Cisco Cisco Firepower Management Center 4000 개발자 가이드

Version 5.3

Sourcefire 3D System eStreamer Integration Guide

546

Understanding Legacy Data Structures

Legacy Discovery Data Structures

Appendix B

The 

 table describes the fields of 

the Scan Result data block.

List Block Type (11)

Generic Scan  Results Lis

t

List Block Length

Scan Results

List

Generic Scan Results Block Type (71)

Generic Scan Results Block Length

Generic Scan Results*...

User 

Product List

Generic List Block Type (31)

Generic List Block Length

User Product Data Blocks*...

Scan Result Data Block for 4.6.1 - 4.9.1.x Fields 

Scan Result 

Block Type

uint32

Initiates a Scan Result data block. This value is 

always 72.

Scan Result 

Block Length

uint32

Number of bytes in the Scan Vulnerability data 

block, including eight bytes for the scan 

vulnerability block type and length fields, plus the 

number of bytes of scan vulnerability data that 

follows.

User ID

uint32

Contains the user identification number for the 

user who imported the scan result or ran the 

scan that produced the scan result.

Scan Type

uint32

Indicates how the results were added to the 

sensor. Values include: 
• Nessus — 1

• Nmap — 2

IP Address

uint32

IP address of the host affected by the 

vulnerabilities in the result, in IP address octets.

Port

uint16

Port used by the sub-server affected by the 

vulnerabilities in the results.