@x12i/memorix-retrieval 1.19.0 → 1.20.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/catalox-seeds/inputs/entity-descriptors/assets.json +73 -38
- package/catalox-seeds/inputs/entity-descriptors/topology-subnets.json +127 -0
- package/catalox-seeds/inputs/entity-descriptors/variabilities-groups.json +22 -33
- package/catalox-seeds/inputs/entity-descriptors/vulnerabilities.json +19 -30
- package/catalox-seeds/inputs/item-descriptors/asset-detail-item.json +20 -6
- package/catalox-seeds/inputs/item-descriptors/topology-subnet-detail-item.json +41 -0
- package/catalox-seeds/inputs/item-descriptors/variabilities-group-detail-item.json +5 -5
- package/catalox-seeds/inputs/item-descriptors/vulnerability-detail-item.json +5 -5
- package/catalox-seeds/inputs/list-descriptors/assets-main-list.json +4 -0
- package/catalox-seeds/inputs/list-descriptors/critical-vulnerabilities-list.json +5 -5
- package/catalox-seeds/inputs/list-descriptors/critical-vulnerabilities-slice.json +1 -1
- package/catalox-seeds/inputs/list-descriptors/topology-subnets-main-list.json +23 -0
- package/catalox-seeds/inputs/list-descriptors/variabilities-groups-main-list.json +3 -3
- package/catalox-seeds/inputs/list-descriptors/vulnerabilities-main-list.json +3 -3
- package/catalox-seeds/inputs/memorix-descriptors.bundle.json +328 -330
- package/catalox-seeds/inputs/memorix-item-descriptors.catalog.json +16 -16
- package/catalox-seeds/inputs/memorix-item-descriptors.items.json +16 -16
- package/catalox-seeds/inputs/memorix-list-descriptors.catalog.json +11 -11
- package/catalox-seeds/inputs/memorix-list-descriptors.items.json +41 -11
- package/catalox-seeds/inputs/memorix-object-type-descriptors.catalog.json +279 -303
- package/catalox-seeds/inputs/memorix-object-type-descriptors.items.json +279 -303
- package/catalox-seeds/memorix-retrieval-descriptors.manifest.json +411 -147
- package/dist/data/record-identity.d.ts +1 -1
- package/dist/data/record-identity.d.ts.map +1 -1
- package/dist/data/record-identity.js +30 -17
- package/dist/data/record-identity.js.map +1 -1
- package/dist/seeds/build-manifest.d.ts.map +1 -1
- package/dist/seeds/build-manifest.js +29 -1
- package/dist/seeds/build-manifest.js.map +1 -1
- package/dist/seeds/default-seed-spec.d.ts.map +1 -1
- package/dist/seeds/default-seed-spec.js +4 -0
- package/dist/seeds/default-seed-spec.js.map +1 -1
- package/dist/seeds/merge-for-apply.d.ts.map +1 -1
- package/dist/seeds/merge-for-apply.js +3 -1
- package/dist/seeds/merge-for-apply.js.map +1 -1
- package/dist/tests/collection-parser.test.js +8 -3
- package/dist/tests/collection-parser.test.js.map +1 -1
- package/dist/tests/seed-manifest.test.js +3 -3
- package/dist/tests/seed-manifest.test.js.map +1 -1
- package/dist/tests/source-provenance.test.js +14 -8
- package/dist/tests/source-provenance.test.js.map +1 -1
- package/docs/MEMORIX-DATABASE-CONVENTIONS.md +48 -27
- package/package.json +4 -4
|
@@ -7,22 +7,26 @@
|
|
|
7
7
|
{
|
|
8
8
|
"id": "assets",
|
|
9
9
|
"entityName": "assets",
|
|
10
|
+
"defaultListDescriptorId": "assets-main-list",
|
|
11
|
+
"defaultItemDescriptorId": "asset-detail-item",
|
|
12
|
+
"target": "entity",
|
|
10
13
|
"collectionPrefix": "assets",
|
|
11
14
|
"identity": {
|
|
12
15
|
"allowedIdFields": [
|
|
13
|
-
"
|
|
14
|
-
"
|
|
16
|
+
"identity.recordId",
|
|
17
|
+
"identity.targetId"
|
|
15
18
|
],
|
|
16
19
|
"requiredExactlyOne": true,
|
|
17
|
-
"defaultIdField": "
|
|
20
|
+
"defaultIdField": "identity.recordId"
|
|
18
21
|
},
|
|
19
22
|
"defaults": {
|
|
20
23
|
"canonicalContentType": "snapshots",
|
|
21
24
|
"dataRoot": "data",
|
|
22
|
-
"effectiveDatePath": "capturedAt",
|
|
25
|
+
"effectiveDatePath": "lifecycle.capturedAt",
|
|
23
26
|
"fallbackEffectiveDatePaths": [
|
|
27
|
+
"capturedAt",
|
|
24
28
|
"snapshot.capturedAt",
|
|
25
|
-
"data.
|
|
29
|
+
"data.lastSeen"
|
|
26
30
|
]
|
|
27
31
|
},
|
|
28
32
|
"contentTypes": {
|
|
@@ -31,10 +35,11 @@
|
|
|
31
35
|
"collection": "assets-snapshots",
|
|
32
36
|
"dataRoot": "data",
|
|
33
37
|
"isCanonical": true,
|
|
34
|
-
"effectiveDatePath": "capturedAt",
|
|
38
|
+
"effectiveDatePath": "lifecycle.capturedAt",
|
|
35
39
|
"fallbackEffectiveDatePaths": [
|
|
40
|
+
"capturedAt",
|
|
36
41
|
"snapshot.capturedAt",
|
|
37
|
-
"data.
|
|
42
|
+
"data.lastSeen"
|
|
38
43
|
]
|
|
39
44
|
}
|
|
40
45
|
},
|
|
@@ -43,7 +48,7 @@
|
|
|
43
48
|
"label": "IP Address",
|
|
44
49
|
"source": {
|
|
45
50
|
"contentType": "snapshots",
|
|
46
|
-
"path": "data.
|
|
51
|
+
"path": "data.assetIp"
|
|
47
52
|
},
|
|
48
53
|
"humanReadable": true,
|
|
49
54
|
"sortable": true,
|
|
@@ -56,7 +61,7 @@
|
|
|
56
61
|
"label": "Source",
|
|
57
62
|
"source": {
|
|
58
63
|
"contentType": "snapshots",
|
|
59
|
-
"path": "
|
|
64
|
+
"path": "sourceFacts.values._source.rawValue"
|
|
60
65
|
},
|
|
61
66
|
"humanReadable": true,
|
|
62
67
|
"sortable": true,
|
|
@@ -69,7 +74,7 @@
|
|
|
69
74
|
"label": "Host Name",
|
|
70
75
|
"source": {
|
|
71
76
|
"contentType": "snapshots",
|
|
72
|
-
"path": "data.
|
|
77
|
+
"path": "data.assetName"
|
|
73
78
|
},
|
|
74
79
|
"humanReadable": true,
|
|
75
80
|
"sortable": true,
|
|
@@ -82,7 +87,7 @@
|
|
|
82
87
|
"label": "XDR Operational Status",
|
|
83
88
|
"source": {
|
|
84
89
|
"contentType": "snapshots",
|
|
85
|
-
"path": "data.
|
|
90
|
+
"path": "data.operationalStatus"
|
|
86
91
|
},
|
|
87
92
|
"humanReadable": true,
|
|
88
93
|
"sortable": true,
|
|
@@ -95,7 +100,7 @@
|
|
|
95
100
|
"label": "XDR Agent Status",
|
|
96
101
|
"source": {
|
|
97
102
|
"contentType": "snapshots",
|
|
98
|
-
"path": "data.
