Technology Intelligence Platform Datasets
Description
This page specifies the data models used when downloading export data for Technology Intelligence Platform from the Query API.
Technology Intelligence Platform supports the following datasets from IT Visibility Datasets and you can find the details of their exports here:
| Dataset | Source |
|---|---|
| hardware_inventory | Hardware Inventory |
| hardware_inventory_source | Hardware Inventory Source |
| hardware_model_connectivity | Hardware Model Connectivity |
| hardware_model_power | Hardware Model Power |
| hardware_model_profile | Hardware Model Profile |
| hardware_technopedia_lifecycle | Hardware Technopedia Lifecycle |
| manufacturer_technopedia | Manufacturer Technopedia |
| network_adapters | Network Adapters |
| software_inventory | Software Inventory |
| software_inventory_source | Software Inventory Source |
| software_technopedia_lifecycle | Software Technopedia Lifecycle |
| software_technopedia_lineage | Software Technopedia Lineage |
| software_technopedia_release_platforms | Software Technopedia Release Platforms |
| software_technopedia_versions | Software Technopedia Versions |
Hardware Technopedia, Software Technopedia and Vulnerability datasets are also available. Unique to Technology Intelligence Platform, we have the ServiceNow Device and ServiceNow Software datasets. They are detailed below.
Important Note
Technology Intelligence Platform datasets are not backwards compatible with previous datasets from IT Visibility. Upgrading to Technology Intelligence Platform changes your vulnerability data source. Anywhere that a field exists in both datasets and is backwards compatible there will be a comment to indicate it is equivalent.
Data Models
Data is normalized into flat-file structures to be easily integrated with third-party systems.
Hardware Technopedia
| Name | Type | Description | Comment |
|---|---|---|---|
| TechnopediaGUID | UUID | The unique Technopedia GUID for the hardware model or product. | Backwards compatible to TechnopediaGUID. |
| TechnopediaGUIDType | String | The level/type the Technopedia ID is related to. This is primarily directed to the Type field except in the case of "owner" where it is directed to "manufacturer". | Backwards compatible to TechnopediaGUIDType. |
| ManufacturerID | String | The unique identifier for manufacturer. | Backwards compatible to ManufacturerID. |
| ManufacturerName | String | The hardware manufacturer's name. | Backwards compatible to ManufacturerName. |
| ManufacturerTier | Int | Represents the tier or level of the device manufacturer in the industry, indicating their market position. | Backwards compatible to ManufacturerTier. |
| ProductID | String | Unique identifier for each hardware product. | Backwards compatible to ProductID. |
| ProductName | String | The name of the hardware product. | Backwards compatible to ProductName. |
| ProductIsDesupported | Boolean | A boolean flag indicating if the hardware product is desupported. | Backwards compatible to ProductIsDesupported. |
| ProductIsDiscontinued | Boolean | A boolean flag indicating if the hardware product is discontinued. | Backwards compatible to ProductIsDiscontinued. |
| ModelID | String | The unique identifier for the hardware model. | Backwards compatible to ModelID. |
| ModelName | String | The name of the hardware model, providing a human-readable label for identification. | Backwards compatible to ModelName. |
| ModelSupportedOs | String | The operating system(s) the device model supports, providing information about compatibility. | Backwards compatible to ModelSupportedOs. |
| ModelIsDesupported | Boolean | A boolean flag indicating whether the hardware model is no longer supported by the manufacturer. | Backwards compatible to ModelIsDesupported. |
| ModelIsDiscontinued | Boolean | A boolean flag indicating whether the hardware model is no longer available for purchase. | Backwards compatible to ModelIsDiscontinued. |
| CategoryGroup | String | Represents the group of categories within the hardware taxonomy, allowing for further categorization. | Backwards compatible to CategoryGroup. |
| CategoryID | String | The unique identifier for the category. | Backwards compatible to CategoryID. |
| Category | String | Represents the main category of the hardware, providing a general classification. | Backwards compatible to Category. |
| SubcategoryID | String | Unique identifier for each device taxonomy record. | Backwards compatible to SubcategoryID. |
| Subcategory | String | Represents the subcategory of the hardware, allowing for more specific categorization. | Backwards compatible to Subcategory. |
| LegacyID | String | Data platform Legacy ID for hardware product/model. | Not present in previous dataset. |
| OrgID | String | The unique identifier for the organization. |
Software Technopedia
