Cisco Cisco Firepower Management Center 2000 Entwickleranleitung

Version 5.3

Sourcefire 3D System eStreamer Integration Guide

342

Understanding Discovery & Connection Data Structures

Host Discovery and Connection Data Blocks

Chapter 4

Mobile Device Information Data Block for 5.1+

The following diagram shows the format of a Mobile Device Information data 

block. The data block contains the last time the host was detected, mobile device 

information, and whether the mobile device is jailbroken. The Mobile Device 

Information data block has a block type of 131 in the series 1 group of blocks.

Generic List 

Block Length

uint32

Number of bytes in the Generic List block and 

encapsulated data blocks. This number includes 

the eight bytes of the generic list block header 

fields, plus the number of bytes in all of the 

encapsulated data blocks.

Mobile Device 

Information 

Data Blocks

variable

Encapsulated Mobile Device Information data 

blocks up to the maximum number of bytes in 

the list block length. See 

 on page 342 for 

a description of this data block.

Operating System Fingerprint Data Block Fields (Continued)

Byte

0

1

2

3

Bit

0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31

Mobile Device Information Block Type (131)

Mobile Device Information Block Length

Mobile Device 

Data

String Block Type (0)

String Block Length

Mobile Device String Data...

Mobile Device Last Seen

Mobile

Jailbroken