Cisco Cisco Firepower Management Center 2000 Entwickleranleitung
B-77
FireSIGHT eStreamer Integration Guide
Appendix B Understanding Legacy Data Structures
Legacy Discovery Data Structures
Legacy OS Fingerprint Data Blocks
See the following section for more information:
•
Operating System Fingerprint Data Block for 5.0 - 5.0.2
The Operating System Fingerprint data block has a block type of 87. The block includes a fingerprint
Universally Unique Identifier (UUID), as well as the fingerprint type, the fingerprint source type, and
the fingerprint source ID. The following diagram shows the format of an Operating System Fingerprint
data block for version 5.0 to version 5.0.2.
Universally Unique Identifier (UUID), as well as the fingerprint type, the fingerprint source type, and
the fingerprint source ID. The following diagram shows the format of an Operating System Fingerprint
data block for version 5.0 to version 5.0.2.
Byte
0
1
2
3
Bit
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31
Operating System Fingerprint Block Type (87)
Operating System Fingerprint Block Length
OS Fingerprint
UUID
Fingerprint UUID
Fingerprint UUID, continued
Fingerprint UUID, continued
Fingerprint UUID, continued
Fingerprint Type
Fingerprint Source Type
Fingerprint Source ID
Last Seen Value for Fingerprint
TTL Difference