Sha256: 315e486efe6367129eaa8b25c0c5b3b78539aba5bdeea63ccdac51783127fb62

Contents?: true

Size: 1.85 KB

Versions: 12

Compression:

Stored size: 1.85 KB

Contents

# Recog: Identifiers

This directory contains lists of standard identifiers for mapping Recog matches. The goal is define a standard set of constants to represent known software, hardware, vendors, and categories.

This is currently incomplete and will be updated as standardization work moves forward.

Fingerprints should use these identifiers whenever possible; if a different name or syntax for a given identifier is preferred, this should be implemented in the application through a mapping function.

## Lists

### Vendors

`vendor.txt` defines known vendor names, covering services, operating systems, and hardware.

### Operating Systems

`os_architecture.txt` defines known CPU types.

`os_product.txt` defines known operating system names.

`os_family.txt` defines known operating system families.

`os_device.txt` defines known types of devices by function or purpose.


### Hardware

`hw_product.txt` defines known hardware product names.

`hw_family.txt` defines known hardware product families.

`hw_device.txt` defines known types of devices by function or purpose (overlaps with `os_device.txt`).

### Services

`service_product.txt` defines known service product names.

`service_family.txt` defines known service product families.

### Software

`software_product.txt` defines known software product names.

`software_family.txt` defines known software product families.

`software_class.txt` defines known types of software by function or purpose.

## Pending Work

  * All existing fingerprints should be correlated against these lists to identify mismatches and updated accordingly.

  * All net new identifiers from the existing fingerprints should be merged into these lists.

  * All fingerprint assertions should be enumerated, documented, and standardized where possible (`host.mac`, etc).

  * Hardware identifiers should be enumerated, consolidated, and standardized.

Version data entries

12 entries across 12 versions & 2 rubygems

Version Path
recog-2.3.19 identifiers/README.md
recog-2.3.18 identifiers/README.md
recog-2.3.17 identifiers/README.md
recog-2.3.16 identifiers/README.md
recog-2.3.15 identifiers/README.md
recog-intrigue-2.3.14 identifiers/README.md
recog-2.3.14 identifiers/README.md
recog-2.3.13 identifiers/README.md
recog-2.3.12 identifiers/README.md
recog-2.3.11 identifiers/README.md
recog-2.3.10 identifiers/README.md
recog-2.3.9 identifiers/README.md