|
|
103
|
+
"path": "data.agentStatus"
|
|
99
104
|
},
|
|
100
105
|
"humanReadable": true,
|
|
101
106
|
"sortable": true,
|
|
@@ -108,7 +113,7 @@
|
|
|
108
113
|
"label": "Agent Type",
|
|
109
114
|
"source": {
|
|
110
115
|
"contentType": "snapshots",
|
|
111
|
-
"path": "data.
|
|
116
|
+
"path": "data.agentType"
|
|
112
117
|
},
|
|
113
118
|
"humanReadable": true,
|
|
114
119
|
"sortable": true,
|
|
@@ -121,7 +126,7 @@
|
|
|
121
126
|
"label": "Last Seen",
|
|
122
127
|
"source": {
|
|
123
128
|
"contentType": "snapshots",
|
|
124
|
-
"path": "data.
|
|
129
|
+
"path": "data.lastSeen"
|
|
125
130
|
},
|
|
126
131
|
"humanReadable": true,
|
|
127
132
|
"sortable": true,
|
|
@@ -130,24 +135,11 @@
|
|
|
130
135
|
"item": true,
|
|
131
136
|
"valueType": "datetime"
|
|
132
137
|
},
|
|
133
|
-
"users": {
|
|
134
|
-
"label": "Users",
|
|
135
|
-
"source": {
|
|
136
|
-
"contentType": "snapshots",
|
|
137
|
-
"path": "data.xdr.users"
|
|
138
|
-
},
|
|
139
|
-
"humanReadable": true,
|
|
140
|
-
"sortable": false,
|
|
141
|
-
"filterable": true,
|
|
142
|
-
"list": true,
|
|
143
|
-
"item": true,
|
|
144
|
-
"valueType": "array"
|
|
145
|
-
},
|
|
146
138
|
"hasVulnerabilities": {
|
|
147
139
|
"label": "Has Vulnerabilities",
|
|
148
140
|
"source": {
|
|
149
141
|
"contentType": "snapshots",
|
|
150
|
-
"path": "data.
|
|
142
|
+
"path": "data.hasVulnerabilities"
|
|
151
143
|
},
|
|
152
144
|
"humanReadable": true,
|
|
153
145
|
"sortable": true,
|
|
@@ -160,7 +152,7 @@
|
|
|
160
152
|
"label": "Critical Vulnerabilities",
|
|
161
153
|
"source": {
|
|
162
154
|
"contentType": "snapshots",
|
|
163
|
-
"path": "
|
|
155
|
+
"path": "analytics.vulnerabilities.critical"
|
|
164
156
|
},
|
|
165
157
|
"humanReadable": true,
|
|
166
158
|
"sortable": true,
|
|
@@ -173,7 +165,7 @@
|
|
|
173
165
|
"label": "High Vulnerabilities",
|
|
174
166
|
"source": {
|
|
175
167
|
"contentType": "snapshots",
|
|
176
|
-
"path": "
|
|
168
|
+
"path": "analytics.vulnerabilities.high"
|
|
177
169
|
},
|
|
178
170
|
"humanReadable": true,
|
|
179
171
|
"sortable": true,
|
|
@@ -186,7 +178,7 @@
|
|
|
186
178
|
"label": "Medium Vulnerabilities",
|
|
187
179
|
"source": {
|
|
188
180
|
"contentType": "snapshots",
|
|
189
|
-
"path": "
|
|
181
|
+
"path": "analytics.vulnerabilities.medium"
|
|
190
182
|
},
|
|
191
183
|
"humanReadable": true,
|
|
192
184
|
"sortable": true,
|
|
@@ -199,7 +191,7 @@
|
|
|
199
191
|
"label": "Low Vulnerabilities",
|
|
200
192
|
"source": {
|
|
201
193
|
"contentType": "snapshots",
|
|
202
|
-
"path": "
|
|
194
|
+
"path": "analytics.vulnerabilities.low"
|
|
203
195
|
},
|
|
204
196
|
"humanReadable": true,
|
|
205
197
|
"sortable": true,
|
|
@@ -212,7 +204,7 @@
|
|
|
212
204
|
"label": "Potential Impact",
|
|
213
205
|
"source": {
|
|
214
206
|
"contentType": "snapshots",
|
|
215
|
-
"path": "
|
|
207
|
+
"path": "insights.potentialImpact.level"
|
|
216
208
|
},
|
|
217
209
|
"humanReadable": true,
|
|
218
210
|
"sortable": true,
|
|
@@ -225,7 +217,7 @@
|
|
|
225
217
|
"label": "Impact Confidence",
|
|
226
218
|
"source": {
|
|
227
219
|
"contentType": "snapshots",
|
|
228
|
-
"path": "
|
|
220
|
+
"path": "insights.potentialImpact.confidence"
|
|
229
221
|
},
|
|
230
222
|
"humanReadable": true,
|
|
231
223
|
"sortable": true,
|
|
@@ -238,7 +230,7 @@
|
|
|
238
230
|
"label": "Potential Impact Story",
|
|
239
231
|
"source": {
|
|
240
232
|
"contentType": "snapshots",
|
|
241
|
-
"path": "
|
|
233
|
+
"path": "insights.potentialImpact.story"
|
|
242
234
|
},
|
|
243
235
|
"humanReadable": false,
|
|
244
236
|
"sortable": false,
|
|
@@ -251,7 +243,7 @@
|
|
|
251
243
|
"label": "Paths Count",
|
|
252
244
|
"source": {
|
|
253
245
|
"contentType": "snapshots",
|
|
254
|
-
"path": "
|
|
246
|
+
"path": "analytics.paths.total"
|
|
255
247
|
},
|
|
256
248
|
"humanReadable": true,
|
|
257
249
|
"sortable": true,
|
|
@@ -264,7 +256,7 @@
|
|
|
264
256
|
"label": "Raw XDR",
|
|
265
257
|
"source": {
|
|
266
258
|
"contentType": "snapshots",
|
|
267
|
-
"path": "
|
|
259
|
+
"path": "sourceFacts.values.xdrRaw.rawValue"
|
|
268
260
|
},
|
|
269
261
|
"humanReadable": false,
|
|
270
262
|
"sortable": false,
|
|
@@ -280,7 +272,7 @@
|
|
|
280
272
|
"type": "oneToMany",
|
|
281
273
|
"source": {
|
|
282
274
|
"contentType": "snapshots",
|
|
283
|
-
"path": "data.
