.
DescribeSuspEventUserSetting	DescribeSuspEventUserSetting	Queries the user settings for exceptions.
DescribeSuspiciousOverallConfig	DescribeSuspiciousOverallConfig	Queries the configuration of a specified feature.
DescribeSuspiciousUUIDConfig	DescribeSuspiciousUUIDConfig	Queries the UUIDs of servers on which proactive defense of a specified type takes effect.
DescribeSyncAssetTaskList	DescribeSyncAssetTaskList	Queries a list of IDC scan tasks.
DescribeSyncAssetTaskLogDetail	DescribeSyncAssetTaskLogDetail	Retrieves the details of an IDC scan task.
DescribeTarget	DescribeTarget	Queries the servers on which vulnerability scan is enabled.
DescribeTaskErrorLog	DescribeTaskErrorLog	Queries the error logs on a task that failed to fix image vulnerabilities.
DescribeTotalStatistics	DescribeTotalStatistics	Queries event statistics.
DescribeTraceInfoNode	DescribeTraceInfoNode	Queries the details about a trace node.
DescribeUniBackupDatabase	DescribeUniBackupDatabase	Queries the information about databases for which anti-ransomware policies are created.
DescribeUniBackupPolicies	DescribeUniBackupPolicies	Queries the anti-ransomware policies that are created for databases.
DescribeUniBackupPolicyDetail	DescribeUniBackupPolicyDetail	Retrieves the details of an anti-ransomware policy for databases.
DescribeUniBackupStatistics	DescribeUniBackupStatistics	Queries the statistics on backups based on anti-ransomware policies.
DescribeUniRecoverableList	DescribeUniRecoverableList	Queries the backup snapshots from which the data of a database can be restored.
DescribeUniSupportRegion	DescribeUniSupportRegion	Queries the region that is supported by anti-ransomware for databases.
DescribeUserBackupMachines	DescribeUserBackupMachines	Queries the information about the servers to which an anti-ransomware policy is applied.
DescribeUserBaselineAuthorization	DescribeUserBaselineAuthorization	Queries whether Security Center is authorized to run configuration checks on cloud services.
DescribeUserSetting	DescribeUserSetting	Queries the settings of a custom baseline check policy.
DescribeUuidsByVulNames	DescribeUuidsByVulNames	Queries a list of assets that support fixing based on vulnerability names.
DescribeVendorList	DescribeVendorList	Queries the service providers whose assets can be added to Security Center.
DescribeVolDingdingMessage	DescribeVolDingdingMessage	Queries the QR code address of a DingTalk group.
DescribeVpcHoneyPotCriteria	DescribeVpcHoneyPotCriteria	Queries the search conditions that can be used to query honeypots.
DescribeVpcHoneyPotList	DescribeVpcHoneyPotList	Queries honeypots.
DescribeVpcList	DescribeVpcList	Queries the information about virtual private clouds (VPCs).
DescribeVulCheckTaskStatusDetail	DescribeVulCheckTaskStatusDetail	Queries the status information about vulnerability scan tasks on a server.
DescribeVulConfig	DescribeVulConfig	Queries the configurations of vulnerability management.
DescribeVulDefendCountStatistics	DescribeVulDefendCountStatistics	Queries the vulnerability defense statistics in Security Center.
DescribeVulExportInfo	DescribeVulExportInfo	Queries the progress of a task that exports vulnerabilities.
DescribeVulFixStatistics	DescribeVulFixStatistics	Queries the statistics of vulnerability fixes.
DescribeVulListPage	DescribeVulListPage	Queries the vulnerabilities that can be detected.
DescribeVulMetaCountStatistics	DescribeVulMetaCountStatistics	Queries the statistics of vulnerabilities in Security Center.
DescribeVulTargetConfig	DescribeVulTargetConfig	Queries the configurations of the vulnerability scan feature for a server.
DescribeVulTargetStatistics	DescribeVulTargetStatistics	Queries the configurations of the vulnerability scan feature.
DescribeWarningExportInfo	DescribeWarningExportInfo	Queries the progress of a export task for a baseline check result.
DescribeWebLockBindList	DescribeWebLockBindList	Queries the information about the servers that have web tamper proofing enabled.
DescribeWebLockConfigList	DescribeWebLockConfigList	Queries the configurations of web tamper proofing for a specified server.
DescribeWebLockFileChangeStatistics	DescribeWebLockFileChangeStatistics	Queries the statistics on changes to the files that are protected by web tamper proofing.
DescribeWebLockFileEvents	DescribeWebLockFileEvents	Queries events on web tamper proofing.
DescribeWebLockFileTypeSummary	DescribeWebLockFileTypeSummary	Queries the summary information about the types of files for which web tamper proofing is enabled.
DescribeWebLockInclusiveFileType	DescribeWebLockInclusiveFileType	Queries the types of files that can be protected by web tamper proofing.
DescribeWebLockProcessBlockStatistics	DescribeWebLockProcessBlockStatistics	Queries the statistics on processes for web tamper proofing.
DescribeWebLockProcessList	DescribeWebLockProcessList	Queries the processes for web tamper proofing.
DescribeWebLockStatus	DescribeWebLockStatus	Queries the status of web tamper proofing.
DescribeWebLockTotalFileChangeCount	DescribeWebLockTotalFileChangeCount	Queries the number of times that the files protected by web tamper proofing are changed.
DescribeWebPath	DescribeWebPath	Queries the custom web directories that are scanned based on the alerting feature.
DescribeWhiteListAsset	DescribeWhiteListAsset	Queries the information about servers that can be added or are added to application whitelist policies.
DescribeWhiteListAuthorize	DescribeWhiteListAuthorize	Queries the available quota for the application whitelist feature.
DescribeWhiteListEffectiveAssets	DescribeWhiteListEffectiveAssets	Queries the servers on which an application whitelist policy takes effect.
DescribeWhiteListStrategyList	DescribeWhiteListStrategyList	Queries a list of application whitelist policies.
