1. Censys
  2. Censys Attack Surface Management
  3. Foundations of ASM: Inventory Introduction

Other Articles In This Section

In this article:

Build Inventory Queries Using Search Shortcuts

  • Updated

Search Shortcuts provide insights into the top values of interesting fields for inventory results while providing an easy way to build queries with a click.  

Summarizing Your Inventory

On the Asset Inventory page, the Search Shortcuts side panel is located on the left. For each asset type, Search Shortcuts show the top values of commonly used fields for the assets returned by a query for. These breakdowns are query-dependent, meaning the aggregations will be recalculated for each new query submitted.

 

search_shortcut_tabs.gif

Figure 1:  Search Shortcuts

 

search_shortcut_protocols.png

Figure 2: The top protocols (service names) that are observed on hosts given the results of a search.

 

Quickly Search

Clicking a value will add key-value search criteria to the search bar query, leveraging the syntax from Censys’ Asset Schemas. The key-value pairs will append to any criteria already provided in the query bar.

Add a NOT statement

Hovering over a value will reveal an option to negate logic from a query.  By clicking the minus button, the key-value pair will append to the query with an “AND NOT” statement, allowing for easy removal from results. 

search_shortcut_hover.png

Figure 3: Hover to expose buttons which allow for adding or removing query logic

 

search_shortcut_negated_value.png

Figure 4:  Example of a search with a negated statement

 

Friendly Formatting

Friendly formatting helps summarize fields where there are an abundance of unique values or where logical grouping makes more sense than showing unique values.  On the Search Shortcuts panel, fields like association date are grouped into buckets of last 24 hours, last 7 days, last 30 days, and last year.   When clicking on one of those buckets, logic is appended to the query using the range syntax from Censys’ DSL that encompasses that time window.

search_shortcut_friendlyformat_2.pngsearch_shortcut_friendlyformat_1.png

Figures 5 & 6: Example Search Shortcuts with friendly formatting

 

Refining your query

Search Shortcuts are a quick way to start building effective queries which aid in the exploration of  attack surfaces.  Once logic is added to the query bar, it can easily be edited or refined to match a specific use case. For example, if an association date search shortcut was selected from the example above but one needed to see assets found on an exact date, you can edit the query logic to include the exact date needed.  

 

Related articles

Comments

0 comments

Please sign in to leave a comment.