|
|
275
|
+
"path": "data.assetIp"
|
|
284
276
|
},
|
|
285
277
|
"target": {
|
|
286
278
|
"contentType": "snapshots",
|
|
@@ -291,54 +283,61 @@
|
|
|
291
283
|
"targetFields": [
|
|
292
284
|
"vulnerabilityId",
|
|
293
285
|
"pluginName",
|
|
294
|
-
"
|
|
286
|
+
"severity",
|
|
295
287
|
"riskLevel",
|
|
296
288
|
"priorityScore",
|
|
297
|
-
"
|
|
289
|
+
"cveId"
|
|
298
290
|
]
|
|
299
291
|
}
|
|
300
292
|
}
|
|
301
293
|
},
|
|
302
294
|
{
|
|
303
|
-
"id": "
|
|
304
|
-
"entityName": "
|
|
305
|
-
"
|
|
295
|
+
"id": "variabilities-groups",
|
|
296
|
+
"entityName": "variabilities-groups",
|
|
297
|
+
"defaultListDescriptorId": "variabilities-groups-main-list",
|
|
298
|
+
"defaultItemDescriptorId": "variabilities-group-detail-item",
|
|
299
|
+
"target": "entity",
|
|
300
|
+
"collectionPrefix": "variabilities-groups",
|
|
306
301
|
"identity": {
|
|
307
302
|
"allowedIdFields": [
|
|
308
|
-
"
|
|
309
|
-
"
|
|
303
|
+
"identity.recordId",
|
|
304
|
+
"identity.targetId"
|
|
310
305
|
],
|
|
311
306
|
"requiredExactlyOne": true,
|
|
312
|
-
"defaultIdField": "
|
|
307
|
+
"defaultIdField": "identity.recordId"
|
|
313
308
|
},
|
|
314
309
|
"defaults": {
|
|
315
310
|
"canonicalContentType": "snapshots",
|
|
316
311
|
"dataRoot": "data",
|
|
317
|
-
"effectiveDatePath": "capturedAt",
|
|
312
|
+
"effectiveDatePath": "lifecycle.capturedAt",
|
|
318
313
|
"fallbackEffectiveDatePaths": [
|
|
314
|
+
"capturedAt",
|
|
319
315
|
"snapshot.capturedAt",
|
|
316
|
+
"data.enrichedAt",
|
|
320
317
|
"data.enrichment.enrichedAt"
|
|
321
318
|
]
|
|
322
319
|
},
|
|
323
320
|
"contentTypes": {
|
|
324
321
|
"snapshots": {
|
|
325
322
|
"postfix": "snapshots",
|
|
326
|
-
"collection": "
|
|
323
|
+
"collection": "variabilities-groups-snapshots",
|
|
327
324
|
"dataRoot": "data",
|
|
328
325
|
"isCanonical": true,
|
|
329
|
-
"effectiveDatePath": "capturedAt",
|
|
326
|
+
"effectiveDatePath": "lifecycle.capturedAt",
|
|
330
327
|
"fallbackEffectiveDatePaths": [
|
|
328
|
+
"capturedAt",
|
|
331
329
|
"snapshot.capturedAt",
|
|
330
|
+
"data.enrichedAt",
|
|
332
331
|
"data.enrichment.enrichedAt"
|
|
333
332
|
]
|
|
334
333
|
}
|
|
335
334
|
},
|
|
336
335
|
"properties": {
|
|
337
|
-
"
|
|
338
|
-
"label": "
|
|
336
|
+
"groupId": {
|
|
337
|
+
"label": "Group ID",
|
|
339
338
|
"source": {
|
|
340
339
|
"contentType": "snapshots",
|
|
341
|
-
"path": "
|
|
340
|
+
"path": "sourceFacts.values.id.rawValue"
|
|
342
341
|
},
|
|
343
342
|
"humanReadable": true,
|
|
344
343
|
"sortable": true,
|
|
@@ -347,11 +346,11 @@
|
|
|
347
346
|
"item": true,
|
|
348
347
|
"valueType": "string"
|
|
349
348
|
},
|
|
350
|
-
"
|
|
351
|
-
"label": "
|
|
349
|
+
"type": {
|
|
350
|
+
"label": "Type",
|
|
352
351
|
"source": {
|
|
353
352
|
"contentType": "snapshots",
|
|
354
|
-
"path": "
|
|
353
|
+
"path": "sourceFacts.values.type.rawValue"
|
|
355
354
|
},
|
|
356
355
|
"humanReadable": true,
|
|
357
356
|
"sortable": true,
|
|
@@ -360,24 +359,24 @@
|
|
|
360
359
|
"item": true,
|
|
361
360
|
"valueType": "string"
|
|
362
361
|
},
|
|
363
|
-
"
|
|
364
|
-
"label": "
|
|
362
|
+
"pluginId": {
|
|
363
|
+
"label": "Plugin ID",
|
|
365
364
|
"source": {
|
|
366
365
|
"contentType": "snapshots",
|
|
367
|
-
"path": "
|
|
366
|
+
"path": "sourceFacts.values.plugin_id.rawValue"
|
|
368
367
|
},
|
|
369
368
|
"humanReadable": true,
|
|
370
369
|
"sortable": true,
|
|
371
370
|
"filterable": true,
|
|
372
371
|
"list": true,
|
|
373
372
|
"item": true,
|
|
374
|
-
"valueType": "
|
|
373
|
+
"valueType": "number"
|
|
375
374
|
},
|
|
376
|
-
"
|
|
377
|
-
"label": "
|
|
375
|
+
"pluginName": {
|
|
376
|
+
"label": "Plugin Name",
|
|
378
377
|
"source": {
|
|
379
378
|
"contentType": "snapshots",
|
|
380
|
-
"path": "data.
|
|
379
|
+
"path": "data.name"
|
|
381
380
|
},
|
|
382
381
|
"humanReadable": true,
|
|
383
382
|
"sortable": true,
|
|
@@ -386,11 +385,11 @@
|
|
|
386
385
|
"item": true,
|
|
387
386
|
"valueType": "string"
|
|
388
387
|
},
|
|
389
|
-
"
|
|
390
|
-
"label": "
|
|
388
|
+
"pluginFamily": {
|
|
389
|
+
"label": "Plugin Family",
|
|
391
390
|
"source": {
|
|
392
391
|
"contentType": "snapshots",
|
|
393
|
-
"path": "data.
|
|
392
|
+
"path": "data.vulnerability_family"
|
|
394
393
|
},
|
|
395
394
|
"humanReadable": true,
|
|
396
395
|
"sortable": true,
|
|
@@ -399,83 +398,71 @@
|
|
|
399
398
|
"item": true,
|
|
400
399
|
"valueType": "string"
|
|
401
400
|
},
|
|
402
|
-
"
|
|
403
|
-
"label": "
|
|
401
|
+
"severity": {
|
|
402
|
+
"label": "Severity",
|
|
404
403
|
"source": {
|
|
405
404
|
"contentType": "snapshots",
|
|
406
|
-
"path": "data.
|
|
405
|
+
"path": "data.severity"
|
|
407
406
|
},
|
|
408
407
|
"humanReadable": true,
|
|
409
408
|
"sortable": true,
|
|
410
409
|
"filterable": true,
|
|
411
410
|
"list": true,
|
|
412
411
|
"item": true,
|
|
413
|
-
"valueType": "
|
|
412
|
+
"valueType": "string"
|
|
414
413
|
},
|
|
415
|
-
"
|
|
416
|
-
"label": "
|
|
414
|
+
"affectedEntities": {
|
|
415
|
+
"label": "Affected Entities",
|
|
417
416
|
"source": {
|
|
418
417
|
"contentType": "snapshots",
|
|
419
|
-
"path": "
|
|
418
|
+
"path": "associatedData.affectedAssets"
|
|
420
419
|
},
|
|
421
420
|
"humanReadable": true,
|
|
422
|
-
"sortable":
|
|
421
|
+
"sortable": false,
|
|
423
422
|
"filterable": true,
|
|
424
|
-
"list":
|
|
423
|
+
"list": false,
|
|
425
424
|
"item": true,
|
|
426
|
-
"valueType": "
|
|
425
|
+
"valueType": "array"
|
|
427
426
|
},
|
|
428
|
-
"
|
|
429
|
-
"label": "
|
|
427
|
+
"affectedEntitiesCount": {
|
|
428
|
+
"label": "Affected Entities Count",
|
|
430
429
|
"source": {
|
|
431
430
|
"contentType": "snapshots",
|
|
432
|
-
"path": "
|
|
431
|
+
"path": "associatedData.affectedAssets"
|
|
433
432
|
},
|
|
434
433
|
"humanReadable": true,
|
|
435
|
-
"sortable":
|
|
436
|
-
"filterable":
|
|
434
|
+
"sortable": false,
|
|
435
|
+
"filterable": false,
|
|
437
436
|
"list": true,
|
|
438
437
|
"item": true,
|
|
439
|
-
"valueType": "
|
|
438
|
+
"valueType": "array",
|
|
439
|
+
"format": "count"
|
|
440
440
|
},
|
|
441
|
-
"
|
|
442
|
-
"label": "
|
|
441
|
+
"source": {
|
|
442
|
+
"label": "Source",
|
|
443
443
|
"source": {
|
|
444
444
|
"contentType": "snapshots",
|
|
445
|
-
"path": "data.