DescribeWhiteListStrategyStatistics	DescribeWhiteListStrategyStatistics	Queries the statistics of application whitelist policies.
DescribeWhiteListStrategyUuidCount	DescribeWhiteListStrategyUuidCount	Queries the number of the servers on which an application whitelist policy takes effect.
DingTalkOnlineTest	DingTalkOnlineTest	Tests whether DingTalk notification configurations are valid.
DisableBruteForceRecord	DisableBruteForceRecord	Disables an IP address blocking policy that is in effect.
DisableCustomBlockRecord	DisableCustomBlockRecord	Disables a custom IP address blocking policy for servers.
EnableBruteForceRecord	EnableBruteForceRecord	Enables an IP address blocking policy for a specified server.
EnableCustomBlockRecord	EnableCustomBlockRecord	Enables a custom IP address blocking policy.
EnableCustomInstanceBlockRecord	EnableCustomInstanceBlockRecord	Enables a custom rule for an instance.
EnableServiceAccessResourceDirectory	EnableServiceAccessResourceDirectory	Enable the multi-account management feature of Security Center.
ExportCustomizeReport	ExportCustomizeReport	Exports a security report.
ExportSuspEvents	ExportSuspEvents	Exports the information about exceptions to a file.
FinishGuidTask	FinishGuidTask	Completes guidance tasks for beginners to earn rewards.
FixCheckWarnings	FixCheckWarnings	Fixes a baseline risk item.
GenerateDynamicDict	GenerateDynamicDict	Generates a custom dictionary of weak passwords for the baseline check feature.
GenerateOnceTask	GenerateOnceTask	Creates a one-time scan task.
GetAccountLabel	GetAccountLabel	Obtains account tags.
GetAegisContainerPluginRule	GetAegisContainerPluginRule	Retrieves the details of a defense rule against container escapes.
GetAegisContainerPluginRuleCriteria	GetAegisContainerPluginRuleCriteria	Queries search conditions that can be used to search for container file protection rules.
GetAgentlessTaskCount	GetAgentlessTaskCount	Queries the number of agentless detection tasks.
GetAlarmMachineCount	GetAlarmMachineCount	Queries the number of servers on which alerts are generated.
GetAppNetwork	GetAppNetwork	Queries the network topology between containerized applications.
GetAssetDetailByUuid	GetAssetDetailByUuid	Queries the details of a server and the extended information about the server by using the UUID of the server.
GetAssetSelectionConfig	GetAssetSelectionConfig	Queries asset selection configurations.
GetAttackPathEventStatistics	GetAttackPathEventStatistics	Query Attack Path Event Statistics.
GetAttackPathSensitiveAssetConfig	Query Attack Path Sensitive Asset Settings	Query Attack Path Sensitive Assets.
GetAttackPathWhitelist	GetAttackPathWhitelist	Query Attack Path Whitelist Details.
GetAttackTypeList	GetAttackTypeList	Queries a list of attack types on the Attack Analysis page.
GetAuthVersionStatistic	GetAuthVersionStatistic	Queries the statistics about the numbers of assets protected by each edition of Security Center.
GetBackupAutoConfigStatus	GetBackupAutoConfigStatus	Checks whether the managed anti-ransomware feature can automatically configure an anti-ransomware policy for servers.
GetBackupStorageCount	GetBackupStorageCount	Queries the anti-ransomware capacity that is used.
GetBuildRiskDefineRuleConfig	GetBuildRiskDefineRuleConfig	Queries configurations for scanning image build command risks.
GetCanTrySas	GetCanTrySas	Checks whether the current user is qualified for the trial use of Security Center.
GetCheckConfig	GetCheckConfig	Queries the information about an automatic configuration check on cloud services.
GetCheckDetail	GetCheckDetail	Queries the details about a check item that is used for configuration assessment.
GetCheckProcess	GetCheckProcess	Queries the progress of a configuration check task on cloud services.
GetCheckRiskStatistics	GetCheckRiskStatistics	Queries the statistics on risk scenarios and check items that are used in the risk scenarios, including the statistics on low-risk, medium-risk, and high-risk items by baseline type.
GetCheckSale	GetCheckSale	Queries the sales information about the configuration assessment feature, including the purchased quota and the consumed quota.
GetCheckTimeDimensionStatistic	Get Time Trend Statistics for Cloud Security Posture Management Risk Items	Get time trend statistics data
GetClientRatioStatistic	GetClientRatioStatistic	Queries the installation rate and online rate of the agent.
GetClientUserDefineRule	GetClientUserDefineRule	Queries the information about a custom defense rule.
GetCloudAssetCriteria	GetCloudAssetCriteria	Queries the filter conditions that are used to search for cloud assets.
GetClusterCheckItemWarningStatistics	GetClusterCheckItemWarningStatistics	Queries the statistics on baseline risk items of container clusters.
GetClusterRuleSummary	GetClusterRuleSummary	Queries the overall information about cluster defense rules that are configured for the container firewall feature.
GetClusterStrategyCount	GetClusterStrategyCount	Queries the number of policies in each cluster.
GetClusterSuspEventStatistics	GetClusterSuspEventStatistics	Queries the statistics on alert events that are generated for containers.
GetCommonSwitchConfig	GetCommonSwitchConfig	Queries the configuration of a common switch.
GetConsoleFuncGrayStatus	Get the Gray Status of Console Function Modules	Query whether the core function's gray switch is hit
GetDataTrend	GetDataTrend	Queries the security operations trends of the vulnerabilities, alerts, and baseline risks.
GetFileDetectReport	GetFileDetectReport	Queries the cloud sandbox check results of malicious files.
GetFileDetectResult	GetFileDetectResult	Obtains file detection results.
GetFileProtectDashboard	GetFileProtectDashboard	Retrieves information about the core file monitoring feature, including the number of effective rules and the installation status of the Security Center agent on servers.
GetFileProtectEventCount	GetFileProtectEventCount	Queries the total number of core file monitoring events by filter condition.