| Name | Type | Description | Comment |
|---|---|---|---|
| TechnopediaGUID | UUID | The normalized Technopedia catalog ID. | Backwards compatible to TechnopediaGUID. |
| TechnopediaGUIDType | String | The level/type the Technopedia ID is related to. This is primarily directed to the Type field except in the case of "owner" where it is directed to "manufacturer". | Backwards compatible to TechnopediaGUIDType. |
| ManufacturerID | String | The unique identifier for the software manufacturer. | Backwards compatible to ManufacturerID. |
| ManufacturerName | String | The official name of the manufacturer of the software product. | Backwards compatible to ManufacturerName. |
| ManufacturerTier | Int | Represents the tier or level of the software manufacturer in the industry. | Backwards compatible to ManufacturerTier. |
| ProductFamilyID | String | The unique identifier for the software family. | Backwards compatible to ProductFamilyID. |
| ProductFamily | String | The name of the software product family, if applicable. | Backwards compatible to ProductFamily. |
| ProductID | String | The unique identifier for the software product. | Backwards compatible to ProductID. |
| Product | String | A concise version of the software product name, useful for quick identification. | Backwards compatible to Product. |
| ProductName | String | The full name of the software product, providing a complete and official label. | Backwards compatible to ProductName. |
| ProductCloud | String | Describes the deployment method of the software product, such as on-premises, cloud-based, or hybrid. | Backwards compatible to ProductCloud. |
| ProductIsDesupported | Boolean | A boolean flag indicating whether the software product is no longer supported by the vendor. | Backwards compatible to ProductIsDesupported. |
| ProductIsDiscontinued | Boolean | A boolean flag indicating whether the software product has been discontinued by the vendor. | Backwards compatible to ProductIsDiscontinued. |
| ProductLicensable | String | The licensable flag at the product-level, summarizing the licensable flag at the lower release-level, indicating whether the software product is licensable or not (0 = Generally Unlicensable, 1 = Generally Licensable, 2 = Some Releases are Licensable, null = Undefined). | Backwards compatible to ProductLicensable. |
| Component | String | Represents the component or module of the software product, offering more granular information. | Backwards compatible to Component. |
| VersionGroup | String | The value of the Description Group. | Backwards compatible to VersionGroup. |
| MarketVersionID | String | The unique identifier for market version. | Backwards compatible to MarketVersionID. |
| MarketVersionOrder | Int | The number that indicates the sequential order by which this particular market version was released. | Backwards compatible to MarketVersionOrder. |
| MarketVersionIsDesupported | Boolean | Indicates if the software version is no longer supported. | Backwards compatible to MarketVersionIsDesupported. |
| MarketVersionIsDiscontinued | Boolean | Indicates if the software version is no longer available. | Backwards compatible to MarketVersionIsDiscontinued. |
| VersionID | String | Unique identifier for the software version. | Backwards compatible to VersionID. |
| Version | String | Name of the software version. | Backwards compatible to Version. |
| VersionLabel | String | Stage of the software development cycle. | Backwards compatible to VersionLabel. |
| VersionOrder | Int | Order number of the software version. | Backwards compatible to VersionOrder. |
| VersionIsDesupported | Boolean | Indicates if the software version is no longer supported. | Backwards compatible to VersionIsDesupported. |
| VersionIsDiscontinued | Boolean | Indicates if the software version is no longer available. | Backwards compatible to VersionIsDiscontinued. |
| PatchName | String | The software patch name, if applicable. | Backwards compatible to PatchName. |
| PatchLevel | String | Patch level of the software version. | Backwards compatible to PatchLevel. |
| EditionID | String | Unique identifier for the software edition. | Backwards compatible to EditionID. |
| Edition | String | Name of the software edition, providing a human-readable label for identification. | Backwards compatible to Edition. |
| EditionOrder | Int | Represents the order in which the software editions were released, allowing tracking of progression and development. | Backwards compatible to EditionOrder. |
| EditionIsDesupported | Boolean | A boolean flag indicating whether the software edition is no longer supported by the vendor. | Backwards compatible to EditionIsDesupported. |
| EditionIsDiscontinued | Boolean | A boolean flag indicating whether the software edition has been discontinued and is no longer available for purchase or use. | Backwards compatible to EditionIsDiscontinued. |
