OctoXLabs CAASM Platform
  • Welcome to OctoXLabs Documentation Portal
  • Installation & System Requirements
  • Setting up OctoXLabs
    • Installing OctoXLabs
    • Updating OctoXLabs
    • Add SSL Certificate to OctoXLabs
  • Using OctoXLabs
    • Connect Adapters
    • Examine a Device Profile
    • Tag a Device
    • Save a Query
    • Create a Dashboard Chart
    • Generate a Report
  • ADAPTERS
    • Adapters
      • Addigy
      • A Cloud Guru
      • Admin by Request
      • Assure1 by Federos
      • Apache Cloudstack
      • Aruba ClearPass
      • Atera
      • Attivo Networks Decoy
      • Attivo Networks Endpoints
      • Automox
      • AWS Elastic Compute Cloud (EC2)
      • Beamsec PhishTrace
      • BigFix (formally IBM BigFix)
      • BigFix Inventory
      • Binalyze Air
      • Bit Defender
      • Bizzy
      • Blue Coat Proxy
      • BMC Client Management
      • BMC TrueSight Server Automation
      • Boldon James Classifier
      • Box
      • Broadcom Automic
      • Cisco Advanced Malware Protection (AMP)
      • Cisco Identity Services Engine (ISE)
      • Cisco Meraki
      • Cisco Umbrella
      • Claroty CTD
      • Collibra
      • Commvault (Beta)
      • CrowdStrike Falcon
      • CrowdStrike Falcon Discover
      • CrowdStrike Falcon IDP
      • CrowdStrike Falcon Spotlight
      • CSV File
      • CyberArk EPM
      • Cynet 360
      • Datadog
      • Delinea EPM
      • Delinea Secret Server
      • Device42
      • DHCP Server
      • Dynatrace
      • Entropi
      • Eset Connect
      • Eset Inspect
      • Eset Protect
      • F5 Waf Centralized Management
      • ForcePoint DLP
      • Forescout NAC
      • Fortify Data
      • Fortinet FortiClient EMS
      • Fortinet FortiSIEM
      • Fortinet FortiNAC
      • Gitlab
      • GLPI
      • Grafana
      • IBM Guardium
      • Harmony Endpoint Management (Beta)
      • HP Device Manager
      • Humio
      • IBM QRadar
      • Imperva Database Activity Monitoring (DAM)
      • Infoblox DDI
      • Ivanti Device Control
      • Jamf Pro
      • Jira Assets
      • JSON File
      • Kandji
      • Kaspersky SC
      • Keepnet Labs
      • Karmasis Dataskope
      • KnowBe4
      • Lansweeper
      • Manage Engine Asset Explorer
      • ManageEngine Desktop Central
      • ManageEngine MDM
      • ManageEngine OP Manager
      • Manage Engine Service Desk Plus
      • McAfee ePolicy Orchestrator (EPO)
      • Microsoft AIP
      • Microsoft Active Directory (AD)
      • Microsoft Azure
      • Microsoft Azure Entra
      • Microsoft BitLocker Administration and Monitoring (MBAM)-(SCCM)
      • Microsoft Defender For Endpoint (ATP)
      • Microsoft Defender for IoT (formerly CyberX)
      • Microsoft Intune
      • Microsoft System Center Configuration Manager (SCCM)
      • Microsoft System Center Operations Manager (Scom)
      • Microsoft Windows Server Update Services (WSUS)
      • NetBox
      • Netskope
      • Nutanix Prism
      • ObserveIT
      • Opal
      • Openshift
      • OpenText UCMDB (formerly Microfocus UCMDB)
      • OpenVAS DB
      • Opsgenie
      • Oracle DB
      • Oracle Enterprise Manager
      • Oracle Weblogic Server
      • Palo Alto Cortex XDR
      • PDQ Adapter
      • Postgre SQL Server
      • Prey
      • Prisma Cloud (formerly Twistlock)
      • PRTG Network Monitor (Beta)
      • Qualys Cloud Platform
      • Redhat Automation Controller Beta (formerly Ansible Tower)
      • Rapid7 Nexpose
      • Red Hat Satellite
      • RSA Archer
      • RSA Archer CSV
      • ScopNet NAC
      • SecFusion
      • SecFusion API
      • Sentinel One EDR
      • Servicenow CMDB
      • Skybox
      • Slack
      • Snow Commander
      • SolarWinds Orion
      • Sophos Central
      • Sophos Endpoint Protection
      • Splunk Enterprise Security
      • Suse Manager
      • SQL Server
      • Symantec Data Critical System Protection (CSP)
      • Symantec Data Center Security (DCS)
      • Symantec Data Loss Prevention (DLP)
      • Symantec Endpoint Detection and Response (EDR)
      • Symantec Endpoint Protection
      • Symantec Endpoint Security (SES)
      • SQL Server
      • Tenable Nessus
      • Teramind
      • Tenable Nessus Sensors
      • Tenable.io
      • Tenable.sc (Security Center)
      • Titus
      • Trellix XDR Platform (formerly FireEye HX)
      • Trend Micro Apex One
      • Trend Micro Deep Security
      • Trend Micro Vision One
      • Vectra AI
      • Veritas NetBackup
      • VMware Carbon Black
      • Vmware ESXI
      • VMware MDM AirWatch
      • VMware vCenter
      • Vultr
      • Wazuh
      • XLSX File
      • Zabbix
  • Action Center
    • Create Request
      • Jira Notification
      • Service Desk Notification
    • Notify
      • Send Mail
      • Send Slack Notification
      • Teams Notification
      • Webhook Notification
  • Octo API
  • Release Notes
    • OctoXLabs 5.x
      • Release Notes - v5.2.0
      • Release Notes - v5.1.0
      • Release Notes - v5.0.0
    • Previous Releases
      • OctoXLabs 4.x
        • Release Notes - v4.5.0
        • Release Notes - v4.4.0
        • Release Notes - v4.3.1
        • Release Notes - v4.3.0
        • Release Notes - v4.2.0
        • Release Notes - v4.1.1
        • Release Notes - v4.1.0
        • Release Notes - v4.0.0
        • Release Notes - v4.0.1
      • OctoXLabs 3.x
        • Release Notes - v3.3.0
        • Release Notes - v3.2.0
        • Release Notes - v3.1.0
        • Release Notes - v3.0.0
      • OctoXLabs 2.x
        • Release Notes - v2.6.0
        • Release Notes - v2.5.1
        • Release Notes - v2.5.0
        • Release Notes - v2.4.0
        • Release Notes - v2.2.1
Powered by GitBook
On this page
  • Searching for Assets
  • Running a Saved Query
  • Running your Own Query