GetFileProtectRule	GetFileProtectRule	Queries the information about a core file monitoring rule based on the ID of the rule.
GetFileUploadLimit	GetFileUploadLimit	Queries the queries per second (QPS) limit on the files uploaded from the client.
GetFunctionTrialStatus	Get Function Trial Eligibility Status	Get Trial Status
GetHoneyPotUploadPolicyInfo	GetHoneyPotUploadPolicyInfo	Obtains the URL that is used to upload a file to a honeypot.
GetHoneypotEventTrend	Obtain the attack volume trend of honeypot attack sources	Obtain attack trend statistics for a single attack source.
GetHoneypotNode	GetHoneypotNode	Retrieves the details of a specified management node.
GetHoneypotNodeMetricList	GetHoneypotNodeMetricList	Queries the monitoring data of management nodes to which the cloud honeypot belongs.
GetHoneypotPreset	GetHoneypotPreset	Queries the configurations of a specified honeypot template.
GetHoneypotProbe	GetHoneypotProbe	Queries the details about a specified probe.
GetHoneypotStatistics	GetHoneypotStatistics	Get statistics on honey pot usage.
GetImageEventOperation	GetImageEventOperation	Queries alert handling rules.
GetImageScanNumInPeriod	GetImageScanNumInPeriod	Queries the number of image scans that are performed within the last several days.
GetInstallCodeForUuid	Query Client Installation Code for Specified Asset via UUID	Query Asset Installation Code
GetInterceptionRuleDetail	GetInterceptionRuleDetail	Retrieves the details of a microsegmentation defense rule.
GetInterceptionSummary	GetInterceptionSummary	Queries the statistics of the container firewall feature.
GetInterceptionTargetDetail	GetInterceptionTargetDetail	Queries the information about a specified network object that is protected by the container firewall feature.
GetLastOnceTaskInfo	GetLastOnceTaskInfo	Queries information about the latest scan task to determine whether the task is complete.
GetLocalDefaultRegion	GetLocalDefaultRegion	Obtains the default region for synchronizing assets outside Alibaba Cloud.
GetLogMeta	GetLogMeta	Queries the status of a data shipping task of a log.
GetMaliciousFileWhitelistConfig	GetMaliciousFileWhitelistConfig	Queries an alert whitelist rule of sensitive files that are detected by using the agentless detection feature.
GetModuleConfig	GetModuleConfig	Queries the configurations of a module.
GetModuleConfigStatus	GetModuleConfigStatus	Checks whether the purchased Security Center features are enabled and whether related configurations take effect.
GetModuleTrialAuthInfo	GetModuleTrialAuthInfo	Queries the qualification information about the trial use of Security Center value-added features, including vulnerability fixing and threat analysis and response.
GetObjectScanEvent	GetObjectScanEvent	Retrieves the details of an alert event that is generated for a malicious object.
GetOnceTaskResultInfo	GetOnceTaskResultInfo	Queries the execution result of a one-time scan task, such as asset fingerprint collection, vulnerability scan, and image security scan.
GetOpaClusterBaseLineList	GetOpaClusterBaseLineList	Queries the baselines that are supported by at-risk image blocking.
GetOpaClusterLabelList	GetOpaClusterLabelList	Retrieves information about the tags that are added to containers based on the feature of proactive defense for containers.
GetOpaClusterNamespaceList	GetOpaClusterNamespaceList	Retrieves information about the namespaces of clusters for which the rules of the at-risk image blocking type are configured in proactive defense for containers.
GetOpaPluginStatus	GetOpaPluginStatus	Queries the installation status of the components that are required for clusters protected by proactive defense for containers.
GetOpaStrategyDetailNew	GetOpaStrategyDetailNew	Retrieves the details of the rule that is used to block at-risk images.
GetOpaStrategyTemplateSummary	GetOpaStrategyTemplateSummary	Queries the usage statistics about the templates provided in the feature of proactive defense for containers for rules of the at-risk image blocking type.
GetPropertyScheduleConfig	GetPropertyScheduleConfig	Queries the configurations for the collection frequency of asset fingerprints.
GetPublishCron	Get Client Upgrade Time Configuration	Get Publish Time Configuration
GetRdTree	GetRdTree	Queries the organizational structure of a resource directory by using the multi-account management feature.
GetRulesCount	GetRulesCount	Queries the numbers of system defense rules and custom defense rules.
GetSasContainerWebDefenseRule	Get Container File Defense Rule Details	Get Container File Defense Rule Details.
GetSasContainerWebDefenseRuleApplication	GetSasContainerWebDefenseRuleApplication	Queries the applications that are specified in a rule for container tamper-proofing.
GetSasContainerWebDefenseRuleCriteria	GetSasContainerWebDefenseRuleCriteria	Queries search conditions that can be used to search for container file protection rules.
GetSensitiveDefineRuleConfig	GetSensitiveDefineRuleConfig	Queries the check rules of sensitive files.
GetServerlessAppAuthDetail	Get Serverless Application Authorization Details	Get Serverless Application Authorization Details
GetServerlessAuthSummary	Get Serverless Authorization Overview	Get Serverless Authorization Overview
GetServiceTrail	GetServiceTrail	Queries the service trail that was delivered to ActionTrail.
GetStrategyTemplateDetail	GetStrategyTemplateDetail	Queries the usage details of templates provided in the feature of proactive defense for containers for rules.
GetSuspiciousStatistics	GetSuspiciousStatistics	Queries the statistics of alerts in one or more asset groups.
GetTenantCheckAvailable	GetTenantCheckAvailable	Checks whether you can submit a free quick scan task, which includes vulnerability detection in the free category and free check items of Cloud Security Posture Management (CSPM).
GetUserLang	GetUserLang	Queries the language settings of log analysis.
GetVirusScanLatestTaskStatistic	GetVirusScanLatestTaskStatistic	Queries the information about the latest virus scan task.
GetVulWhitelist	GetVulWhitelist	Retrieves information about a vulnerability whitelist.
