Technology Intelligence Platform Datasets

Description

This page specifies the data models used when downloading export data for Technology Intelligence Platform from the Query API.

Technology Intelligence Platform supports the following datasets from IT Visibility Datasets and you can find the details of their exports here:

Dataset Source
hardware_inventory Hardware Inventory
hardware_inventory_source Hardware Inventory Source
hardware_model_connectivity Hardware Model Connectivity
hardware_model_power Hardware Model Power
hardware_model_profile Hardware Model Profile
hardware_technopedia Hardware Technopedia
hardware_technopedia_lifecycle Hardware Technopedia Lifecycle
manufacturer_technopedia Manufacturer Technopedia
network_adapters Network Adapters
software_inventory Software Inventory
software_inventory_source Software Inventory Source
software_technopedia Software Technopedia
software_technopedia_lifecycle Software Technopedia Lifecycle
software_technopedia_lineage Software Technopedia Lineage
software_technopedia_release_platforms Software Technopedia Release Platforms
software_technopedia_versions Software Technopedia Versions

Vulnerability datasets are also available. They are detailed below.

Important Note

Technology Intelligence Platform datasets are not backwards compatible with previous datasets from IT Visibility. Upgrading to Technology Intelligence Platform changes your vulnerability data source. Anywhere that a field exists in both datasets and is backwards compatible there will be a comment to indicate it is equivalent.

Data Models

Data is normalized into flat-file structures to be easily integrated with third-party systems.

Vulnerability

Export Column Name UOM Column Type Description Comment
Opcode _op_code string The opcode type of an event. Only present in the delta downloads.
VulnerabilityID Id string The unique identifier for vulnerability. Not backwards compatible. Maps to VulnerabilityID in Vulnerability Advisory and Vulnerability KB Article.
HardwareID device_id string Identifier for the device the vulnerability is associated with. Backwards compatible to HardwareID.
SoftwareID software_id string Identifier for the installed software the vulnerability is associated with. Backwards compatible to SoftwareID or InstalledSoftwareID.
TechnopediaProductID product_id string Identifier for the product the vulnerability is associated with. Backwards compatible to TechnopediaGUID.
TechnopediaVersionID version_id string Identifier for the version of the software the vulnerability is associated with. Backwards compatible to TechnopediaGUID.
TechnopediaEditionID edition_id string Identifier for the edition of the software the vulnerability is associated with. Backwards compatible to TechnopediaGUID.
TechnopediaReleaseID release_id string Identifier for the release of the software the vulnerability is associated with. Backwards compatible to TechnopediaGUID.
CveID cve_id string Identifier for the cve the vulnerability is associated with. Maps to CVE ID field in Vulnerability CVE and in Vulnerability CPE. Present in previous datasets, not backwards compatible.
CveTitle cve_title string Actual CVE number the vulnerability is associated with. Not in previous dataset.
CvePublishDate cve_publish_date string Publish date of CVE Not in previous dataset.
CvssScore cvss_score float64 Rating value according to Common Vulnerability Scoring System (CVSS). Not in previous dataset.
AttackVector attack_vector string Translation of the numeric indicator in attack vector where: 1: From remote, 2: From local network, 3: Local system. Present in previous dataset under different name, not backwards compatible.
Criticality criticality int64 Numeric score for the vulnerability criticality ranges from 1 - 5. Not in previous dataset.
CriticalityLabel criticality_label string Translation of the numeric score in criticality, where: 1: Extremely Critical, 2: Highly Critical, 3: Moderately Critical, 4: Less Critical, 5: Not Critical. Present in previous datasets, not backwards compatible.
ThreatExploitRiskLevel threat_exploit_risk_level int64 Numeric score for the threat score ranges from 1 – 7 Present in previous datasets, not backwards compatible.
ThreatExportRiskLabel threat_exploit_risk_label string Represents the risk level of exploited threat. Present in previous datasets, not backwards compatible.
OrgID org string The unique identifier for the organization.
Sequence sequence int The opcode type of an event. Only present in the delta downloads.

