Device Security
Rapid7 Attribute Reference
Table of Contents
Expand All
|
Collapse All
Device Security Docs
Rapid7 Attribute Reference
This reference lists the attributes that Device Security collects from Rapid7,
their names as stored in Device Security, and the Device Security fields they map to.
When Device Security integrates with Rapid7, it enhances vulnerability
management for your devices. The attributes in this reference cover scan engine
records, site asset data, network interface details, and individual vulnerability
findings.
The third-party attribute name in Device Security refers to the attribute name
as it appears in the Assets Inventory table and in Query Engine. This follows the format
of third-party-name.attribute-name.
When viewing the attribute name in the Assets Inventory table column selector or on a
Device Details page, where the third-party name can be found as a header for the
attributes section, then the third-party name is removed from the attribute name.
For example, micrsoft_defender_xdr.macAddress would appear in the
Query Builder and in the Assets Inventory table, but under Device DetailsAttributesIntegration Specific AttributesMicrosoft Defender, the attribute would appear as macAddress.
Scan Engine Attributes
Device Security collects scan engine attributes from the Rapid7 InsightVM scan engines API. Each record describes a Rapid7 scan engine deployed in the environment.
|
Rapid7 Attribute
|
Device Security Attribute Name
|
Device Security Common Attribute*
|
Description
|
|---|---|---|---|
|
lastUpdatedDate
|
rapid7.scan_engine.lastUpdatedDate
|
Last Third-Party Activity
|
Date when the device information was last updated
|
|
address
|
rapid7.scan_engine.address
|
ipv4_address; id
|
Network address of the device
|
|
isAWSPreAuthEngine
|
rapid7.isAWSPreAuthEngine
|
—
|
Whether the device is an AWS pre-auth engine
|
|
sites
|
rapid7.sites
|
—
|
Sites associated with the device
|
|
status
|
rapid7.scan_engine.status
|
—
|
Current status of the device
|
|
serialNumber
|
rapid7.scan_engine.serialNumber
|
Serial Number
|
Serial number of the device
|
|
productVersion
|
rapid7.scan_engine.productVersion
|
—
|
Product version of the device
|
|
port
|
rapid7.scan_engine.port
|
—
|
Network port information
|
|
name
|
rapid7.scan_engine.name
|
—
|
Name of the device
|
|
lastRefreshedDate
|
rapid7.scan_engine.lastRefreshedDate
|
—
|
Date when the device information was last refreshed
|
|
id
|
rapid7.scan_engine.id
|
—
|
Unique identifier for the device in Rapid7
|
|
contentVersion
|
rapid7.scan_engine.contentVersion
|
—
|
Content version of Rapid7
|
Site Asset Attributes
Device Security collects asset attributes from the Rapid7 InsightVM site assets API. Each record describes a network asset discovered and scanned within a configured site.
|
Rapid7 Attribute
|
Device Security Attribute Name
|
Device Security Common Attribute*
|
Description
|
|---|---|---|---|
|
os
|
rapid7.os
|
os_combined
|
Operating system of the device
|
|
osFingerprint.vendor
|
rapid7.osFingerprint.vendor
|
OS Name
|
Vendor
|
|
osFingerprint.version
|
rapid7.osFingerprint.version
|
OS Version
|
Version
|
|
osFingerprint.family
|
rapid7.osFingerprint.family
|
OS Group
|
Family
|
|
osFingerprint.systemName
|
rapid7.osFingerprint.systemName
|
—
|
System name
|
|
osFingerprint.product
|
rapid7.osFingerprint.product
|
—
|
Product
|
|
osFingerprint.description
|
rapid7.osFingerprint.description
|
—
|
Description
|
|
osFingerprint.architecture
|
rapid7.osFingerprint.architecture
|
—
|
Architecture
|
|
osCertainty
|
rapid7.osCertainty
|
—
|
Certainty level of the operating system detection
|
|
mac
|
—
|
MAC; id
|
MAC address
|
|
osFingerprint
|
—
|
raw_os
|
OS fingerprint
|
|
software
|
—
|
third_party_learned_installed_software
|
Software installed on the device
|
|
riskScore
|
rapid7.riskScore
|
—
|
Risk score
|
|
rawRiskScore
|
rapid7.rawRiskScore
|
—
|
Raw risk score
|
|
ip
|
rapid7.ip
|
ipv4_address
|
IP address of the device
|
|
id
|
rapid7.assetId
|
—
|
Unique identifier for the device in Rapid7
|
|
assessedForVulnerabilities
|
rapid7.assessedForVulnerabilities
|
—
|
Whether the device was assessed for vulnerabilities
|
|
assessedForPolicies
|
rapid7.assessedForPolicies
|
—
|
Whether the device was assessed for policies
|
|
hostName
|
rapid7.hostName
|
Hostname
|
Host name of the device
|
|
site.scanEngine
|
rapid7.scanEngineId
|
—
|
Scan engine
|
|
site.id
|
rapid7.siteId
|
—
|
Unique identifier for the device
|
|
site.lastScanTime
|
rapid7.site.lastScanTime
|
—
|
Last scan time
|
|
site.scanTemplate
|
rapid7.scanTemplate
|
—
|
Scan template
|
|
site.name
|
rapid7.siteName
|
—
|
Name of the device
|
Interface Attributes
Device Security collects network interface attributes from the Rapid7 InsightVM site assets interface data. Each record describes a network interface on a scanned asset.
|
Rapid7 Attribute
|
Device Security Attribute Name
|
Device Security Common Attribute*
|
Description
|
|---|---|---|---|
|
addresses
|
—
|
third_party_learned_network_interfaces
|
Addresses associated with the device
|
|
ip
|
—
|
ipv4_address
|
IP address of the device
|
|
mac
|
—
|
id; MAC
|
MAC address
|
Vulnerability Attributes
Device Security collects vulnerability attributes from the Rapid7 InsightVM vulnerability assets API. Each record describes a vulnerability finding on a network asset.
|
Rapid7 Attribute
|
Device Security Attribute Name
|
Device Security Common Attribute*
|
Description
|
|---|---|---|---|
|
published
|
rapid7.published
|
detected_time
|
Published date
|
|
severity
|
rapid7.severity
|
risk_level; severity
|
Severity level
|
|
solution
|
rapid7.solution
|
solution
|
Solution information for vulnerability
|
|
asset_id
|
rapid7.assetId
|
—
|
Asset identifier
|
|
title
|
rapid7.title
|
title
|
Title information
|
|
severityScore
|
rapid7.severityScore
|
—
|
Severity score
|
|
riskScore
|
rapid7.riskScore
|
—
|
Risk score
|
|
mac
|
—
|
id
|
MAC address
|
|
cvssScore
|
—
|
cvss_base_score
|
CVSS score for the vulnerability
|
|
cveId
|
—
|
cve
|
CVE identifier for the vulnerability
|
* Only some attributes map to a Device Security Common Attribute.