Lansweeper

Overview

Lansweeper is a robust IT asset management solution widely recognized for its deep scanning capabilities, which allow organizations to automatically discover and inventory all network assets. This includes a comprehensive scan of hardware, software, and users across an IT infrastructure. Lansweeper collects detailed data on every asset, such as hardware configurations, installed software, operating systems, and network device setups. This helps organizations maintain a complete and up-to-date overview of their IT landscape, crucial for managing IT costs, compliance, and security.

Supported data types

Lansweeper Vulnerabilities

Table name: lansweeper_vulnerabilities

Vulnerabilities represent weaknesses or flaws in your assets that could potentially be exploited by attackers.

Lansweeper Assets

Table name: lansweeper_assets

Any and all components of an organization's IT environment that can be inventoried and managed through the Lansweeper software. These assets encompass a wide range of hardware and software elements within a network.

Send data to Hunters

Hunters support API collection for Lansweeper logs.

To send data to Hunters:

1. Follow the steps listed in this guide to create a Personal Application.

2. Upon completing the process you will receive an Application Identity code. Copy it for the next step.
    

3. Complete the connection process on Hunters by following this guide and providing the code you've obtained in the previous step.

Expected format

Logs are expcted in JSON format.

Lansweeper Vulnerabilities

{
                        "cve": "CVE-2024-20253",
                        "riskScore": 10,
                        "severity": "Critical",
                        "assetKeys": [
                            "asd==",
                            "asd"
                        ],
                        "attackVector": "Network",
                        "attackComplexity": "Low",
                        "source": "Cisco Systems, Inc.",
                        "updatedOn": "2024-02-02 16:15:53",
                        "availabilityImpact": "HIGH",
                        "baseScore": 10,
                        "confidentiality": "HIGH",
                        "integrity": "HIGH",
                        "privilegeRequired": "NONE",
                        "publishedOn": "2024-01-26 18:15:10",
                        "scope": "CHANGED",
                        "userInteraction": "NONE",
                        "weaknessEnumeration": [
                            "CWE-502"
                        ],
                        "references": [
                            {
                                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-rce-bWNzQcUm",
                                "tags": [
                                    "Issue Tracking",
                                    "Vendor Advisory"
                                ]
                            }
                        ],
                        "isActive": true
                    }

Lansweeper Assets

{
                        "assetBasicInfo": {
                            "name": "1.2.3.4",
                            "type": "Printer",
                            "firstSeen": "2024-01-15T06:07:41.000Z",
                            "ipAddress": "1.2.3.4",
                            "lastSeen": "2024-04-01T20:07:01.000Z",
                            "mac": "AB:AB:FF:FF:FF:FF"
                        },
                        "key": "02e92c34-2983-33d1-a4f7-786161edcb4f",
                        "assetCustom": {
                            "stateName": "Active"
                        }
                    }