Cisco Cisco Firepower Management Center 4000 Entwickleranleitung

The Full Host Profile data block for version 5.2.x contains a full set of data describing one host. It has 
the format shown in the graphic below and explained in the following table. Note that, except for List 
data blocks, the graphic does not show the fields of the encapsulated data blocks. These encapsulated 
data blocks are described separately in 

. The Full Host Profile data block a block type value of 140. It supersedes the prior version, 

which has a block type of 135.

An asterisk (*) next to a block name in the following diagram indicates that multiple instances of the 
data block may occur.

Generic List 
Block Length

uint32

Number of bytes in the Generic List data block, including the list 
header and all encapsulated data blocks.

(Third Party 
Scan) Host 
Vulnerability 
Data Blocks *

variable

Host Vulnerability data blocks sourced from a third party scanner. 
Note that the host vulnerability IDs for these data blocks are the third 
party scanner IDs, not Cisco-detected IDs. See 

 for a description of this data block. 

List Block Type

uint32

Initiates a List data block comprising Attribute Value data blocks 
conveying attribute data. This value is always 

11

.

List Block 
Length

uint32

Number of bytes in the List data block, including the list header and 
all encapsulated data blocks.

Attribute Value 
Data Blocks *

variable

List of Attribute Value data blocks. See 

 for a description of the data blocks in this list.

Mobile

uint8

A true-false flag indicating whether the operating system is running on 
a mobile device.

Jailbroken

uint8

A true-false flag indicating whether the mobile device operating 
system is jailbroken.

VLAN Presence

uint8

Indicates whether a VLAN is present:

0

 - Yes

1

 - No

Byte

0

1

2

3

Bit

0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31

Full Host Profile Data Block (140)

Data Block Length

Host ID