|
|
445
|
+
"path": "data.source"
|
|
446
446
|
},
|
|
447
447
|
"humanReadable": true,
|
|
448
448
|
"sortable": true,
|
|
449
449
|
"filterable": true,
|
|
450
|
-
"list":
|
|
450
|
+
"list": false,
|
|
451
451
|
"item": true,
|
|
452
452
|
"valueType": "string"
|
|
453
453
|
},
|
|
454
|
-
"
|
|
455
|
-
"label": "
|
|
454
|
+
"cveId": {
|
|
455
|
+
"label": "CVE",
|
|
456
456
|
"source": {
|
|
457
457
|
"contentType": "snapshots",
|
|
458
|
-
"path": "data.
|
|
458
|
+
"path": "data.cveId"
|
|
459
459
|
},
|
|
460
460
|
"humanReadable": true,
|
|
461
461
|
"sortable": true,
|
|
462
462
|
"filterable": true,
|
|
463
463
|
"list": true,
|
|
464
464
|
"item": true,
|
|
465
|
-
"valueType": "
|
|
466
|
-
},
|
|
467
|
-
"cveIds": {
|
|
468
|
-
"label": "CVEs",
|
|
469
|
-
"source": {
|
|
470
|
-
"contentType": "snapshots",
|
|
471
|
-
"path": "data.cveIds"
|
|
472
|
-
},
|
|
473
|
-
"humanReadable": true,
|
|
474
|
-
"sortable": false,
|
|
475
|
-
"filterable": true,
|
|
476
|
-
"list": true,
|
|
477
|
-
"item": true,
|
|
478
|
-
"valueType": "array"
|
|
465
|
+
"valueType": "string"
|
|
479
466
|
},
|
|
480
467
|
"riskLevel": {
|
|
481
468
|
"label": "Risk Level",
|
|
@@ -529,19 +516,6 @@
|
|
|
529
516
|
"item": true,
|
|
530
517
|
"valueType": "number"
|
|
531
518
|
},
|
|
532
|
-
"epssPercentile": {
|
|
533
|
-
"label": "EPSS Percentile",
|
|
534
|
-
"source": {
|
|
535
|
-
"contentType": "snapshots",
|
|
536
|
-
"path": "data.enrichment.epss.percentile"
|
|
537
|
-
},
|
|
538
|
-
"humanReadable": true,
|
|
539
|
-
"sortable": true,
|
|
540
|
-
"filterable": true,
|
|
541
|
-
"list": true,
|
|
542
|
-
"item": true,
|
|
543
|
-
"valueType": "number"
|
|
544
|
-
},
|
|
545
519
|
"knownExploited": {
|
|
546
520
|
"label": "Known Exploited",
|
|
547
521
|
"source": {
|
|
@@ -581,136 +555,39 @@
|
|
|
581
555
|
"item": true,
|
|
582
556
|
"valueType": "string"
|
|
583
557
|
},
|
|
584
|
-
"
|
|
585
|
-
"label": "
|
|
586
|
-
"source": {
|
|
587
|
-
"contentType": "snapshots",
|
|
588
|
-
"path": "data.exploitabilityScore"
|
|
589
|
-
},
|
|
590
|
-
"humanReadable": true,
|
|
591
|
-
"sortable": true,
|
|
592
|
-
"filterable": true,
|
|
593
|
-
"list": true,
|
|
594
|
-
"item": true,
|
|
595
|
-
"valueType": "number"
|
|
596
|
-
},
|
|
597
|
-
"exploitabilityLevel": {
|
|
598
|
-
"label": "Exploitability Level",
|
|
599
|
-
"source": {
|
|
600
|
-
"contentType": "snapshots",
|
|
601
|
-
"path": "data.exploitabilityLevel"
|
|
602
|
-
},
|
|
603
|
-
"humanReadable": true,
|
|
604
|
-
"sortable": true,
|
|
605
|
-
"filterable": true,
|
|
606
|
-
"list": true,
|
|
607
|
-
"item": true,
|
|
608
|
-
"valueType": "string"
|
|
609
|
-
},
|
|
610
|
-
"assetMatched": {
|
|
611
|
-
"label": "Asset Matched",
|
|
612
|
-
"source": {
|
|
613
|
-
"contentType": "snapshots",
|
|
614
|
-
"path": "data.assetMatched"
|
|
615
|
-
},
|
|
616
|
-
"humanReadable": true,
|
|
617
|
-
"sortable": true,
|
|
618
|
-
"filterable": true,
|
|
619
|
-
"list": false,
|
|
620
|
-
"item": true,
|
|
621
|
-
"valueType": "boolean"
|
|
622
|
-
},
|
|
623
|
-
"networkExposure": {
|
|
624
|
-
"label": "Network Exposure",
|
|
558
|
+
"enrichedAt": {
|
|
559
|
+
"label": "Enriched At",
|
|
625
560
|
"source": {
|
|
626
561
|
"contentType": "snapshots",
|
|
627
|
-
"path": "data.
|
|
562
|
+
"path": "data.enrichedAt"
|
|
628
563
|
},
|
|
629
564
|
"humanReadable": true,
|
|
630
565
|
"sortable": true,
|
|
631
566
|
"filterable": true,
|
|
632
|
-
"list": true,
|
|
633
|
-
"item": true,
|
|
634
|
-
"valueType": "string"
|
|
635
|
-
},
|
|
636
|
-
"attackPathCount": {
|
|
637
|
-
"label": "Attack Path Count",
|
|
638
|
-
"source": {
|
|
639
|
-
"contentType": "snapshots",
|
|
640
|
-
"path": "data.mitreAnalysis.networkContext.paths.paths"
|
|
641
|
-
},
|
|
642
|
-
"humanReadable": true,
|
|
643
|
-
"sortable": false,
|
|
644
|
-
"filterable": false,
|
|
645
|
-
"list": false,
|
|
646
|
-
"item": true,
|
|
647
|
-
"valueType": "array"
|
|
648
|
-
},
|
|
649
|
-
"mitreTechniques": {
|
|
650
|
-
"label": "MITRE Techniques",
|
|
651
|
-
"source": {
|
|
652
|
-
"contentType": "snapshots",
|
|
653
|
-
"path": "data.mitreAnalysis.techniques"
|
|
654
|
-
},
|
|
655
|
-
"humanReadable": true,
|
|
656
|
-
"sortable": false,
|
|
657
|
-
"filterable": true,
|
|
658
567
|
"list": false,
|
|
659
568
|
"item": true,
|
|
660
|
-
"valueType": "
|
|
661
|
-
},
|
|
662
|
-
"mitreAnalysis": {
|
|
663
|
-
"label": "MITRE Analysis",
|
|
664
|
-
"source": {
|
|
665
|
-
"contentType": "snapshots",
|
|
666
|
-
"path": "data.mitreAnalysis"
|
|
667
|
-
},
|
|
668
|
-
"humanReadable": false,
|
|
669
|
-
"sortable": false,
|
|
670
|
-
"filterable": false,
|
|
671
|
-
"list": false,
|
|
672
|
-
"item": true,
|
|
673
|
-
"valueType": "object"
|
|
569
|
+
"valueType": "datetime"
|
|
674
570
|
}
|
|
675
571
|
},
|
|
676
572
|
"relations": {
|
|
677
|
-
"
|
|
678
|
-
"targetEntity": "
|
|
679
|
-
"type": "
|
|
680
|
-
"source": {
|
|
681
|
-
"contentType": "snapshots",
|
|
682
|
-
"path": "data.assetIp"
|
|
683
|
-
},
|
|
684
|
-
"target": {
|
|
685
|
-
"contentType": "snapshots",