HandleMaliciousFiles	Add or Remove Security Alerts from Whitelist	Handle Malicious Files
HandleSecurityEvents	HandleSecurityEvents	Handles alert events.
HandleSimilarSecurityEvents	HandleSimilarSecurityEvents	Handles multiple alert events that are triggered by the same IP address rule or IP address rules of the same type at a time.
IgnoreHcCheckWarnings	IgnoreHcCheckWarnings	Ignores or cancels ignoring multiple baseline risk items at a time.
IgnoreIdcProbeScanResult	IgnoreIdcProbeScanResult	Adds the result scanned by an IDC probe to the whitelist or ignores the scan result.
InstallBackupClient	InstallBackupClient	Installs the anti-ransomware agent.
InstallCloudMonitor	InstallCloudMonitor	Installs the CloudMonitor agent on specified servers.
InstallHybridProxy	InstallHybridProxy	Installs the Security Center agent on a proxy server in a hybrid cloud.
InstallPmAgent	InstallPmAgent	Installs the CloudMonitor agent on a server that is not deployed on Alibaba Cloud.
InstallUniBackupAgent	InstallUniBackupAgent	Installs the anti-ransomware agent for databases.
JoinWebLockProcessWhiteList	JoinWebLockProcessWhiteList	Adds processes to the process whitelist of web tamper proofing.
ListAegisContainerPluginRule	ListAegisContainerPluginRule	Queries defense rules against container escapes.
ListAgentlessAsset	ListAgentlessAsset	Query agentless detection assets.
ListAgentlessMaliciousFiles	ListAgentlessMaliciousFiles	Queries malicious files that are detected by agentless detection tasks.
ListAgentlessRelateMalicious	ListAgentlessRelateMalicious	Obtains the risks associated with an agentless detection event.
ListAgentlessRiskUuid	ListAgentlessRiskUuid	Queries at-risk hosts that are detected by the agentless detection feature.
ListAgentlessTask	ListAgentlessTask	Queries agentless detection tasks.
ListAssetCleanConfig	ListAssetCleanConfig	Queries the configurations for cleaning offline hosts whose provider cannot be identified.
ListAssetInfoPublish	ListAssetInfoPublish	Queries the custom upgrade information about assets.
ListAssetRefreshTaskConfig	ListAssetRefreshTaskConfig	Queries the configurations of asset synchronization.
ListAssetSelectionSelectedTarget	ListAssetSelectionSelectedTarget	Queries the selected assets.
ListAssetSelectionTarget	ListAssetSelectionTarget	Queries the required asset.
ListAttackPathEvent	ListAttackPathEvent	Query Attack Path Events.
ListAttackPathWhitelist	ListAttackPathWhitelist	Query Attack Path Whitelist List.
ListAutoTagRules	ListAutoTagRules	Queries asset auto-tagging rules that are created by using the feature of asset management rules. You can create rules on the System Configuration > Feature Settings > Multi-cloud Configuration Management > Asset Management Rule page in the Security Center console.
ListAvailableAttackPath	ListAvailableAttackPath	Query Attack Path List.
ListAvailableHoneypot	ListAvailableHoneypot	Queries the information about available honeypot templates.
ListBackupRecord	ListBackupRecord	Queries backup records.
ListCheckRuleInstance	Query Cloud Security Posture Management Rule Instances	List all effective machines under the rule
ListCheckTypes	ListCheckTypes	Queries the types of check items that meet the specified conditions based on the ID of a baseline.
ListClientAlertMode	ListClientAlertMode	Queries the alert settings of assets. By default, the balanced mode is enabled. A detected list of assets can be returned only in strict mode.
ListClientUserDefineRuleTypes	ListClientUserDefineRuleTypes	Queries the supported types of custom defense rules.
ListClientUserDefineRules	ListClientUserDefineRules	Queries custom defense rules.
ListCloudVendorRegions	ListCloudVendorRegions	Queries the synchronization region configurations of other clouds on a site.
ListClusterCnnfStatusDetail	ListClusterCnnfStatusDetail	Queries the protection status of the container firewall.
ListClusterInterceptionConfig	ListClusterInterceptionConfig	Queries the defense rules that are created for a cluster.
ListClusterPluginInfo	ListClusterPluginInfo	Queries the status of plug-ins on clusters.
ListCompressFileDetectResult	ListCompressFileDetectResult	Queries the detection results of the files extracted from a package.
ListContainerDefenseRule	ListContainerDefenseRule	Queries a list of rules for non-image program defense.
ListContainerDefenseRuleClusters	ListContainerDefenseRuleClusters	Queries a list of clusters that are included in a rule for non-image program defense.
ListCriteriaStrategy	ListCriteriaStrategy	Queries the IDs and names of rules configured for proactive defense for containers.
ListFileProtectEvent	ListFileProtectEvent	Queries core file monitoring rules that meet the specified filter condition.
ListFileProtectPluginStatus	ListFileProtectPluginStatus	Retrieves information about the Security Center agent installed on servers on which core file monitoring rules take effect. The information includes the installation status of the Security Center agent and whether the core file monitoring feature is supported.
ListFileProtectRule	ListFileProtectRule	Queries core file monitoring rules.
ListGroups	ListGroups	Queries the server groups.
ListHoneypot	ListHoneypot	Queries the information about honeypots.
ListHoneypotAlarmEvents	ListHoneypotAlarmEvents	Queries the information about alert events that are generated.
ListHoneypotAttackerPortrait	ListHoneypotAttackerPortrait	Queries the attacker profile based on the source IP address of the attack.
ListHoneypotAttackerSource	ListHoneypotAttackerSource	Queries the attack source IP addresses that are used to attack a honeypot.
ListHoneypotEventFlows	ListHoneypotEventFlows	Retrieves the details of an intrusion event in a honeypot.
ListHoneypotEvents	ListHoneypotEvents	Queries the intrusion events detected by honeypots.
ListHoneypotNode	ListHoneypotNode	Queries the information about management nodes.
