Dragos Platform
- 23 Jan 2023
- 2 Minutes to read
-
Print
-
DarkLight
-
PDF
Dragos Platform
- Updated on 23 Jan 2023
- 2 Minutes to read
-
Print
-
DarkLight
-
PDF
The Dragos Platform identifies ICS network assets, malicious activity, and provides guidance to investigate incidents.
Types of Assets Fetched
This adapter fetches the following types of assets:
- Devices
Parameters
- Host Name or IP Address (required) - The Host Name or IP Address of the Dragos Platform server.
- User Name and Password (required) - The credentials for a user account that has the permissions to fetch assets.
- Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Host Name or IP Address. For more details, see SSL Trust & CA Settings.
- When enabled, the SSL certificate offered by the value supplied in Host Name or IP Address is verified against the CA database inside of Axonius. When the SSL certificate can not be validated against the CA database inside Axonius, the connection fails with an error.
- When disabled, the SSL certificate offered by the value supplied in Host Name or IP Address is not verified against the CA database inside Axonius.
- HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Host Name or IP Address.
- When supplied, Axonius uses the proxy when connecting to the value supplied in Host Name or IP Address.
- When not supplied, Axonius connects directly to the value supplied in Host Name or IP Address.
- HTTPS Proxy User Name (optional, default: empty) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
- When supplied, Axonius authenticates with this value when connecting to the value supplied in HTTPS Proxy.
- When not supplied, Axonius does not perform authentication when connecting to the value supplied in HTTPS Proxy.
- HTTPS Proxy Password (optional, default: empty) - The password to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
- When supplied, Axonius authenticates with this value when connecting to the value supplied in HTTPS Proxy.
- When not supplied, Axonius does not perform authentication when connecting to the value supplied in HTTPS Proxy.
- To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.
Advanced Settings
Note:
Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to Advanced Configuration for Adapters
- Parallel Requests Count (required, default: 5) - Specify the maximum number of parallel requests all connections for this adapter will create when connecting to the value supplied in Dragos Host Name or IP Address.
- Fetch internal devices only - Select to only fetch devices where the internal flag is set to 'True'. Devices with a public IP address will not be fetched.
- Fetch Vulnerabilities - When checked, the adapter will also fetch vulnerabilities. This requires "VulnerabilityDetectionRead" privilege from the API users
NOTE
For details about general advanced settings under the Adapter Configuration tab, see Adapter Advanced Settings.