Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Rapid7InsightVMCloudAssets table contains asset information from Rapid7 InsightVM Cloud.
Table attributes
| Attribute | Value |
|---|---|
| Resource types | - |
| Categories | Security |
| Solutions | SecurityInsights |
| Basic log | Yes |
| Ingestion-time DCR support | No |
| Lake-only ingestion | Yes |
| Sample Queries | Yes |
Columns
| Column | Type | Description |
|---|---|---|
| AssessedForPolicies | bool | Whether an asset was assessed for policies |
| AssessedForVulnerabilities | bool | Whether an asset was assessed for vulnerabilities |
| AssetType | string | The type of asset |
| _BilledSize | real | The record size in bytes |
| CredentialAssessments | string | The credential assessments for the asset |
| CriticalVulnerabilities | real | The count of critical vulnerability findings |
| Exploits | real | The count of known unique exploits that can be used to exploit vulnerabilities on the asset |
| HostName | string | The host name (local or FQDN) |
| Id | string | The asset identifier |
| Ip | string | The IPv4 or IPv6 address |
| _IsBillable | string | Specifies whether ingesting the data is billable. When _IsBillable is false ingestion isn't billed to your Azure account |
| LastAssessedForVulnerabilities | datetime | The time at which an asset was assessed for vulnerabilities |
| LastScanEnd | datetime | The time at which the last scan of the asset ended |
| LastScanStart | datetime | The time at which the last scan of the asset started |
| Mac | string | The Media Access Control (MAC) address with format specification |
| MalwareKits | real | The count of known unique malware kits that can be used to attack vulnerabilities |
| ModerateVulnerabilities | real | The count of moderate vulnerability findings |
| New | string | Vulnerabilities that are new in the latest version (when comparison time is supplied) |
| OsArchitecture | string | The architecture of the operating system |
| OsDescription | string | The description of the operating system (containing vendor, family, product, version and architecture) |
| OsFamily | string | The family of the operating system |
| OsName | string | The name of the operating system |
| OsSystemName | string | A combination of vendor and family (with redundancies removed), suitable for grouping |
| OsType | string | The type of operating system |
| OsVendor | string | The vendor of the operating system |
| OsVersion | string | The version of the operating system |
| Remediated | string | Vulnerabilities that were remediated in the latest version (when comparison time is supplied) |
| RiskScore | real | The risk score (with criticality adjustments) of the asset |
| Same | string | Vulnerabilities that are the same between current and comparison time (when comparison time is supplied and includeSame is true) |
| SevereVulnerabilities | real | The count of severe vulnerability findings |
| SourceSystem | string | The type of agent the event was collected by. For example, OpsManager for Windows agent, either direct connect or Operations Manager, Linux for all Linux agents, or Azure for Azure Diagnostics |
| Tags | string | The tags applied to the asset |
| TenantId | string | The Log Analytics workspace ID |
| TimeGenerated | datetime | The time the event was generated |
| TotalVulnerabilities | real | The total count of vulnerability findings |
| Type | string | The name of the table |
| UniqueIdentifiers | string | Unique identifiers found on the asset, such as hardware or operating system identifiers |