ListHoneypotPreset	ListHoneypotPreset	Queries honeypot templates.
ListHoneypotProbe	ListHoneypotProbe	Queries probes.
ListImageBuildRiskItem	ListImageBuildRiskItem	Queries the types of risky image build commands.
ListImageRisk	ListImageRisk	Queries security information about a container image.
ListInstanceRiskLevels	ListInstanceRiskLevels	Queries the risk levels of instances.
ListInstanceRiskNum	ListInstanceRiskNum	Queries the statistics about risks in instances.
ListInterceptionHistory	ListInterceptionHistory	Queries the alerts generated by defense rules.
ListInterceptionRulePage	ListInterceptionRulePage	Queries defense rules that are configured for the container firewall feature.
ListInterceptionTargetPage	ListInterceptionTargetPage	Queries the network objects that are protected by the container firewall feature.
ListLogShipperRegions	ListLogShipperRegions	Queries the regions supported by the log delivery feature that uses the pay-as-you-go billing method.
ListOpaClusterStrategyNew	ListOpaClusterStrategyNew	Queries at-risk image blocking rules.
ListOperationCheck	View details of repair or rollback tasks	Query the list of instance results under the operation check item
ListOssBucket	ListOssBucket	Queries Object Storage Service (OSS) buckets.
ListOssBucketScanInfo	ListOssBucketScanInfo	Queries the risk information of an Object Storage Service (OSS) bucket.
ListPluginForUuid	ListPluginForUuid	Queries the information about plug-ins on a server.
ListPodRisk	ListPodRisk	Queries the security risks of a pod.
ListPrivateK8s	ListPrivateK8s	Queries the information about the self-managed Kubernetes clusters that are added to Security Center.
ListPrivateRegistryList	ListPrivateRegistryList	Queries image repositories.
ListPrivateRegistryType	ListPrivateRegistryType	Queries the number of image repositories of each type.
ListPublishBatch	ListPublishBatch	Query the details of a release batch for upgrade.
ListRdDefaultSyncList	ListRdDefaultSyncList	Queries the automatic management policies of members that are added to Security Center for multi-account management. The members in the automatic control management directory are automatically added to the member list of Security Center.
ListRuleTargetAll	ListRuleTargetAll	Queries the network objects based on which a specified cluster is protected.
ListSasContainerWebDefenseRule	ListSasContainerWebDefenseRule	Queries rules for container tamper-proofing.
ListSupportAttackPathAsset	ListSupportAttackPathAsset	Query the list of supported cloud products for attacks.
ListSupportObjectSuffix	ListSupportObjectSuffix	Queries supported file suffixes.
ListSystemAggregationRules	ListSystemAggregationRules	Queries the details about the aggregation types of system defense rules.
ListSystemClientRuleTypes	ListSystemClientRuleTypes	Queries the types of system rules.
ListSystemClientRules	ListSystemClientRules	Queries system defense rules.
ListSystemRuleAggregationTypes	ListSystemRuleAggregationTypes	Queries the aggregation types of system defense rules.
ListTargetByBatch	Query Targets by Batch	Query Targets by Batch
ListUnfinishedOnceTask	ListUnfinishedOnceTask	Queries tasks that are not complete by task type.
ListUninstallAegisMachines	ListUninstallAegisMachines	Queries the information about the servers whose Security Center agent is not installed.
ListUserVpc	Get User VPC Data by Region	Get VPC Data
ListUuidsByWebPath	ListUuidsByWebPath	Queries protected assets by using the paths to specific web directories.
ListVirusScanMachine	ListVirusScanMachine	Queries servers on which virus detection and removal tasks are performed.
ListVirusScanMachineEvent	ListVirusScanMachineEvent	Queries the alert events that are generated for viruses detected on a server.
ListVirusScanTask	ListVirusScanTask	Queries virus scan tasks based on conditions such as the task type, task status, and server information.
ListVulGlobalConfig	ListVulGlobalConfig	Queries the global configurations of vulnerability detection.
MarkMonitorAccounts	MarkMonitorAccounts	Marks members for multi-account management. Mark selected members as followed. In the Security Center console, the drop-down list above the left-side navigation pane displays the followed members.
ModifyAccessKeyLeakDeal	ModifyAccessKeyLeakDeal	Handles AccessKey pair leaks.
ModifyAntiBruteForceRule	ModifyAntiBruteForceRule	Modifies a defense rule against brute-force attacks.
ModifyAppVulScanCycle	ModifyAppVulScanCycle	Configures a scan cycle for application vulnerabilities.
ModifyAssetCleanConfig	ModifyAssetCleanConfig	Modifies the configurations for cleaning offline hosts whose provider cannot be identified.
ModifyAssetGroup	ModifyAssetGroup	Changes the server group to which one or more servers belong.
ModifyAssetImportant	ModifyAssetImportant	Modifies the importance of an asset.
ModifyAttestor	ModifyAttestor	Modifies the information about a witness that is created by using the container signature feature.
ModifyAutoDelConfig	ModifyAutoDelConfig	Specifies the number of days after which a detected vulnerability is automatically deleted.
ModifyBackupPolicy	ModifyBackupPolicy	Modifies an anti-ransomware policy.
ModifyBackupPolicyStatus	ModifyBackupPolicyStatus	Enables or disables an anti-ransomware policy.
ModifyCheckRule	Modify the inspection rules for Cloud Security Posture Management	Modify the rule settings for cloud product configuration checks
ModifyClientConfSetup	ModifyClientConfSetup	Modifies the resource configurations of the Security Center agent.
ModifyClientConfStrategy	ModifyClientConfStrategy	Modifies an agent configuration policy.
ModifyClientUserDefineRule	ModifyClientUserDefineRule	Modifies a custom defense rule.
ModifyCloudVendorTrialConfig	Modify the audit log configuration information for multi-cloud access	Modify the Trail configuration information for the AK
ModifyClusterCnnfStatusUserConfirm	ModifyClusterCnnfStatusUserConfirm	Fixes the blocking status of clusters whose status is Normal to be confirmed.