Vulnerability CPE

Export Column Name UOM Column Type Description Comment
VulnerabilityCpeRecordID id string The unique identifier for the vulnerability cpe. Not present in previous datasets.
VulnerabilityID vulnerability_id string Identifier for the Vulnerability the advisory is associated with. Not backwards compatible. Maps to VulnerabilityID in Vulnerability and Vulnerability KB Article.
CpeID cpe_id string The unique identifier for the CPE Present in previous datasets, not backwards compatible.
CpeUri cpe_uri string Representation of URI for CPE which includes a formal name format, method for checking names against a system, and a description format for binding. Present in previous datasets, not backwards compatible.
SoftwareID software_id string Identifier for the installed software the vulnerability cpe is associated with. Backwards compatible to SoftwareID or InstalledSoftwareID.
CpeTitle cpe_title string Representation of URI for CPE which includes a formal name format, method for checking names against a system. Not present in previous datasets.
CveID cve_id string Identifier for the CVE the advisory is associated with. Present in previous dataset, not backwards compatible.
OrgID org string The unique identifier for the organization.

Vulnerability CVE

Export Column Name UOM Column Type Description Comment
CveID Id string The unique identifier for the CVE. Present in previous dataset, not backwards compatible.
CveTitle cve_title string Actual CVE number for the Vulnerability. Not present in previous dataset.
CvssScore cvss_score float64 Rating value according to Common Vulnerability Scoring System (CVSS). Present in previous dataset, not backwards compatible.
CvssVersion cvss_version string Version according to Common Vulnerability Scoring System (CVSS). Not present in previous dataset.
CvssVector cvss_vector float64 Base Vector value according to Common Vulnerability Scoring System (CVSS). Not present in previous dataset.
MalwareNames malware_names string Comma separated list of Malware Names. Present in previous dataset, not backwards compatible.
CveRules cve_rules string Comma separated list of the threat rules for CVE Present in previous dataset, not backwards compatible.
ThreatScore threat_score string Threat score generated by in-house logic based on the exploited rules for all CVEs references in the advisory. Present in previous dataset, not backwards compatible.
OrgID org string The unique identifier for the organization.

Vulnerability Advisory

Export Column Name UOM Column Type Description Comment
VulnerabilityAdvisoryRecordID id string The unique identifier for the vulnerability advisory. Not present in previous datasets.
VulnerabilityID vulnerability_id string Identifier for the Vulnerability the advisory is associated with. Not backwards compatible. Maps to VulnerabilityID in Vulnerability and Vulnerability KB Article.
VulnerabilityAdvisoryID advisory_id string The unique identifier for the Secunia Advisory id. Not present in previous datasets.
SecuniaAdvisoryID sa_id string Identifier for the secunia advisory associated with. Present in previous dataset, not backwards compatible.
SoftwareID software_id string Identifier for the installed software the vulnerability advisory is associated with. Backwards compatible to SoftwareID or InstalledSoftwareID.
ThreatScore threat_score int64 Composite score for the Security Advisory, calculated from various criteria and their associated values. Present in previous dataset, not backwards compatible.
SolutionStatus solution_status string Solution status of the associated vulnerability. Present in previous dataset, not backwards compatible.
Revision revision string Revising status of the associated Advisory Present in previous dataset, not backwards compatible.
Title title string Title of the associated Advisory. Present in previous dataset, not backwards compatible.
CveID cve_id string Identifier for the CVE the advisory is associated with. Present in previous dataset, not backwards compatible.
AdvisoryUrl said_url string URL for that Specific Secunia Advisory Id. Present in previous dataset, not backwards compatible.
OrgID org string The unique identifier for the organization.

Vulnerability KB Article

Export Column Name UOM Column Type Description Comment
KbArticleID id string The unique identifier for the kb article. Present in previous dataset under different name, not backwards compatible.
CreatedOn created_on string Date when an entry was first created in VulnTrack/SVM. Not present in previous dataset.
Description description string Description of kbArticle. Present in previous dataset under different name, not backwards compatible.
Heading heading string Title of kbArticle. Present in previous dataset under different name, not backwards compatible.
KbArticle kb_article int64 The kbArticle Information Not previous in previous dataset.
KbArticleVulnTrackID kb_article_vt_id int64 Identifier for kbArticle in VulnTrack/SVM. Not previous in previous dataset.
ManufacturerID manufacturer_id string Identifier for Manufacturer Not previous in previous dataset.
PublishedOn published_on string Date when last modification to the entry was made in VulnTrack/SVM Present in previous dataset, not backwards compatible.
ReplacementID replacement_id string Identifier of the replacement entry whenever the entry is marked for deletion. Not previous in previous dataset.
VulnID vuln_id int64 Numeric characters from SAID. Not previous in previous dataset.
VulnerabilityID vulnerability_id string Identifier for the vulnerability associated with kb article Maps to VulnerabilityID in Vulnerability and Vulnerability Advisory.
OrgID org string The unique identifier for the organization.