About Assets

An Asset represents a monitored entity within the environment, such as a host, server, or device. Assets are stored in the Hosts Database and serve as key reference points for incidents, alerts, and user activity. Proper documentation and linkage of assets ensure efficient investigation and management of security events.

Assets Database Fields

Assets contain the following fields:

• Asset
  • The hostname of the asset. This serves as the primary identifier for the asset within the database.
• Asset IP Address
  • The internal IP address of the asset.
• Operating System
  • The operating system running on the asset, including its version. This helps in identifying the platform and determining potential vulnerabilities or configurations specific to the OS.
• Related Accounts
  • Links to system or user accounts in the .
• Analyst Notes
  • Notes or comments added by analysts to provide context, observations, or any other relevant details regarding the asset.
• Description
  • A brief description of the asset, including its role, purpose, or function within the organization.
• Owner
  • The individual or team responsible for the asset. This ensures accountability and helps with effective communication during investigations or audits.
• Tags
  • Customizable labels or keywords associated with the asset. Tags help in categorizing and organizing assets for easy filtering and identification (e.g., "critical", "production", "test environment").