ModifyConcernNecessity	ModifyConcernNecessity	Modifies the priority to fix vulnerabilities.
ModifyContainerDefenseRule	ModifyContainerDefenseRule	Modifies a rule for non-image program defense.
ModifyContainerDefenseRuleSwitch	ModifyContainerDefenseRuleSwitch	Changes the status of non-image program defense rules.
ModifyContainerPluginRule	ModifyContainerPluginRule	Modifies the defense rule against container escapes.
ModifyContainerScanConfig	ModifyContainerScanConfig	Updates the configurations of vulnerability scan for a running container.
ModifyCustomBlockRecord	ModifyCustomBlockRecord	Modifies a custom IP address blocking policy.
ModifyCycleTask	ModifyCycleTask	Modifies the execution cycle of periodic tasks, including image scan, urgent vulnerability scan, and virus detection tasks.
ModifyDingTalkStatus	ModifyDingTalkStatus	Changes the notification status of a DingTalk chatbot.
ModifyGroupProperty	ModifyGroupProperty	Changes the name of a server group.
ModifyIdcProbe	ModifyIdcProbe	Updates the configurations of an IDC probe.
ModifyImageFixCycleConfig	ModifyImageFixCycleConfig	Updates the configurations of a scheduled image fix.
ModifyImageRegistry	ModifyImageRegistry	Modifies the transfer time of an image repository.
ModifyInstanceAntiBruteForceRule	ModifyInstanceAntiBruteForceRule	Modifies the defense rule against brute-force attacks that is applied to a specified server.
ModifyInterceptionRule	ModifyInterceptionRule	Modifies a proactive defense rule for containers.
ModifyInterceptionRuleSwitch	ModifyInterceptionRuleSwitch	Enables or disables a proactive defense rule for containers.
ModifyInterceptionTarget	ModifyInterceptionTarget	Modifies the information about a network object of the container firewall feature.
ModifyLogMetaStatus	ModifyLogMetaStatus	Enables or disables the log analysis feature.
ModifyLoginBaseConfig	ModifyLoginBaseConfig	Modifies the logon configuration for a specified asset.
ModifyLoginSwitchConfig	ModifyLoginSwitchConfig	Enables or disables the logon security settings for a specific asset.
ModifyOpenLogShipper	ModifyOpenLogShipper	Activates Simple Log Service.
ModifyOperateVul	ModifyOperateVul	Handles detected vulnerabilities. You can fix, check, or ignore the vulnerabilities.
ModifyProcessWhiteList	ModifyProcessWhiteList	Adds a process to or removes a process from the whitelist by using the application whitelist feature.
ModifyPropertyScheduleConfig	ModifyPropertyScheduleConfig	Modifies the collection frequency of asset fingerprints for an automatic periodic collection task.
ModifyRefreshProcessInfo	ModifyRefreshProcessInfo	Refreshes the list of processes that are associated with a Linux software vulnerability.
ModifySasContainerWebDefenseRule	ModifySasContainerWebDefenseRule	Modifies a rule for container tamper-proofing.
ModifySearchCondition	ModifySearchCondition	Modifies common filter conditions to search for assets.
ModifySecurityCheckScheduleConfig	ModifySecurityCheckScheduleConfig	Specifies the time when an automatic configuration check on cloud services runs.
ModifySecurityEventMarkMissIndividually	ModifySecurityEventMarkMissIndividually	Modifies the alert handling rule for alerts that are added to the whitelist by asset.
ModifySoarStrategySubscribe	ModifySoarStrategySubscribe	Creates or deletes a policy template on the My Policies tab of the Playbook page.
ModifyStartVulScan	ModifyStartVulScan	Enables the quick scan feature. You can also enable the feature on the Vulnerabilities page of the Security Center console.
ModifyStrategy	ModifyStrategy	Modifies a baseline check policy.
ModifyStrategyTarget	ModifyStrategyTarget	Modifies the servers to which a baseline check policy is applied.
ModifyTagWithUuid	ModifyTagWithUuid	Modifies the names of the tags that are added to assets, or modifies the tags for assets.
ModifyUniBackupPolicy	ModifyUniBackupPolicy	Modifies an anti-ransomware policy for databases.
ModifyVpcHoneyPot	ModifyVpcHoneyPot	Enables or disables a honeypot.
ModifyVulConfig	ModifyVulConfig	Updates the configurations of the vulnerability scan feature.
ModifyVulTarget	ModifyVulTarget	Updates the configurations of the vulnerability scan feature for a server.
ModifyVulTargetConfig	ModifyVulTargetConfig	Configures vulnerability detection for a server.
ModifyVulWhitelistTarget	ModifyVulWhitelistTarget	Modifies the servers that are added to a vulnerability whitelist.
ModifyWebLockCreateConfig	ModifyWebLockCreateConfig	Adds a directory to protect for a specified server.
ModifyWebLockDeleteConfig	ModifyWebLockDeleteConfig	Deletes a directory on a specified server from the protected directories of web tamper proofing.
ModifyWebLockProcessStatus	ModifyWebLockProcessStatus	Changes the status of processes for web tamper proofing.
ModifyWebLockRefresh	ModifyWebLockRefresh	Refreshes the status of the web tamper proofing feature for a server.
ModifyWebLockStart	ModifyWebLockStart	Configures and enables web tamper proofing for a specified server.
ModifyWebLockStatus	ModifyWebLockStatus	Enables or disables web tamper proofing for a server.
ModifyWebLockUnbind	ModifyWebLockUnbind	Disables web tamper proofing for a specified server.
ModifyWebLockUpdateConfig	ModifyWebLockUpdateConfig	Modifies protection policy for a specified server.
ModifyWebPath	ModifyWebPath	Modifies a custom web directory.
OpenBackupAutoConfig	OpenBackupAutoConfig	Enables the automatic configuration of anti-ransomware policies for servers in the managed anti-ransomware feature. You can call this operation only after you purchase the managed anti-ransomware feature.
