Cisco Cisco Firepower Management Center 4000 개발자 가이드
Version 5.3
Sourcefire 3D System eStreamer Integration Guide
546
Understanding Legacy Data Structures
Legacy Discovery Data Structures
Appendix B
The
table describes the fields of
the Scan Result data block.
List Block Type (11)
Generic Scan Results Lis
t
List Block Length
Scan Results
List
Generic Scan Results Block Type (71)
Generic Scan Results Block Length
Generic Scan Results*...
User
Product List
Generic List Block Type (31)
Generic List Block Length
User Product Data Blocks*...
Scan Result Data Block for 4.6.1 - 4.9.1.x Fields
F
IELD
D
ATA
T
YPE
D
ESCRIPTION
Scan Result
Block Type
uint32
Initiates a Scan Result data block. This value is
always 72.
Scan Result
Block Length
uint32
Number of bytes in the Scan Vulnerability data
block, including eight bytes for the scan
vulnerability block type and length fields, plus the
number of bytes of scan vulnerability data that
follows.
User ID
uint32
Contains the user identification number for the
user who imported the scan result or ran the
scan that produced the scan result.
Scan Type
uint32
Indicates how the results were added to the
sensor. Values include:
• Nessus — 1
• Nessus — 1
• Nmap — 2
IP Address
uint32
IP address of the host affected by the
vulnerabilities in the result, in IP address octets.
Port
uint16
Port used by the sub-server affected by the
vulnerabilities in the results.