Was this helpful?

  1. Using OctoXLabs

Examine a Device Profile

You can examine the details about your devices by looking at their profile pages, which displays the data that OctoXLabs collected and correlated from multiple sources.

PreviousConnect AdaptersNextTag a Device

Last updated 3 months ago

Was this helpful?

To learn more about Device Profile, see:

  • Asset Profile page

  • Asset Profile Page - Complex Fields

Searching for Assets

The search bar enables free text search to identify and investigate a specific asset.

To search for assets:

  1. Click the search icon Searchicon to open the search bar on any OctoXLabs page.

  1. Enter the text to be searched.

  1. When you search for a specific text, depending on the page you're currently on, the search is executed on the main device or user attributes, including:

  • Devices - Asset name, host, manufacturer serial number, MAC addresses, IP addresses, last used users and tags etc.

  • Users - Mail, username, first name, last name, tags etc.

  1. The search results are displayed in a table, sorted by the number of solutions discovered on the asset (by default, 'Adapters' column).

In the search page, you can:

  • Investigate a specific asset - click any device or user record to review its details. For details, see Asset Profile page.

  • View the entire device or user list of results - click 'View in Devices' or 'Click in Users' will display the complete list of results. For details, see Devices page and Users page.

Running a Saved Query

The Devices page displays all the collected devices for the chosen query. The query is displayed inside the search bar. If no query has been chosen, the page displays all collected devices.

To run a saved query, hover on Devices icon and from the menu, select Saved Queries.

  1. Click Saved Queries in the top right corner above the query results table. The Queries page opens, displaying all the saved queries filtered by device entities.

  2. Search for a query and click its record to view its details and then run it.

  1. Click any device record to review its details. For details, see Asset Profile page.

Running your Own Query

Use the Query Wizard to create granular queries to understand how assets adhere to their policies.

To create and run your own query:

  1. From the Devices page, click Query Wizard on the top right corner above the Devices table.

  2. Use the Query Wizard to add filtering expressions on different properties of devices. You can create multiple filter expressions and decide on the logical operators between them to create complex filtering conditions.

For example, the expression below filters all devices with a Windows operating system (using OS Type field) that were seen in OctoXLabs in the last 7 days:

The Query Wizard consists of the following elements which require user input to create a filter expression:

  • AND/OR switch

  • NOT Flag

  • Source drop-down

  • Field drop-down

  • Operator drop-down

  • Value field

  • Bracket controls

To run the query, click Search. Click any device record to review its details.

For details, see Asset Profile page.