| ReleaseID | String | Unique identifier for each software release. | Backwards compatible to ReleaseID. |
| Release | String | The full name of the software release. | Backwards compatible to Release. |
| ReleaseCloud | String | Represents the deployment status of the software release. | Backwards compatible to ReleaseCloud. |
| ReleaseIsDesupported | Boolean | A boolean flag indicating whether the software release is desupported. | Backwards compatible to ReleaseIsDesupported. |
| ReleaseIsDiscontinued | Boolean | A boolean flag indicating whether the software release is discontinued. | Backwards compatible to ReleaseIsDiscontinued. |
| ReleasePlatformID | String | The unique identifier for Release Platform. | Backwards compatible to ReleasePlatformID. |
| ReleasePlatformLabel | String | The name of the Release Platform | Backwards compatible to ReleasePlatformLabel. |
| ReleasePlatformType | String | The Release Platform Type. | Backwards compatible to ReleasePlatformType. |
| CategoryGroup | String | Further categorizes the software into groups, such as "Windows" or "MacOS". | Backwards compatible to CategoryGroup. |
| CategoryID | String | The unique identifier for the taxonomy parent name. | Backwards compatible to CategoryID. |
| Category | String | Represents the top-level category of software, such as "Operating Systems" or "Productivity Software". | Backwards compatible to Category. |
| SubcategoryID | String | The unique identifier for the software taxonomy record. | Backwards compatible to SubcategoryID. |
| Subcategory | String | Represents the most specific level of categorization, such as "Microsoft Office" or "Google Workspace". | Backwards compatible to Subcategory. |
| FamilyIsDesupported | String | A flag that indicates that the entry has been de-supported by the vendor. The de-support date is in the past (whether the exact date is known or unknown). | Backwards compatible to FamilyIsDesupported. |
| FamilyIsDiscontinued | String | A flag that indicates whether the entry is known or unknown. | Backwards compatible to FamilyIsDiscontinued. |
| IsLicenseable | Boolean | A boolean flag indicating whether the software product is licensable, allowing users to purchase licenses for its use. | Not backwards compatible to IsLicenseable. |
| IsSuite | Boolean | A boolean flag indicating whether the software product is a suite of related products, offering a more comprehensive solution. | Backwards compatible to IsSuite. |
| IsMajor | Boolean | Indicates if the software version is a major release. | Backwards compatible to IsMajor. |
| MajorSoftwareReleaseId | String | If it is not the Major Release, this identifies the Release ID of a particular row's Major Release. | Backwards compatible to MajorSoftwareReleaseId. |
| IsFamilyInFullName | Boolean | A boolean flag indicating whether the software product is part of a larger family, allowing for easy identification of related products. | Backwards compatible to IsFamilyInFullName. |
| LegacyID | String | Data platform Legacy ID for software product/release. | Not present in previous dataset. |
| OrgID | String | The unique identifier for the organization. |
Vulnerability
| Export Column Name | Lakehouse Column | Type | Description | Comment |
|---|---|---|---|---|
| Opcode | _op_code | string | The opcode type of an event. | Only present in the delta downloads. |
| VulnerabilityID | Id | string | The unique identifier for vulnerability. | Not backwards compatible. Maps to VulnerabilityID in Vulnerability Advisory and Vulnerability KB Article. |
| HardwareID | device_id | string | Identifier for the device the vulnerability is associated with. | Backwards compatible to HardwareID. |
| SoftwareID | software_id | string | Identifier for the installed software the vulnerability is associated with. | Backwards compatible to SoftwareID or InstalledSoftwareID. |
| TechnopediaProductID | product_id | string | Identifier for the product the vulnerability is associated with. | Backwards compatible to TechnopediaGUID. |
| TechnopediaVersionID | version_id | string | Identifier for the version of the software the vulnerability is associated with. | Backwards compatible to TechnopediaGUID. |
| TechnopediaEditionID | edition_id | string | Identifier for the edition of the software the vulnerability is associated with. | Backwards compatible to TechnopediaGUID. |
| TechnopediaReleaseID | release_id | string | Identifier for the release of the software the vulnerability is associated with. | Backwards compatible to TechnopediaGUID. |
| CveID | cve_id | string | Identifier for the cve the vulnerability is associated with. | Maps to CVE ID field in Vulnerability CVE and in Vulnerability CPE. Present in previous datasets, not backwards compatible. |