|
|
686
|
-
"path": "data.ip_address"
|
|
687
|
-
},
|
|
688
|
-
"defaultMode": "extendFields",
|
|
689
|
-
"targetFields": [
|
|
690
|
-
"ipAddress",
|
|
691
|
-
"hostName",
|
|
692
|
-
"xdrOperationalStatus",
|
|
693
|
-
"xdrAgentStatus",
|
|
694
|
-
"potentialImpactLevel"
|
|
695
|
-
]
|
|
696
|
-
},
|
|
697
|
-
"vulnerabilityGroup": {
|
|
698
|
-
"targetEntity": "variabilities-groups",
|
|
699
|
-
"type": "manyToOne",
|
|
573
|
+
"groupVulnerabilities": {
|
|
574
|
+
"targetEntity": "vulnerabilities",
|
|
575
|
+
"type": "oneToMany",
|
|
700
576
|
"source": {
|
|
701
577
|
"contentType": "snapshots",
|
|
702
|
-
"path": "
|
|
578
|
+
"path": "sourceFacts.values.plugin_id.rawValue"
|
|
703
579
|
},
|
|
704
580
|
"target": {
|
|
705
581
|
"contentType": "snapshots",
|
|
706
|
-
"path": "
|
|
582
|
+
"path": "sourceFacts.values.pluginId.rawValue"
|
|
707
583
|
},
|
|
708
|
-
"defaultMode": "
|
|
584
|
+
"defaultMode": "array",
|
|
585
|
+
"defaultArrayProperty": "vulnerabilities",
|
|
709
586
|
"targetFields": [
|
|
710
|
-
"
|
|
587
|
+
"vulnerabilityId",
|
|
588
|
+
"assetIp",
|
|
711
589
|
"pluginName",
|
|
712
|
-
"
|
|
713
|
-
"affectedEntitiesCount",
|
|
590
|
+
"severity",
|
|
714
591
|
"riskLevel",
|
|
715
592
|
"priorityScore"
|
|
716
593
|
]
|
|
@@ -718,47 +595,50 @@
|
|
|
718
595
|
}
|
|
719
596
|
},
|
|
720
597
|
{
|
|
721
|
-
"id": "
|
|
722
|
-
"entityName": "
|
|
723
|
-
"
|
|
598
|
+
"id": "vulnerabilities",
|
|
599
|
+
"entityName": "vulnerabilities",
|
|
600
|
+
"defaultListDescriptorId": "vulnerabilities-main-list",
|
|
601
|
+
"defaultItemDescriptorId": "vulnerability-detail-item",
|
|
602
|
+
"target": "event",
|
|
603
|
+
"collectionPrefix": "vulnerabilities",
|
|
724
604
|
"identity": {
|
|
725
605
|
"allowedIdFields": [
|
|
726
|
-
"
|
|
727
|
-
"
|
|
606
|
+
"identity.recordId",
|
|
607
|
+
"identity.targetId"
|
|
728
608
|
],
|
|
729
609
|
"requiredExactlyOne": true,
|
|
730
|
-
"defaultIdField": "
|
|
610
|
+
"defaultIdField": "identity.recordId"
|
|
731
611
|
},
|
|
732
612
|
"defaults": {
|
|
733
613
|
"canonicalContentType": "snapshots",
|
|
734
614
|
"dataRoot": "data",
|
|
735
|
-
"effectiveDatePath": "capturedAt",
|
|
615
|
+
"effectiveDatePath": "lifecycle.capturedAt",
|
|
736
616
|
"fallbackEffectiveDatePaths": [
|
|
617
|
+
"capturedAt",
|
|
737
618
|
"snapshot.capturedAt",
|
|
738
|
-
"data.enrichedAt",
|
|
739
619
|
"data.enrichment.enrichedAt"
|
|
740
620
|
]
|
|
741
621
|
},
|
|
742
622
|
"contentTypes": {
|
|
743
623
|
"snapshots": {
|
|
744
624
|
"postfix": "snapshots",
|
|
745
|
-
"collection": "
|
|
625
|
+
"collection": "vulnerabilities-snapshots",
|
|
746
626
|
"dataRoot": "data",
|
|
747
627
|
"isCanonical": true,
|
|
748
|
-
"effectiveDatePath": "capturedAt",
|
|
628
|
+
"effectiveDatePath": "lifecycle.capturedAt",
|
|
749
629
|
"fallbackEffectiveDatePaths": [
|
|
630
|
+
"capturedAt",
|
|
750
631
|
"snapshot.capturedAt",
|
|
751
|
-
"data.enrichedAt",
|
|
752
632
|
"data.enrichment.enrichedAt"
|
|
753
633
|
]
|
|
754
634
|
}
|
|
755
635
|
},
|
|
756
636
|
"properties": {
|
|
757
|
-
"
|
|
758
|
-
"label": "
|
|
637
|
+
"vulnerabilityId": {
|
|
638
|
+
"label": "Vulnerability ID",
|
|
759
639
|
"source": {
|
|
760
640
|
"contentType": "snapshots",
|
|
761
|
-
"path": "
|
|
641
|
+
"path": "sourceFacts.values.vulnerabilityId.rawValue"
|
|
762
642
|
},
|
|
763
643
|
"humanReadable": true,
|
|
764
644
|
"sortable": true,
|
|
@@ -767,11 +647,11 @@
|
|
|
767
647
|
"item": true,
|
|
768
648
|
"valueType": "string"
|
|
769
649
|
},
|
|
770
|
-
"
|
|
771
|
-
"label": "
|
|
650
|
+
"assetIp": {
|
|
651
|
+
"label": "Asset IP",
|
|
772
652
|
"source": {
|
|
773
653
|
"contentType": "snapshots",
|
|
774
|
-
"path": "data.
|
|
654
|
+
"path": "data.assetIp"
|
|
775
655
|
},
|
|
776
656
|
"humanReadable": true,
|
|
777
657
|
"sortable": true,
|
|
@@ -780,24 +660,24 @@
|
|
|
780
660
|
"item": true,
|
|
781
661
|
"valueType": "string"
|
|
782
662
|
},
|
|
783
|
-
"
|
|
784
|
-
"label": "
|
|
663
|
+
"assetType": {
|
|
664
|
+
"label": "Asset Type",
|
|
785
665
|
"source": {
|
|
786
666
|
"contentType": "snapshots",
|
|
787
|
-
"path": "data.
|
|
667
|
+
"path": "data.assetType"
|
|
788
668
|
},
|
|
789
669
|
"humanReadable": true,
|
|
790
670
|
"sortable": true,
|
|
791
671
|
"filterable": true,
|
|
792
672
|
"list": true,
|
|
793
673
|
"item": true,
|
|
794
|
-
"valueType": "
|
|
674
|
+
"valueType": "string"
|
|
795
675
|
},
|
|
796
|
-
"
|
|
797
|
-
"label": "
|
|
676
|
+
"assetZone": {
|
|
677
|
+
"label": "Asset Zone",
|
|
798
678
|
"source": {
|
|
799
679
|
"contentType": "snapshots",
|
|
800
|
-
"path": "data.
|
|
680
|
+
"path": "data.assetZone"
|
|
801
681
|
},
|
|
802
682
|
"humanReadable": true,
|
|
803
683
|
"sortable": true,
|
|
@@ -806,11 +686,11 @@
|
|
|
806
686
|
"item": true,
|
|
807
687
|
"valueType": "string"
|
|
808
688
|
},
|
|
809
|
-
"
|
|
810
|
-
"label": "
|
|
689
|
+
"assetHostname": {
|
|
690
|
+
"label": "Asset Hostname",
|
|
811
691
|
"source": {
|
|
812
692
|
"contentType": "snapshots",
|
|
813
|
-
"path": "data.
