Cisco Cisco Firepower Management Center 4000 Entwickleranleitung
4-159
FireSIGHT eStreamer Integration Guide
Chapter 4 Understanding Discovery & Connection Data Structures
Host Discovery and Connection Data Blocks
Build
string
Build number of the FireSIGHT System operating system that the
third-party OS string in the user input is mapped to.
third-party OS string in the user input is mapped to.
String Block
Type
Type
uint32
Initiates a String data block containing the patch number of the
FireSIGHT System operating system that the third-party OS string
is mapped to. This value is always
FireSIGHT System operating system that the third-party OS string
is mapped to. This value is always
0
.
String Block
Length
Length
uint32
Number of bytes in the patch String data block, including eight bytes
for the block type and length fields, plus the number of bytes in the
patch number.
for the block type and length fields, plus the number of bytes in the
patch number.
Patch
string
Patch number of the FireSIGHT System operating system that the
third-party OS string in the user input is mapped to.
third-party OS string in the user input is mapped to.
String Block
Type
Type
uint32
Initiates a String data block containing the extension number of the
FireSIGHT System OS that the third-party operating system string
is mapped. This value is always
FireSIGHT System OS that the third-party operating system string
is mapped. This value is always
0
.
String Block
Length
Length
uint32
Number of bytes in the extension String data block, including eight
bytes for the block type and length fields, plus the number of bytes
in the extension number.
bytes for the block type and length fields, plus the number of bytes
in the extension number.
Extension
string
Extension number of the FireSIGHT System operating system that
the third-party OS string in the user input is mapped to.
the third-party OS string in the user input is mapped to.
UUID
uint8 [x16]
Contains the unique identification number for the operating system.
String Block
Type
Type
uint32
Initiates a String data block containing the device hardware
information in the user input. This value is always
information in the user input. This value is always
0
.
String Block
Length
Length
uint32
Number of bytes in the build String data block, including eight bytes
for the block type and length fields, plus the number of bytes in the
build number.
for the block type and length fields, plus the number of bytes in the
build number.
Device String
string
Mobile device hardware information.
Mobile
uint8
A true-false flag indicating whether the operating system is running
on a mobile device.
on a mobile device.
Jailbroken
uint8
A true-false flag indicating whether the mobile device operating
system is jailbroken.
system is jailbroken.
Generic List
Block Type
Block Type
uint32
Initiates a Generic List data block comprising Fix List data blocks
conveying user input data regarding what fixes have been applied to
hosts in the specified IP address ranges. This value is always
conveying user input data regarding what fixes have been applied to
hosts in the specified IP address ranges. This value is always
31
.
Generic List
Block Length
Block Length
uint32
Number of bytes in the Generic List data block, including the list
header and all encapsulated Fix List data blocks.
header and all encapsulated Fix List data blocks.
Fix List Data
Blocks *
Blocks *
variable
Fix List data blocks containing information about fixes applied to
the hosts. See
the hosts. See
for a description of this
data block.
Table 4-82
User Product Data Block Fields (continued)
Field
Data Type
Description