| CveTitle | cve_title | string | Actual CVE number the vulnerability is associated with. | Not in previous dataset. |
| CvePublishDate | cve_publish_date | string | Publish date of CVE | Not in previous dataset. |
| CvssScore | cvss_score | float64 | Rating value according to Common Vulnerability Scoring System (CVSS). | Not in previous dataset. |
| AttackVector | attack_vector | string | Translation of the numeric indicator in attack vector where: 1: From remote, 2: From local network, 3: Local system. | Present in previous dataset under different name, not backwards compatible. |
| Criticality | criticality | int64 | Numeric score for the vulnerability criticality ranges from 1 - 5. | Not in previous dataset. |
| CriticalityLabel | criticality_label | string | Translation of the numeric score in criticality, where: 1: Extremely Critical, 2: Highly Critical, 3: Moderately Critical, 4: Less Critical, 5: Not Critical. | Present in previous datasets, not backwards compatible. |
| ThreatExploitRiskLevel | threat_exploit_risk_level | int64 | Numeric score for the threat score ranges from 1 – 7 | Present in previous datasets, not backwards compatible. |
| ThreatExportRiskLabel | threat_exploit_risk_label | string | Represents the risk level of exploited threat. | Present in previous datasets, not backwards compatible. |
| OrgID | org | string | The unique identifier for the organization. | |
| Sequence | sequence | int | The opcode type of an event. | Only present in the delta downloads. |
Vulnerability CPE
| Export Column Name | Lakehouse Column | Type | Description | Comment |
|---|---|---|---|---|
| VulnerabilityCpeRecordID | id | string | The unique identifier for the vulnerability cpe. | Not present in previous datasets. |
| VulnerabilityID | vulnerability_id | string | Identifier for the Vulnerability the advisory is associated with. | Not backwards compatible. Maps to VulnerabilityID in Vulnerability and Vulnerability KB Article. |
| CpeID | cpe_id | string | The unique identifier for the CPE | Present in previous datasets, not backwards compatible. |
| CpeUri | cpe_uri | string | Representation of URI for CPE which includes a formal name format, method for checking names against a system, and a description format for binding. | Present in previous datasets, not backwards compatible. |
| SoftwareID | software_id | string | Identifier for the installed software the vulnerability cpe is associated with. | Backwards compatible to SoftwareID or InstalledSoftwareID. |
| CpeTitle | cpe_title | string | Representation of URI for CPE which includes a formal name format, method for checking names against a system. | Not present in previous datasets. |
| CveID | cve_id | string | Identifier for the CVE the advisory is associated with. | Present in previous dataset, not backwards compatible. |
| OrgID | org | string | The unique identifier for the organization. |
Vulnerability CVE
| Export Column Name | Lakehouse Column | Type | Description | Comment |
|---|---|---|---|---|
| CveID | Id | string | The unique identifier for the CVE. | Present in previous dataset, not backwards compatible. |
| CveTitle | cve_title | string | Actual CVE number for the Vulnerability. | Not present in previous dataset. |
| CvssScore | cvss_score | float64 | Rating value according to Common Vulnerability Scoring System (CVSS). | Present in previous dataset, not backwards compatible. |
| CvssVersion | cvss_version | string | Version according to Common Vulnerability Scoring System (CVSS). | Not present in previous dataset. |
| CvssVector | cvss_vector | float64 | Base Vector value according to Common Vulnerability Scoring System (CVSS). | Not present in previous dataset. |
| MalwareNames | malware_names | string | Comma separated list of Malware Names. | Present in previous dataset, not backwards compatible. |
| CveRules | cve_rules | string | Comma separated list of the threat rules for CVE | Present in previous dataset, not backwards compatible. |
| ThreatScore | threat_score | string | Threat score generated by in-house logic based on the exploited rules for all CVEs references in the advisory. | Present in previous dataset, not backwards compatible. |
| OrgID | org | string | The unique identifier for the organization. |
Vulnerability Advisory
| Export Column Name | Lakehouse Column | Type | Description | Comment |
|---|---|---|---|---|
| VulnerabilityAdvisoryRecordID | id | string | The unique identifier for the vulnerability advisory. | Not present in previous datasets. |
| VulnerabilityID | vulnerability_id | string | Identifier for the Vulnerability the advisory is associated with. | Not backwards compatible. Maps to VulnerabilityID in Vulnerability and Vulnerability KB Article. |
| VulnerabilityAdvisoryID | advisory_id | string | The unique identifier for the Secunia Advisory id. | Not present in previous datasets. |