OpenSensitiveFileScan	OpenSensitiveFileScan	Enables or disables sensitive file scan.
OperateAgentClientInstall	OperateAgentClientInstall	Installs the Security Center agent on servers.
OperateApplication	OperateApplication	Adds or deletes container applications for tamper proofing.
OperateBucketScanTask	OperateBucketScanTask	Manages an Object Storage Service (OSS) bucket check task.
OperateCommonOverallConfig	OperateCommonOverallConfig	Enables or disables a feature by type.
OperateCommonTargetConfig	OperateCommonTargetConfig	Configures features by type. The features include container image scan, local file detection, container network visualization, and container escape prevention.
OperateImageBaselineWhitelist	OperateImageBaselineWhitelist	Adds a check item of an image baseline to the whitelist, or removes a check item of an image baseline from the whitelist.
OperateImageVul	OperateImageVul	Handles an image vulnerability, such as fixing the image vulnerability, verifying the fix of the image vulnerability, ignoring the image vulnerability, or canceling ignoring the image vulnerability.
OperateSuspiciousOverallConfig	OperateSuspiciousOverallConfig	Enables or disables a feature that detects exceptions.
OperateSuspiciousTargetConfig	OperateSuspiciousTargetConfig	Configures the scope on which proactive defense takes effect.
OperateSwitchStatus	OperateSwitchStatus	Changes the status of a rule for container tamper-proofing.
OperateVirusEvents	OperateVirusEvents	Handles alert events that are generated by the antivirus feature. You can perform in-depth detection and removal, add alert events to the whitelist, ignore alert events, or manually handle alert events.
OperateVuls	OperateVuls	Fixes Linux software vulnerabilities.
OperateWebLockFileEvents	OperateWebLockFileEvents	Handles alert events that are generated for web tamper proofing.
OperationCancelIgnoreSuspEvent	OperationCancelIgnoreSuspEvent	Cancels ignoring alert events.
OperationCustomizeReportChart	OperationCustomizeReportChart	Modifies the chart of a security report.
OperationSuspEvents	OperationSuspEvents	Handles multiple exceptions at a time.
PageImageRegistry	PageImageRegistry	Queries image repositories by page.
PauseClient	PauseClient	Enables or disables the Security Center agent.
ProcessSoarStrategyTask	Execute Strategy Tasks in the Task Center	Modify the status of strategy tasks
PublicCreateImageScanTask	PublicCreateImageScanTask	Creates an image scan task.
PublicPreCheckImageScanTask	PublicPreCheckImageScanTask	Queries the number of images to scan in an image scan task and the quota for container image scan to be consumed by the task.
PublicSyncAndCreateImageScanTask	PublicSyncAndCreateImageScanTask	Adds images to Security Center and creates an image scan task to scan the images.
QueryAttackCount	QueryAttackCount	Queries the number of alert events in each attack phase.
QueryDiscoverDatabase	QueryDiscoverDatabase	Queries the progress of a database scan task.
QueryGroupIdByGroupName	QueryGroupIdByGroupName	Queries the ID of an asset group by using the name of the asset group.
QueryGroupedSecurityEventMarkMissList	QueryGroupedSecurityEventMarkMissList	Queries whitelist rules.
QueryGuidTaskList	QueryGuidTaskList	Queries the list of beginner tasks. Security Center provides rewards for users who complete tasks. The rewards include the quota for a value-added feature and log storage capacity.
QueryJenkinsImageRegistryPersistenceDay	QueryJenkinsImageRegistryPersistenceDay	Queries the retention period of images that are stored in a Jenkins image repository.
QueryPreCheckDatabase	QueryPreCheckDatabase	Queries the result of a database precheck task.
RebootMachine	RebootMachine	Restarts a server. Only Windows servers are supported.
ReceiveFunctionTrialRewardByAliUid	ReceiveFunctionTrialRewardByAliUid	Receives a reward that allows you to enable a free trial of the cloud honeypot feature or the feature of SDK for malicious file detection. You can receive a reward after you complete the required task.
RefreshAssets	RefreshAssets	Synchronizes assets.
RefreshContainerAssets	RefreshContainerAssets	Refreshes the statistics of container assets in the Assets module.
RefreshOssBucketScanInfo	RefreshOssBucketScanInfo	Refreshes the list of Object Storage Service (OSS) buckets.
RefreshRegistryToken	RefreshRegistryToken	Updates an image token.
RemoveCheckInstanceResultWhiteList	RemoveCheckInstanceResultWhiteList	Removes an instance from the whitelist.
ResetHoneypot	ResetHoneypot	Resets a honeypot.
ResetLogShipper	ResetLogShipper	Resets and upgrades the log analysis feature. You can call this operation only when the log analysis feature uses the pay-as-you-go billing method.
RetryAgentlessTask	RetryAgentlessTask	Retries agentless detection tasks.
RetryInstallProbe	RetryInstallProbe	Retry installing the honeypot probe.
RollbackSuspEventQuaraFile	RollbackSuspEventQuaraFile	Restores a quarantined file.
SasInstallCode	SasInstallCode	Queries the installation verification code that is used to run the installation command of the Security Center agent.
SaveImageBaselineStrategy	SaveImageBaselineStrategy	Saves a baseline check policy for images.
SaveSuspEventUserSetting	SaveSuspEventUserSetting	Saves alert settings.
SaveWhiteListStrategy	SaveWhiteListStrategy	Creates an application whitelist policy.
SaveWhiteListStrategyAssets	SaveWhiteListStrategyAssets	Manages the servers to which an application whitelist policy is applied.
SendCustomizeReport	SendCustomizeReport	Sends a security report to an email address that you specify. You can send only a security report whose statistics are collected in a custom time range.
SetBuildRiskDefineRuleConfig	SetBuildRiskDefineRuleConfig	Modifies configurations for scanning image build command risks.