|
|
693
|
+
"path": "data.assetHostname"
|
|
814
694
|
},
|
|
815
695
|
"humanReadable": true,
|
|
816
696
|
"sortable": true,
|
|
@@ -819,84 +699,70 @@
|
|
|
819
699
|
"item": true,
|
|
820
700
|
"valueType": "string"
|
|
821
701
|
},
|
|
822
|
-
"
|
|
823
|
-
"label": "
|
|
702
|
+
"pluginId": {
|
|
703
|
+
"label": "Plugin ID",
|
|
824
704
|
"source": {
|
|
825
705
|
"contentType": "snapshots",
|
|
826
|
-
"path": "
|
|
706
|
+
"path": "sourceFacts.values.pluginId.rawValue"
|
|
827
707
|
},
|
|
828
708
|
"humanReadable": true,
|
|
829
709
|
"sortable": true,
|
|
830
710
|
"filterable": true,
|
|
831
711
|
"list": true,
|
|
832
712
|
"item": true,
|
|
833
|
-
"valueType": "
|
|
713
|
+
"valueType": "number"
|
|
834
714
|
},
|
|
835
|
-
"
|
|
836
|
-
"label": "
|
|
715
|
+
"pluginName": {
|
|
716
|
+
"label": "Plugin Name",
|
|
837
717
|
"source": {
|
|
838
718
|
"contentType": "snapshots",
|
|
839
|
-
"path": "data.
|
|
719
|
+
"path": "data.vulnerabilityName"
|
|
840
720
|
},
|
|
841
721
|
"humanReadable": true,
|
|
842
722
|
"sortable": true,
|
|
843
723
|
"filterable": true,
|
|
844
724
|
"list": true,
|
|
845
725
|
"item": true,
|
|
846
|
-
"valueType": "
|
|
726
|
+
"valueType": "string"
|
|
847
727
|
},
|
|
848
|
-
"
|
|
849
|
-
"label": "
|
|
728
|
+
"pluginFamily": {
|
|
729
|
+
"label": "Plugin Family",
|
|
850
730
|
"source": {
|
|
851
731
|
"contentType": "snapshots",
|
|
852
|
-
"path": "data.
|
|
732
|
+
"path": "data.vulnerabilityFamily"
|
|
853
733
|
},
|
|
854
734
|
"humanReadable": true,
|
|
855
|
-
"sortable":
|
|
735
|
+
"sortable": true,
|
|
856
736
|
"filterable": true,
|
|
857
|
-
"list": false,
|
|
858
|
-
"item": true,
|
|
859
|
-
"valueType": "array"
|
|
860
|
-
},
|
|
861
|
-
"affectedEntitiesCount": {
|
|
862
|
-
"label": "Affected Entities Count",
|
|
863
|
-
"source": {
|
|
864
|
-
"contentType": "snapshots",
|
|
865
|
-
"path": "data.affected_entities"
|
|
866
|
-
},
|
|
867
|
-
"humanReadable": true,
|
|
868
|
-
"sortable": false,
|
|
869
|
-
"filterable": false,
|
|
870
737
|
"list": true,
|
|
871
738
|
"item": true,
|
|
872
|
-
"valueType": "
|
|
873
|
-
"format": "count"
|
|
739
|
+
"valueType": "string"
|
|
874
740
|
},
|
|
875
|
-
"
|
|
876
|
-
"label": "
|
|
741
|
+
"severity": {
|
|
742
|
+
"label": "Severity",
|
|
877
743
|
"source": {
|
|
878
744
|
"contentType": "snapshots",
|
|
879
|
-
"path": "data.
|
|
745
|
+
"path": "data.severity"
|
|
880
746
|
},
|
|
881
747
|
"humanReadable": true,
|
|
882
748
|
"sortable": true,
|
|
883
749
|
"filterable": true,
|
|
884
|
-
"list":
|
|
750
|
+
"list": true,
|
|
885
751
|
"item": true,
|
|
886
752
|
"valueType": "string"
|
|
887
753
|
},
|
|
888
|
-
"
|
|
889
|
-
"label": "
|
|
754
|
+
"cveId": {
|
|
755
|
+
"label": "CVE",
|
|
890
756
|
"source": {
|
|
891
757
|
"contentType": "snapshots",
|
|
892
|
-
"path": "data.
|
|
758
|
+
"path": "data.cveId"
|
|
893
759
|
},
|
|
894
760
|
"humanReadable": true,
|
|
895
|
-
"sortable":
|
|
761
|
+
"sortable": true,
|
|
896
762
|
"filterable": true,
|
|
897
763
|
"list": true,
|
|
898
764
|
"item": true,
|
|
899
|
-
"valueType": "
|
|
765
|
+
"valueType": "string"
|
|
900
766
|
},
|
|
901
767
|
"riskLevel": {
|
|
902
768
|
"label": "Risk Level",
|
|
@@ -950,6 +816,19 @@
|
|
|
950
816
|
"item": true,
|
|
951
817
|
"valueType": "number"
|
|
952
818
|
},
|
|
819
|
+
"epssPercentile": {
|
|
820
|
+
"label": "EPSS Percentile",
|
|
821
|
+
"source": {
|
|
822
|
+
"contentType": "snapshots",
|
|
823
|
+
"path": "data.enrichment.epss.percentile"
|
|
824
|
+
},
|
|
825
|
+
"humanReadable": true,
|
|
826
|
+
"sortable": true,
|
|
827
|
+
"filterable": true,
|
|
828
|
+
"list": true,
|
|
829
|
+
"item": true,
|
|
830
|
+
"valueType": "number"
|
|
831
|
+
},
|
|
953
832
|
"knownExploited": {
|
|
954
833
|
"label": "Known Exploited",
|
|
955
834
|
"source": {
|
|
@@ -989,39 +868,136 @@
|
|
|
989
868
|
"item": true,
|
|
990
869
|
"valueType": "string"
|
|
991
870
|
},
|
|
992
|
-
"
|
|
993
|
-
"label": "
|
|
871
|
+
"exploitabilityScore": {
|
|
872
|
+
"label": "Exploitability Score",
|
|
994
873
|
"source": {
|
|
995
874
|
"contentType": "snapshots",
|
|
996
|
-
"path": "data.
