AttackSimulation.ReadWrite.All
Allows the app to read, create, and update attack simulation and training data for an organization for the signed-in user.
Graph Methods
Type: A = Application Permission, D = Delegate Permission
Delegate Permission
|
|
| Id |
27608d7c-2c66-4cad-a657-951d575f5a60 |
| Consent Type |
User |
| Display String |
Read, create, and update attack simulation data of an organization |
| Description |
Allows the app to read, create, and update attack simulation and training data for an organization for the signed-in user. |
Application Permission
|
|
| Id |
e125258e-8c8a-42a8-8f55-ab502afa52f3 |
| Display String |
Read, create, and update all attack simulation data of an organization |
| Description |
Allows the app to read, create, and update attack simulation and training data for an organization without a signed-in user. |
Resources
| Property |
Type |
Description |
| type |
accountTargetContentType |
The type of account target content. Possible values are: unknown,includeAll, addressBook, unknownFutureValue. |
| Property |
Type |
Description |
| displayName |
String |
Display name of the user. Inherited from identity. |
| email |
String |
Email address of the user. |
| id |
String |
The unique identifier for the user. Inherited from identity. |
| Property |
Type |
Description |
| attackTechnique |
simulationAttackTechnique |
The social engineering technique used in the attack simulation and training campaign. Supports $filter and $orderby. Possible values are: unknown, credentialHarvesting, attachmentMalware, driveByUrl, linkInAttachment, linkToMalwareFile, unknownFutureValue. For more information on the types of social engineering attack techniques, see simulations. |
| attackType |
simulationAttackType |
Attack type of the attack simulation and training campaign. Supports $filter and $orderby. Possible values are: unknown, social, cloud, endpoint, unknownFutureValue. |
| automationId |
String |
Unique identifier for the attack simulation automation. |
| completionDateTime |
DateTimeOffset |
Date and time of completion of the attack simulation and training campaign. Supports $filter and $orderby. |
| createdBy |
emailIdentity |
Identity of the user who created the attack simulation and training campaign. |
| createdDateTime |
DateTimeOffset |
Date and time of creation of the attack simulation and training campaign. |
| description |
String |
Description of the attack simulation and training campaign. |
| displayName |
String |
Display name of the attack simulation and training campaign. Supports $filter and $orderby. |
| id |
String |
Unique identifier for the attack simulation and training campaign. Inherited from entity. |
| isAutomated |
Boolean |
Flag that represents if the attack simulation and training campaign was created from a simulation automation flow. Supports $filter and $orderby. |
| lastModifiedBy |
emailIdentity |
Identity of the user who most recently modified the attack simulation and training campaign. |
| lastModifiedDateTime |
DateTimeOffset |
Date and time of the most recent modification of the attack simulation and training campaign. |
| launchDateTime |
DateTimeOffset |
Date and time of the launch/start of the attack simulation and training campaign. Supports $filter and $orderby. |
| payloadDeliveryPlatform |
payloadDeliveryPlatform |
Method of delivery of the phishing payload used in the attack simulation and training campaign. Possible values are: unknown, sms, email, teams, unknownFutureValue. |
| report |
simulationReport |
Report of the attack simulation and training campaign. |
| status |
simulationStatus |
Status of the attack simulation and training campaign. Supports $filter and $orderby. Possible values are: unknown, draft, running, scheduled, succeeded, failed, cancelled, excluded, unknownFutureValue. |