| SecuniaAdvisoryID | sa_id | string | Identifier for the secunia advisory associated with. | Present in previous dataset, not backwards compatible. |
| SoftwareID | software_id | string | Identifier for the installed software the vulnerability advisory is associated with. | Backwards compatible to SoftwareID or InstalledSoftwareID. |
| ThreatScore | threat_score | int64 | Composite score for the Security Advisory, calculated from various criteria and their associated values. | Present in previous dataset, not backwards compatible. |
| SolutionStatus | solution_status | string | Solution status of the associated vulnerability. | Present in previous dataset, not backwards compatible. |
| Revision | revision | string | Revising status of the associated Advisory | Present in previous dataset, not backwards compatible. |
| Title | title | string | Title of the associated Advisory. | Present in previous dataset, not backwards compatible. |
| CveID | cve_id | string | Identifier for the CVE the advisory is associated with. | Present in previous dataset, not backwards compatible. |
| AdvisoryUrl | said_url | string | URL for that Specific Secunia Advisory Id. | Present in previous dataset, not backwards compatible. |
| OrgID | org | string | The unique identifier for the organization. |
Vulnerability KB Article
| Export Column Name | Lakehouse Column | Type | Description | Comment |
|---|---|---|---|---|
| KbArticleID | id | string | The unique identifier for the kb article. | Present in previous dataset under different name, not backwards compatible. |
| CreatedOn | created_on | string | Date when an entry was first created in VulnTrack/SVM. | Not present in previous dataset. |
| Description | description | string | Description of kbArticle. | Present in previous dataset under different name, not backwards compatible. |
| Heading | heading | string | Title of kbArticle. | Present in previous dataset under different name, not backwards compatible. |
| KbArticle | kb_article | int64 | The kbArticle Information | Not previous in previous dataset. |
| KbArticleVulnTrackID | kb_article_vt_id | int64 | Identifier for kbArticle in VulnTrack/SVM. | Not previous in previous dataset. |
| ManufacturerID | manufacturer_id | string | Identifier for Manufacturer | Not previous in previous dataset. |
| PublishedOn | published_on | string | Date when last modification to the entry was made in VulnTrack/SVM | Present in previous dataset, not backwards compatible. |
| ReplacementID | replacement_id | string | Identifier of the replacement entry whenever the entry is marked for deletion. | Not previous in previous dataset. |
| VulnID | vuln_id | int64 | Numeric characters from SAID. | Not previous in previous dataset. |
| VulnerabilityID | vulnerability_id | string | Identifier for the vulnerability associated with kb article | Maps to VulnerabilityID in Vulnerability and Vulnerability Advisory. |
| OrgID | org | string | The unique identifier for the organization. |
ServiceNow Device
The servicenow_device dataset contains the information on the hardware devices identified by servicenow. If you do not have ServiceNow as a datasource then this file will contain 0 rows.
| Export Column Name | Lakehouse Column | Type | Description | Comment |
|---|---|---|---|---|
| Opcode | _op_code | string | The opcode type of an event. | Only present in the delta downloads. |
| HardwareID | id | string | Internal identifier for the hardware. | |
| HardwareDataSources | device_datasources | string | Describes the data source associated with the hardware. | |
| SysID | sys_id | string | Identifier for the machine associated with the hardware source. | |
| Sequence | sequence | int | The opcode type of an event. | Only present in the delta downloads. |
| OrgID | org | string | The unique identifier for the organization. |
ServiceNow Software
The servicenow_software dataset contains the information on the software identified by servicenow. If you do not have ServiceNow as a datasource then this file will contain 0 rows.
| Export Column Name | Lakehouse Column | Type | Description | Comment |
|---|---|---|---|---|
| Opcode | _op_code | string | The opcode type of an event. | Only present in the delta downloads. |
| SoftwareID | id | string | Internal identifier for the software. | |
| SoftwareDataSources | software_datasources | string | Describes the data source associated with the software install. | |
| SysID | sys_id | string | Identifier for the installation associated with the software source. | |
| DeviceSysID | device_sys_id | string | Identifier for the machine associated with the software source. | Maps to ServiceNow Devices dataset SysID |
| Sequence | sequence | int | The opcode type of an event. | Only present in the delta downloads. |
| OrgID | org | string | The unique identifier for the organization. |