|
|
875
|
+
"path": "data.exploitabilityScore"
|
|
876
|
+
},
|
|
877
|
+
"humanReadable": true,
|
|
878
|
+
"sortable": true,
|
|
879
|
+
"filterable": true,
|
|
880
|
+
"list": true,
|
|
881
|
+
"item": true,
|
|
882
|
+
"valueType": "number"
|
|
883
|
+
},
|
|
884
|
+
"exploitabilityLevel": {
|
|
885
|
+
"label": "Exploitability Level",
|
|
886
|
+
"source": {
|
|
887
|
+
"contentType": "snapshots",
|
|
888
|
+
"path": "data.exploitabilityLevel"
|
|
889
|
+
},
|
|
890
|
+
"humanReadable": true,
|
|
891
|
+
"sortable": true,
|
|
892
|
+
"filterable": true,
|
|
893
|
+
"list": true,
|
|
894
|
+
"item": true,
|
|
895
|
+
"valueType": "string"
|
|
896
|
+
},
|
|
897
|
+
"assetMatched": {
|
|
898
|
+
"label": "Asset Matched",
|
|
899
|
+
"source": {
|
|
900
|
+
"contentType": "snapshots",
|
|
901
|
+
"path": "data.assetMatched"
|
|
997
902
|
},
|
|
998
903
|
"humanReadable": true,
|
|
999
904
|
"sortable": true,
|
|
1000
905
|
"filterable": true,
|
|
1001
906
|
"list": false,
|
|
1002
907
|
"item": true,
|
|
1003
|
-
"valueType": "
|
|
908
|
+
"valueType": "boolean"
|
|
909
|
+
},
|
|
910
|
+
"networkExposure": {
|
|
911
|
+
"label": "Network Exposure",
|
|
912
|
+
"source": {
|
|
913
|
+
"contentType": "snapshots",
|
|
914
|
+
"path": "data.mitreAnalysis.networkContext.exposure"
|
|
915
|
+
},
|
|
916
|
+
"humanReadable": true,
|
|
917
|
+
"sortable": true,
|
|
918
|
+
"filterable": true,
|
|
919
|
+
"list": true,
|
|
920
|
+
"item": true,
|
|
921
|
+
"valueType": "string"
|
|
922
|
+
},
|
|
923
|
+
"attackPathCount": {
|
|
924
|
+
"label": "Attack Path Count",
|
|
925
|
+
"source": {
|
|
926
|
+
"contentType": "snapshots",
|
|
927
|
+
"path": "data.mitreAnalysis.networkContext.paths.paths"
|
|
928
|
+
},
|
|
929
|
+
"humanReadable": true,
|
|
930
|
+
"sortable": false,
|
|
931
|
+
"filterable": false,
|
|
932
|
+
"list": false,
|
|
933
|
+
"item": true,
|
|
934
|
+
"valueType": "array"
|
|
935
|
+
},
|
|
936
|
+
"mitreTechniques": {
|
|
937
|
+
"label": "MITRE Techniques",
|
|
938
|
+
"source": {
|
|
939
|
+
"contentType": "snapshots",
|
|
940
|
+
"path": "data.mitreAnalysis.techniques"
|
|
941
|
+
},
|
|
942
|
+
"humanReadable": true,
|
|
943
|
+
"sortable": false,
|
|
944
|
+
"filterable": true,
|
|
945
|
+
"list": false,
|
|
946
|
+
"item": true,
|
|
947
|
+
"valueType": "array"
|
|
948
|
+
},
|
|
949
|
+
"mitreAnalysis": {
|
|
950
|
+
"label": "MITRE Analysis",
|
|
951
|
+
"source": {
|
|
952
|
+
"contentType": "snapshots",
|
|
953
|
+
"path": "data.mitreAnalysis"
|
|
954
|
+
},
|
|
955
|
+
"humanReadable": false,
|
|
956
|
+
"sortable": false,
|
|
957
|
+
"filterable": false,
|
|
958
|
+
"list": false,
|
|
959
|
+
"item": true,
|
|
960
|
+
"valueType": "object"
|
|
1004
961
|
}
|
|
1005
962
|
},
|
|
1006
963
|
"relations": {
|
|
1007
|
-
"
|
|
1008
|
-
"targetEntity": "
|
|
1009
|
-
"type": "
|
|
964
|
+
"affectedAsset": {
|
|
965
|
+
"targetEntity": "assets",
|
|
966
|
+
"type": "manyToOne",
|
|
1010
967
|
"source": {
|
|
1011
968
|
"contentType": "snapshots",
|
|
1012
|
-
"path": "data.
|
|
969
|
+
"path": "data.assetIp"
|
|
1013
970
|
},
|
|
1014
971
|
"target": {
|
|
1015
972
|
"contentType": "snapshots",
|
|
1016
|
-
"path": "data.
|
|
973
|
+
"path": "data.assetIp"
|
|
1017
974
|
},
|
|
1018
|
-
"defaultMode": "
|
|
1019
|
-
"defaultArrayProperty": "vulnerabilities",
|
|
975
|
+
"defaultMode": "extendFields",
|
|
1020
976
|
"targetFields": [
|
|
1021
|
-
"
|
|
1022
|
-
"
|
|
977
|
+
"ipAddress",
|
|
978
|
+
"hostName",
|
|
979
|
+
"xdrOperationalStatus",
|
|
980
|
+
"xdrAgentStatus",
|
|
981
|
+
"potentialImpactLevel"
|
|
982
|
+
]
|
|
983
|
+
},
|
|
984
|
+
"vulnerabilityGroup": {
|
|
985
|
+
"targetEntity": "variabilities-groups",
|
|
986
|
+
"type": "manyToOne",
|
|
987
|
+
"source": {
|
|
988
|
+
"contentType": "snapshots",
|
|
989
|
+
"path": "sourceFacts.values.pluginId.rawValue"
|
|
990
|
+
},
|
|
991
|
+
"target": {
|
|
992
|
+
"contentType": "snapshots",
|
|
993
|
+
"path": "sourceFacts.values.plugin_id.rawValue"
|
|
994
|
+
},
|
|
995
|
+
"defaultMode": "extendFields",
|
|
996
|
+
"targetFields": [
|
|
997
|
+
"groupId",
|
|
1023
998
|
"pluginName",
|
|
1024
|
-
"
|
|
999
|
+
"severity",
|
|
1000
|
+
"affectedEntitiesCount",
|
|
1025
1001
|
"riskLevel",
|
|
1026
1002
|
"priorityScore"
|
|
1027
1003
|
]
|
|
@@ -1095,8 +1071,8 @@
|
|
|
1095
1071
|
"assetIp",
|
|
1096
1072
|
"pluginName",
|
|
1097
1073
|
"pluginFamily",
|
|
1098
|
-
"
|
|
1099
|
-
"
|
|
1074
|
+
"severity",
|
|
1075
|
+
"cveId",
|
|
1100
1076
|
"riskLevel",
|
|
1101
1077
|
"priorityScore",
|
|
1102
1078
|
"epss",
|
|
@@ -1111,7 +1087,7 @@
|
|
|
1111
1087
|
"assetIp",
|
|
1112
1088
|
"pluginName",
|
|
1113
1089
|
"pluginFamily",
|
|
1114
|
-
"
|
|
1090
|
+
"severity",
|
|
1115
1091
|
"riskLevel",
|
|
1116
1092
|
"priorityScore",
|
|
1117
1093
|
"epss",
|
|
@@ -1138,16 +1114,16 @@
|
|
|
1138
1114
|
},
|
|
1139
1115
|
"filters": [
|
|
1140
1116
|
{
|
|
1141
|
-
"property": "
|
|
1142
|
-
"operator": "
|
|
1143
|
-
"value":
|
|
1117
|
+
"property": "severity",
|
|
1118
|
+
"operator": "eq",
|
|
1119
|
+
"value": "critical"
|
|
1144
1120
|
}
|
|
1145
1121
|
],
|
|
1146
1122
|
"fields": [
|
|
1147
1123
|
"vulnerabilityId",
|
|
1148
1124
|
"assetIp",
|
|
1149
1125
|
"pluginName",
|
|
1150
|
-
"
|
|
1126
|
+
"severity",
|
|
1151
1127
|
"riskLevel",
|
|
1152
