# Asset types

The platform supports 30 distinct asset types for tracking and managing security-related assets. Each asset type
serves a specific purpose in representing different components of an organization's infrastructure.

## Network & infrastructure assets

### IP_ADDRESS (ip_address)

Represents an IPv4 or IPv6 address in the network. Tracks geolocation (latitude, longitude, city, country), ASN
association, monitoring status, and liveness. Can be associated with hosts, domains, and cloud resources. Supports
EASM monitoring capabilities.

### DOMAIN (domain)

Represents a domain name or subdomain. Tracks monitoring status, liveness, CDN information, and can be associated
with IP addresses and cloud accounts. Supports subdomain detection and EASM monitoring.

### HOST (host)

Represents a physical or virtual machine in the network. Tracks operating system information, hostnames, MAC
addresses, serial numbers, and Active Directory integration (AD Object GUID/SID). Can be associated with multiple
IP addresses and cloud resources.

### NETWORK_DEVICE (network_device)

Represents network infrastructure equipment such as routers, switches, firewalls, or other networking hardware.
Tracks device type, operating system, and associated IP addresses and domains.

### SUBNET (subnet)

Represents a network subnet or IP range. Tracks CIDR notation, start/end IP ranges, VLAN ID, DHCP configuration,
and whether it's a wireless network. Can be associated with companies.

### DNS_RECORD (dns_record)

Represents DNS records (A, CNAME, MX, TXT, etc.) associated with domains. Tracks record type, target addresses,
and domain relationships.

## Application & software assets

### APP (app)

Represents a software application. Tracks name, version information (major/minor/edition/service pack), URL, CPE
name for vulnerability correlation, release date, end-of-life date, vendor, and category.

### APPLICATION_INSTANCE (application_instance)

Represents a deployed instance of an application running on a host. Tracks service name, service account, startup
parameters, install path, process information, authentication mode, and host/port associations. Supports LLM-based
classification with confidence scores.

### SOURCE_CODE (source_code)

Represents a source code repository or codebase that may be subject to security testing.

### OPERATING_SYSTEM (operating_system)

Represents an operating system installation. Tracks OS type, platform, version details, release date, end-of-life
date, and extended support end date. Associated with a vendor company.

### PRODUCT (product)

Represents a commercial or third-party software product. Tracks product name, icon, website, description, and
product categories. Used for identifying software in the environment.

## Cloud assets

### CLOUD_RESOURCE (cloud_resource)

Represents a cloud infrastructure resource (EC2 instances, storage buckets, containers, etc.). Tracks cloud
provider (AWS/Azure/GCP), resource type, resource identifier, VPC, account, region, availability zone, and
provider-specific attributes.

### CLOUD_ACCOUNT (cloud_account)

Represents a cloud provider account. Tracks account credentials and configuration for AWS (external ID, role ARN),
Azure (tenant/client/subscription IDs), and GCP (service account, project ID). Monitors credential expiration and
scan status.

## Identity & access assets

### IDENTITY (identity)

Represents a user account or identity in the system. Tracks username, email, first/last name, SAM account name,
identity type, Active Directory attributes, authentication realm, and flags for privileged access, MFA status,
and role-based access.

### GROUP (group)

Represents a security or distribution group. Tracks group name, type, Active Directory attributes, and membership
relationships (identities, other groups, hosts). Supports raw permission storage for cloud IAM roles.

### PERSON (person)

Represents a human individual in the organization. Tracks personal information (name, email, phone), job title,
department, manager relationship, and employment details. Can be linked to multiple identities and companies.

## Active Directory assets

### AD_DOMAIN (ad_domain)

Represents an Active Directory domain. Tracks domain identifiers (GUID, SID, Distinguished Name), common name,
parent domain, and forest relationship.

### AD_FOREST (ad_forest)

Represents an Active Directory forest (top-level AD container). Tracks the forest name.

### AD_ORGANIZATIONAL_UNIT (ad_organizational_unit)

Represents an Active Directory Organizational Unit (OU). Tracks OU name, AD identifiers, distinguished name, and
parent domain.

### AD_SERVICE_PRINCIPAL_NAME (ad_service_principal_name)

Represents a Service Principal Name (SPN) registered in Active Directory. Tracks the SPN, host, port, service
class, service name, and associated identity.

### AD_TRUSTED_DOMAIN (ad_trusted_domain)

Represents a trust relationship between Active Directory domains. Tracks trusted domain name, trust direction
(inbound/outbound/bidirectional), transitivity, and AD identifiers.

## File & storage assets

### FILE_SHARE (file_share)

Represents a network file share. Tracks share path, UNC path, share type, file count, total size, and access
information.

### FILE (file)

Represents an individual file. Tracks file path, hash, parent file share/host, and flags for sensitive data
detection (passwords, non-public data, high-risk content).

## Organizational assets

### COMPANY (company)

Represents a company or organization. Tracks company name, registration details, headquarters address, website,
industry, employee count, parent/acquired company relationships, and contact information.

### LOCATION (location)

Represents a physical location or office. Tracks address details (country, city, state, street, zip), location
zone, department, owner, and parent relationships (company, other locations).

### PHYSICAL_COMPONENT (physical_component)

Represents physical infrastructure components (servers, racks, UPS units, etc.). Tracks component type and parent
relationships (location, company, other components).

## Security & exposure assets

### CERTIFICATE (certificate)

Represents an SSL/TLS certificate. Tracks certificate details including subject/issuer information, validity
dates, fingerprints, serial number, public key information, and self-signed status.

### ASN (asn / asn_client)

Represents an Autonomous System Number and its IP ranges. Tracks ASN value, name, domain, IP range (start/end),
ownership status, and monitoring configuration.

## Policy & generic assets

### POLICY (policy)

Represents organizational security or compliance policies. Tracks policy name, type, subtype, category,
department, and owner.

### GENERIC_ASSET (generic_asset)

A flexible asset type for assets that don't fit other categories. Supports custom type-specific attributes via
JSON storage.

## Asset type IDs reference

| ID | Type | API Value |
| -- | ---- | --------- |
| 1 | IP Address | ip_address |
| 2 | Domain | domain |
| 3 | Host | host |
| 4 | App | app |
| 5 | Source Code | source_code |
| 6 | Network Device | network_device |
| 7 | Cloud Resource | cloud_resource |
| 8 | Product | product |
| 9 | Cloud Account | cloud_account |
| 10 | Generic Asset | generic_asset |
| 11 | Company | company |
| 12 | Certificate | certificate |
| 13 | DNS Record | dns_record |
| 14 | ASN | asn |
| 15 | AD Domain | ad_domain |
| 16 | AD Forest | ad_forest |
| 17 | AD Organizational Unit | ad_organizational_unit |
| 18 | AD Service Principal Name | ad_service_principal_name |
| 19 | AD Trusted Domain | ad_trusted_domain |
| 20 | Identity | identity |
| 21 | File Share | file_share |
| 22 | File | file |
| 23 | Location | location |
| 24 | Person | person |
| 25 | Physical Component | physical_component |
| 26 | Policy | policy |
| 27 | Group | group |
| 28 | Subnet | subnet |
| 29 | Operating System | operating_system |
| 30 | Application Instance | application_instance |