SetClusterInterceptionConfig	SetClusterInterceptionConfig	Configures the status of the container firewall feature.
SetImageBuildRiskStatus	SetImageBuildRiskStatus	Specifies the status of an image build command risk.
SetImageSensitiveFileStatus	SetImageSensitiveFileStatus	Modifies the status of sensitive files in an image.
SetRegistryScanDayNum	SetRegistryScanDayNum	Specifies a cycle to scan images for image repositories. Unit: days.
SetSensitiveDefineRuleConfig	SetSensitiveDefineRuleConfig	Configure the check rules of sensitive files.
SetSyncRefreshRegion	SetSyncRefreshRegion	Configures the regions from which you want to synchronize assets.
StartBaselineSecurityCheck	StartBaselineSecurityCheck	Checks cloud service configurations. You can check all items or a specific item and verify whether an item is checked.
StartDiscoverDatabaseTask	StartDiscoverDatabaseTask	Starts a database scan task.
StartHoneypot	StartHoneypot	Starts a honeypot.
StartIdcProbeScan	StartIdcProbeScan	Starts an IDC scan task.
StartPreCheckDatabase	StartPreCheckDatabase	Starts a database precheck task.
StartVirusScanTask	StartVirusScanTask	Performs a virus scan task on a server or multiple servers.
StopHoneypot	StopHoneypot	Stops a honeypot.
SubmitTenantCheck	SubmitTenantCheck	Submits a free quick scan task, which includes vulnerability detection in the free category and free check items of Cloud Security Posture Management (CSPM).
TriggerCheck	TriggerCheck	Triggers ISO 27001 compliance checks of Security Center.
UnMarkMonitorAccounts	UnMarkMonitorAccounts	Cancel marking for members. Remove followed members from the list. In the Security Center console, the drop-down list above the left-side navigation pane no longer displays the members.
UnbindAegis	UnbindAegis	Unbinds servers that are not deployed on Alibaba Cloud from Security Center.
UninstallBackupClient	UninstallBackupClient	Uninstalls the anti-ransomware agent.
UninstallUniBackupAgent	UninstallUniBackupAgent	Uninstalls the database backup agent.
UpdateAlarmEvent	UpdateAlarmEvent	Updates the status of the honeypot installation time.
UpdateAttackPathSensitiveAssetConfig	UpdateAttackPathSensitiveAssetConfig	Update the configuration of sensitive assets in the attack path.
UpdateAttackPathWhitelist	UpdateAttackPathWhitelist	Update Attack Path Whitelist.
UpdateClientAlertMode	UpdateClientAlertMode	Modifies alerting settings for servers.
UpdateCommonSwitchConfig	UpdateCommonSwitchConfig	Updates the settings of common switches.
UpdateCustomizeReportStatus	UpdateCustomizeReportStatus	Changes the status of a security report.
UpdateFileProtectRule	UpdateFileProtectRule	Modifies the content of a core file monitoring rule based on the ID of the rule.
UpdateFileUploadLimit	UpdateFileUploadLimit	Modifies the queries per second (QPS) limit on the files uploaded from the client.
UpdateHoneypot	UpdateHoneypot	Modifies the configuration of a specified honeypot.
UpdateHoneypotNode	UpdateHoneypotNode	Modifies the configuration of a specified management node.
UpdateHoneypotPreset	UpdateHoneypotPreset	Updates the configurations of the specified honeypot template.
UpdateHoneypotProbe	UpdateHoneypotProbe	Modifies the attributes of a specified probe.
UpdateHoneypotProbeBind	UpdateHoneypotProbeBind	Modifies a probe service.
UpdateHybridProxy	UpdateHybridProxy	Updates the Security Center agent that is installed on a proxy server in a hybrid cloud.
UpdateImageEventOperation	UpdateImageEventOperation	Updates an alert handling rule.
UpdateImageVulWhitelistTarget	UpdateImageVulWhitelistTarget	Updates the vulnerability whitelist of an image.
UpdateJenkinsImageRegistryName	UpdateJenkinsImageRegistryName	Modifies the name of a Jenkins image repository.
UpdateJenkinsImageRegistryPersistenceDay	UpdateJenkinsImageRegistryPersistenceDay	Modifies the retention period of images that are stored in a Jenkins image repository.
UpdateOpaStrategyNew	UpdateOpaStrategyNew	Updates the blocking rule for at-risk images.
UpdatePublishAutoUpgrade	UpdatePublishAutoUpgrade	Enables or disables automatic upgrade.
UpdatePublishBatch	UpdatePublishBatch	Updates a release batch.
UpdatePublishCron	UpdatePublishCron	Modifies the configuration of the client upgrade time. If you want to call this operation, contact technical support.
UpdatePublishGraySwitch	UpdatePublishGraySwitch	Updates the settings of the canary release feature for agent upgrade. If you want to use the feature, contact technical support.
UpdateSelectionKeyByType	UpdateSelectionKeyByType	Updates the unique identifier of an asset selection.
UpdateStrictEventName	Modify Strict Mode Alarm Status	Update the selected strict events in strict mode
UpdateTargetListByBatch	UpdateTargetListByBatch	Updates machines in a release batch.
UpdateWhiteListStrategyStatus	UpdateWhiteListStrategyStatus	Updates the status of an application whitelist policy.
UpgradeBackupPolicyVersion	UpgradeBackupPolicyVersion	Upgrades the version of an anti-ransomware policy.
UpgradeHoneypotNode	UpgradeHoneypotNode	Upgrades the version of the management node to which a honeypot belongs.
UpgradeVersionByUuids	UpgradeVersionByUuids	Manually upgrades the client version on assets.
UploadedHoneyPotFile	UploadedHoneyPotFile	Uploads a honeypot file.
ValidateHcWarnings	ValidateHcWarnings	Verifies whether risk items are fixed. If a risk item is fixed, the status of the related check item is updated to Passed.
VerifyCheckCustomConfig	Validate custom configuration for situational awareness	Customization and validation of check items and repair parameters