1128
|
"priorityScore",
|
|
1153
1129
|
"epss",
|
|
@@ -1157,7 +1133,7 @@
|
|
|
1157
1133
|
"extensions": [],
|
|
1158
1134
|
"includeRelations": [],
|
|
1159
1135
|
"allowedSorts": [
|
|
1160
|
-
"
|
|
1136
|
+
"severity",
|
|
1161
1137
|
"riskLevel",
|
|
1162
1138
|
"priorityScore",
|
|
1163
1139
|
"epss",
|
|
@@ -1185,9 +1161,9 @@
|
|
|
1185
1161
|
"groupId",
|
|
1186
1162
|
"pluginName",
|
|
1187
1163
|
"pluginFamily",
|
|
1188
|
-
"
|
|
1164
|
+
"severity",
|
|
1189
1165
|
"affectedEntitiesCount",
|
|
1190
|
-
"
|
|
1166
|
+
"cveId",
|
|
1191
1167
|
"riskLevel",
|
|
1192
1168
|
"priorityScore",
|
|
1193
1169
|
"epss",
|
|
@@ -1200,7 +1176,7 @@
|
|
|
1200
1176
|
"pluginId",
|
|
1201
1177
|
"pluginName",
|
|
1202
1178
|
"pluginFamily",
|
|
1203
|
-
"
|
|
1179
|
+
"severity",
|
|
1204
1180
|
"riskLevel",
|
|
1205
1181
|
"priorityScore",
|
|
1206
1182
|
"epss",
|
|
@@ -1212,6 +1188,28 @@
|
|
|
1212
1188
|
"direction": "desc"
|
|
1213
1189
|
},
|
|
1214
1190
|
"allowSortDrivenLeadingOverride": false
|
|
1191
|
+
},
|
|
1192
|
+
{
|
|
1193
|
+
"id": "memorix-workspace-records-list",
|
|
1194
|
+
"kind": "workspace",
|
|
1195
|
+
"title": "Workspace records",
|
|
1196
|
+
"fields": [
|
|
1197
|
+
"entityName",
|
|
1198
|
+
"recordTitle",
|
|
1199
|
+
"recordId",
|
|
1200
|
+
"source",
|
|
1201
|
+
"lastUpdated",
|
|
1202
|
+
"status"
|
|
1203
|
+
],
|
|
1204
|
+
"pagination": {
|
|
1205
|
+
"enabled": true,
|
|
1206
|
+
"defaultLimit": 50,
|
|
1207
|
+
"maxLimit": 200
|
|
1208
|
+
},
|
|
1209
|
+
"defaultSort": {
|
|
1210
|
+
"property": "lastUpdated",
|
|
1211
|
+
"direction": "desc"
|
|
1212
|
+
}
|
|
1215
1213
|
}
|
|
1216
1214
|
]
|
|
1217
1215
|
},
|
|
@@ -1223,7 +1221,7 @@
|
|
|
1223
1221
|
"entity": "assets",
|
|
1224
1222
|
"title": "Asset Detail",
|
|
1225
1223
|
"identity": {
|
|
1226
|
-
"idField": "
|
|
1224
|
+
"idField": "identity.recordId"
|
|
1227
1225
|
},
|
|
1228
1226
|
"contentTypes": [
|
|
1229
1227
|
{
|
|
@@ -1231,10 +1229,11 @@
|
|
|
1231
1229
|
"required": true,
|
|
1232
1230
|
"multiMatch": {
|
|
1233
1231
|
"strategy": "last",
|
|
1234
|
-
"effectiveDatePath": "capturedAt",
|
|
1232
|
+
"effectiveDatePath": "lifecycle.capturedAt",
|
|
1235
1233
|
"fallbackEffectiveDatePaths": [
|
|
1234
|
+
"capturedAt",
|
|
1236
1235
|
"snapshot.capturedAt",
|
|
1237
|
-
"data.
|
|
1236
|
+
"data.lastSeen"
|
|
1238
1237
|
]
|
|
1239
1238
|
}
|
|
1240
1239
|
}
|
|
@@ -1278,7 +1277,6 @@
|
|
|
1278
1277
|
"id": "xdr",
|
|
1279
1278
|
"title": "XDR",
|
|
1280
1279
|
"fields": [
|
|
1281
|
-
"users",
|
|
1282
1280
|
"rawXdr"
|
|
1283
1281
|
]
|
|
1284
1282
|
}
|
|
@@ -1292,10 +1290,10 @@
|
|
|
1292
1290
|
"fields": [
|
|
1293
1291
|
"vulnerabilityId",
|
|
1294
1292
|
"pluginName",
|
|
1295
|
-
"
|
|
1293
|
+
"severity",
|
|
1296
1294
|
"riskLevel",
|
|
1297
1295
|
"priorityScore",
|
|
1298
|
-
"
|
|
1296
|
+
"cveId"
|
|
1299
1297
|
]
|
|
1300
1298
|
}
|
|
1301
1299
|
],
|
|
@@ -1308,7 +1306,7 @@
|
|
|
1308
1306
|
"entity": "vulnerabilities",
|
|
1309
1307
|
"title": "Vulnerability Detail",
|
|
1310
1308
|
"identity": {
|
|
1311
|
-
"idField": "
|
|
1309
|
+
"idField": "identity.recordId"
|
|
1312
1310
|
},
|
|
1313
1311
|
"contentTypes": [
|
|
1314
1312
|
{
|
|
@@ -1316,8 +1314,9 @@
|
|
|
1316
1314
|
"required": true,
|
|
1317
1315
|
"multiMatch": {
|
|
1318
1316
|
"strategy": "last",
|
|
1319
|
-
"effectiveDatePath": "capturedAt",
|
|
1317
|
+
"effectiveDatePath": "lifecycle.capturedAt",
|
|
1320
1318
|
"fallbackEffectiveDatePaths": [
|
|
1319
|
+
"capturedAt",
|
|
1321
1320
|
"snapshot.capturedAt",
|
|
1322
1321
|
"data.enrichment.enrichedAt"
|
|
1323
1322
|
]
|
|
@@ -1333,8 +1332,7 @@
|
|
|
1333
1332
|
"pluginName",
|
|
1334
1333
|
"pluginFamily",
|
|
1335
1334
|
"severity",
|
|
1336
|
-
"
|
|
1337
|
-
"cveIds"
|
|
1335
|
+
"cveId"
|
|
1338
1336
|
]
|
|
1339
1337
|
},
|
|
1340
1338
|
{
|
|
@@ -1398,7 +1396,7 @@
|
|
|
1398
1396
|
"fields": [
|
|
1399
1397
|
"groupId",
|
|
1400
1398
|
"pluginName",
|
|
1401
|
-
"
|
|
1399
|
+
"severity",
|
|
1402
1400
|
"affectedEntitiesCount",
|
|
1403
1401
|
"riskLevel",
|
|
1404
1402
|
"priorityScore"
|
|
@@ -1414,7 +1412,7 @@
|
|
|
1414
1412
|
"entity": "variabilities-groups",
|
|
1415
1413
|
"title": "Vulnerability Group Detail",
|
|
1416
1414
|
"identity": {
|
|
1417
|
-
"idField": "
|
|
1415
|
+
"idField": "identity.recordId"
|
|
1418
1416
|
},
|
|
1419
1417
|
"contentTypes": [
|
|
1420
1418
|
{
|
|
@@ -1422,8 +1420,9 @@
|
|
|
1422
1420
|
"required": true,
|
|
1423
1421
|
"multiMatch": {
|
|
1424
1422
|
"strategy": "last",
|
|
1425
|
-
"effectiveDatePath": "capturedAt",
|
|
1423
|
+
"effectiveDatePath": "lifecycle.capturedAt",
|
|
1426
1424
|
"fallbackEffectiveDatePaths": [
|
|
1425
|
+
"capturedAt",
|
|
1427
1426
|
"snapshot.capturedAt",
|
|
1428
1427
|
"data.enrichedAt",
|
|
1429
1428
|
"data.enrichment.enrichedAt"
|
|
@@ -1442,8 +1441,7 @@
|
|
|
1442
1441
|
"pluginName",
|
|
1443
1442
|
"pluginFamily",
|
|
1444
1443
|
"severity",
|
|
1445
|
-
"
|
|
1446
|
-
"cveIds",
|
|
1444
|
+
"cveId",
|
|
1447
1445
|
"source"
|
|
1448
1446
|
]
|
|
1449
1447
|
},
|
|
@@ -1486,7 +1484,7 @@
|
|
|
1486
1484
|
"vulnerabilityId",
|
|
1487
1485
|
"assetIp",
|
|
1488
1486
|
"pluginName",
|
|
1489
|
-
"
|
|
1487
|
+
"severity",
|
|
1490
1488
|
"riskLevel",
|
|
1491
1489
|
"priorityScore"
|
|
1492
1490
|
]
|