Asset types
The platform supports 30 distinct asset types for tracking and managing security-related assets. Each asset type serves a specific purpose in representing different components of an organization's infrastructure.
Network & infrastructure assets
IP_ADDRESS (ip_address)
Represents an IPv4 or IPv6 address in the network. Tracks geolocation (latitude, longitude, city, country), ASN association, monitoring status, and liveness. Can be associated with hosts, domains, and cloud resources. Supports EASM monitoring capabilities.
DOMAIN (domain)
Represents a domain name or subdomain. Tracks monitoring status, liveness, CDN information, and can be associated with IP addresses and cloud accounts. Supports subdomain detection and EASM monitoring.
HOST (host)
Represents a physical or virtual machine in the network. Tracks operating system information, hostnames, MAC addresses, serial numbers, and Active Directory integration (AD Object GUID/SID). Can be associated with multiple IP addresses and cloud resources.
NETWORK_DEVICE (network_device)
Represents network infrastructure equipment such as routers, switches, firewalls, or other networking hardware. Tracks device type, operating system, and associated IP addresses and domains.
SUBNET (subnet)
Represents a network subnet or IP range. Tracks CIDR notation, start/end IP ranges, VLAN ID, DHCP configuration, and whether it's a wireless network. Can be associated with companies.
DNS_RECORD (dns_record)
Represents DNS records (A, CNAME, MX, TXT, etc.) associated with domains. Tracks record type, target addresses, and domain relationships.
Application & software assets
APP (app)
Represents a software application. Tracks name, version information (major/minor/edition/service pack), URL, CPE name for vulnerability correlation, release date, end-of-life date, vendor, and category.
APPLICATION_INSTANCE (application_instance)
Represents a deployed instance of an application running on a host. Tracks service name, service account, startup parameters, install path, process information, authentication mode, and host/port associations. Supports LLM-based classification with confidence scores.
SOURCE_CODE (source_code)
Represents a source code repository or codebase that may be subject to security testing.
OPERATING_SYSTEM (operating_system)
Represents an operating system installation. Tracks OS type, platform, version details, release date, end-of-life date, and extended support end date. Associated with a vendor company.
PRODUCT (product)
Represents a commercial or third-party software product. Tracks product name, icon, website, description, and product categories. Used for identifying software in the environment.
Cloud assets
CLOUD_RESOURCE (cloud_resource)
Represents a cloud infrastructure resource (EC2 instances, storage buckets, containers, etc.). Tracks cloud provider (AWS/Azure/GCP), resource type, resource identifier, VPC, account, region, availability zone, and provider-specific attributes.
CLOUD_ACCOUNT (cloud_account)
Represents a cloud provider account. Tracks account credentials and configuration for AWS (external ID, role ARN), Azure (tenant/client/subscription IDs), and GCP (service account, project ID). Monitors credential expiration and scan status.
Identity & access assets
IDENTITY (identity)
Represents a user account or identity in the system. Tracks username, email, first/last name, SAM account name, identity type, Active Directory attributes, authentication realm, and flags for privileged access, MFA status, and role-based access.
GROUP (group)
Represents a security or distribution group. Tracks group name, type, Active Directory attributes, and membership relationships (identities, other groups, hosts). Supports raw permission storage for cloud IAM roles.
PERSON (person)
Represents a human individual in the organization. Tracks personal information (name, email, phone), job title, department, manager relationship, and employment details. Can be linked to multiple identities and companies.
Active Directory assets
AD_DOMAIN (ad_domain)
Represents an Active Directory domain. Tracks domain identifiers (GUID, SID, Distinguished Name), common name, parent domain, and forest relationship.
AD_FOREST (ad_forest)
Represents an Active Directory forest (top-level AD container). Tracks the forest name.
AD_ORGANIZATIONAL_UNIT (ad_organizational_unit)
Represents an Active Directory Organizational Unit (OU). Tracks OU name, AD identifiers, distinguished name, and parent domain.
AD_SERVICE_PRINCIPAL_NAME (ad_service_principal_name)
Represents a Service Principal Name (SPN) registered in Active Directory. Tracks the SPN, host, port, service class, service name, and associated identity.
AD_TRUSTED_DOMAIN (ad_trusted_domain)
Represents a trust relationship between Active Directory domains. Tracks trusted domain name, trust direction (inbound/outbound/bidirectional), transitivity, and AD identifiers.
File & storage assets
FILE_SHARE (file_share)
Represents a network file share. Tracks share path, UNC path, share type, file count, total size, and access information.
FILE (file)
Represents an individual file. Tracks file path, hash, parent file share/host, and flags for sensitive data detection (passwords, non-public data, high-risk content).
Organizational assets
COMPANY (company)
Represents a company or organization. Tracks company name, registration details, headquarters address, website, industry, employee count, parent/acquired company relationships, and contact information.
LOCATION (location)
Represents a physical location or office. Tracks address details (country, city, state, street, zip), location zone, department, owner, and parent relationships (company, other locations).
PHYSICAL_COMPONENT (physical_component)
Represents physical infrastructure components (servers, racks, UPS units, etc.). Tracks component type and parent relationships (location, company, other components).
Security & exposure assets
CERTIFICATE (certificate)
Represents an SSL/TLS certificate. Tracks certificate details including subject/issuer information, validity dates, fingerprints, serial number, public key information, and self-signed status.
ASN (asn / asn_client)
Represents an Autonomous System Number and its IP ranges. Tracks ASN value, name, domain, IP range (start/end), ownership status, and monitoring configuration.
Policy & generic assets
POLICY (policy)
Represents organizational security or compliance policies. Tracks policy name, type, subtype, category, department, and owner.
GENERIC_ASSET (generic_asset)
A flexible asset type for assets that don't fit other categories. Supports custom type-specific attributes via JSON storage.