Sections in this category

Applications and processes

  • Updated

We plan to add deeper integration with endpoint protection and device management solutions to obtain services and processes information on hosts.

Note that you can also add custom data by writing a script to call the J1 APIs.

What certificates are installed/being used?

Host level certificates details to be added later. You can query for ACM certificates in AWS.

Find Certificate

Find * that (HAS|USES) Certificate return tree

What certificates are used for which service?

Host level certificates details to be added later. You can query for ACM certificates in AWS.

Returns a graph of the resources that uses certificates

Find Certificate that relates to * return tree

Find certificates that are set to expire within 30 days

Find Certificate with expiresOn < date.now + 30days

What versions of software / applications do I have running?

Requires integrations that provide application information. For example, SAML SSO applications from Okta, or macOS apps from Jamf.

Find Application as app
return app._type, app.displayName, app.status

Note: to keep the entity data structure less noisy, different versions of the same Application are not stored as separate entities. Rather, the version data is kept on the relationship between the host or endpoint device that has installed the application.

Find unique * that (USES|INSTALLED) as installation Application as app
return app._type, app.displayName, installation.version

What software applications are not being used?

Find Application that !(ASSIGNED|USES) *

When was the last time a service or server runtime was refreshed / updated / cycled?

Returns EC2 instances and the AMI images they are using, and the creation timestamp of the AMI:

Find Host as h that uses Image as i
  return
    h.tag.AccountName, h.displayName, h.instanceId,
    i.displayName, i.imageId, i.createdOn
  order by
    h.tag.AccountName

Returns Lambda functions and when they were last updated:

Find Function as f
  return f.tag.AccountName, f.displayName, f.updatedOn, f.lastModified
  order by f.tag.AccountName

What are the running services on a system/host/device?

To be added.

What are the running processes on a system/host/device?

To be added.

🔝

Was this article helpful?

0 out of 0 found this helpful