Asset Inventory¶

Comprehensive guide to managing your asset inventory in Hive.

Overview¶

The asset inventory provides a centralized view of all discovered assets across your attack surface.

Accessing the Inventory¶

Navigate to Assets → All in the sidebar
View all discovered assets in a unified list
Filter, search, and sort as needed

📸 Screenshot: Asset inventory view

Inventory Views¶

List View¶

Default View: Tabular list of all assets

Columns: - Asset Type - Name/Value - Discovery Date - Last Seen - Engagement - Vulnerabilities - Tags

Actions: - Sort by any column - Multi-select assets - Bulk operations - Export to CSV

Grid View¶

Card-Based Layout: Visual representation of assets

Features: - Asset type icons - Quick stats - Status indicators - Quick actions

Graph View¶

Relationship Visualization: See how assets connect

Features: - Interactive graph - Zoom and pan - Filter relationships - Export graph image

See Asset Types for detailed information on each asset type.

Filtering Assets¶

Quick Filters¶

By Type: - URLs - Sites - Hosts - IPs - Ports - DNS - Applications - Metadata

By Status: - Active - Inactive - Has Vulnerabilities - Recently Discovered

Advanced Filters¶

Filter Builder: 1. Click Advanced Filters 2. Add filter conditions 3. Combine with AND/OR 4. Save filter for reuse

Filter Examples:

Type = "Site" AND Tags contains "production"
Discovery Date > "2024-01-01" AND Vulnerabilities > 0
Engagement = "Q1 Pentest" AND Type = "URL"

Searching Assets¶

Quick Search¶

Search Bar: Top of inventory page

Searches: - Asset names - IP addresses - Domains - Tags - Notes

Syntax:

example.com          # Find exact match
*.example.com        # Wildcard search
tag:production       # Search by tag
vuln:critical        # Has critical vulns

Advanced Search¶

Search Operators: - AND: Both conditions - OR: Either condition - NOT: Exclude condition - (): Group conditions

Examples:

(type:site OR type:url) AND tag:production
ip:203.0.113.* AND NOT tag:archived
port:443 AND vuln:high

Asset Details¶

Viewing Details¶

Open Asset: 1. Click on any asset 2. View detailed information 3. See relationships 4. Check vulnerabilities

Detail Sections: - Overview: Basic information - Attributes: All properties - Relationships: Connected assets - Vulnerabilities: Security issues - History: Change log - Notes: User comments

Editing Assets¶

Edit Attributes: 1. Open asset details 2. Click Edit 3. Modify fields 4. Save changes

Editable Fields: - Tags - Notes - Criticality - Owner - Environment - Custom attributes

Bulk Operations¶

Selecting Assets¶

Selection Methods: - Click checkboxes - Select all visible - Select by filter - Select range

Selection Info: Shows count of selected assets

Bulk Actions¶

Available Actions: - Add Tags: Tag multiple assets - Remove Tags: Untag assets - Export: Download selected - Delete: Remove assets - Assign: Set engagement - Change State: Update status

Example Workflow: 1. Filter to production sites 2. Select all 3. Add tag "production" 4. Add tag "critical" 5. Confirm

Tagging System¶

Tag Management¶

Create Tags: 1. Go to Configuration → Tags 2. Click Create Tag 3. Set name and color 4. Save tag

Tag Categories: - Environment (prod, staging, dev) - Criticality (critical, high, medium, low) - Ownership (team-security, team-devops) - Compliance (pci, hipaa, sox) - Custom categories

Tag Best Practices¶

✅ Use Consistent Names: Standardize tag names
✅ Color Code: Use colors for quick identification
✅ Document Tags: Maintain tag definitions
✅ Review Regularly: Clean up unused tags
✅ Automate Tagging: Use rules where possible

Asset Relationships¶

Viewing Relationships¶

Relationship Panel: - Shows connected assets - Relationship type - Click to navigate

Relationship Types: - Parent-child (Site contains URLs) - Association (URL uses Application) - Vulnerability (Asset has Vuln)

Graph Visualization¶

Interactive Graph: 1. Click View Graph 2. Explore connections 3. Filter by type 4. Zoom and pan

Graph Controls: - Zoom in/out - Pan - Filter nodes - Filter edges - Export image

Exporting Data¶

Export Options¶

Export Formats: - CSV: Spreadsheet compatible - JSON: API format - PDF: Report format - XML: Structured data

Export Scope: - All assets - Filtered assets - Selected assets - Current view

Custom Exports¶

Configure Export: 1. Select assets 2. Click Export 3. Choose format 4. Select fields 5. Download

Field Selection: - All fields - Custom selection - Include relationships - Include vulnerabilities

Asset Lifecycle¶

Discovery¶

How Assets Are Discovered: - Automated scans - Manual import - API integration - Cloud provider sync

Discovery Sources: - Nmap scans - Web crawlers - Subdomain enumeration - Service detection

Tracking Changes¶

Change History: - Asset created - Attributes modified - Tags added/removed - State changes - Vulnerabilities found

View History: 1. Open asset details 2. Click History tab 3. Review changes 4. Filter by type

Archiving Assets¶

When to Archive: - Asset decommissioned - Out of scope - No longer relevant - Duplicate entry

Archive Process: 1. Select assets 2. Click Archive 3. Add reason 4. Confirm

Archived Assets: - Hidden by default - Can be restored - Excluded from reports - Kept for audit

Integration¶

Import Assets¶

Import Sources: - CSV file - JSON file - API - Cloud providers

Import Process: 1. Go to Assets → Import 2. Select source 3. Map fields 4. Validate data 5. Import

Export to Other Tools¶

Export Destinations: - SIEM systems - Ticketing systems - Asset management - Spreadsheets

API Export:

# Export via API
curl -H "Authorization: Bearer $TOKEN" \
  https://api.hive.darksidesecurity.io/assets \
  > assets.json

Reporting¶

Asset Reports¶

Generate Reports: 1. Navigate to Intelligence → Reporting Engine 2. Select Asset Inventory Report 3. Configure options 4. Generate

Report Options: - Asset types to include - Date range - Engagement filter - Include vulnerabilities - Include relationships

Scheduled Reports¶

Automate Reporting: 1. Create report template 2. Set schedule (daily, weekly, monthly) 3. Configure recipients 4. Enable automation

Best Practices¶

Inventory Management¶

✅ Scan Regularly: Keep inventory current
✅ Tag Consistently: Use standard taxonomy
✅ Review Changes: Monitor new assets
✅ Clean Up: Archive old assets
✅ Document: Add context and notes
✅ Automate: Use rules and integrations

Security Practices¶

✅ Monitor New Assets: Alert on discoveries
✅ Assess Criticality: Prioritize protection
✅ Track Vulnerabilities: Link to assets
✅ Limit Exposure: Reduce attack surface
✅ Audit Access: Control who sees what

Troubleshooting¶

Assets Not Showing¶

Check: - Filters applied - Correct engagement selected - Asset state (active/inactive) - Permissions

Solution: - Clear filters - Select "All Engagements" - Include inactive assets - Check user permissions

Slow Performance¶

Causes: - Large dataset - Complex filters - Many relationships

Solutions: - Use pagination - Narrow filters - Limit relationship depth - Export for analysis

Missing Data¶

Causes: - Incomplete scan - Network restrictions - Configuration issues

Solutions: - Rerun scan - Check network access - Review scan logs - Verify configuration

Related: Asset Types | Graph View | Dashboard