Asset Types and Formats

This topic describes the asset types that you can add and the accepted sectors and locations to use when formatting assets.

Tip : The quality of threats and alerts is directly related to the defined assets; more defined assets will yield more complete and higher quality threats and alerts.

Asset types

The following table describes the assets that can be configured. Values are not case-sensitive unless specified as such in the Formatting column.

Company namesThe organization’s official name and names of subsidiaries. This includes commonly used short names, nicknames, product names, names for a range of products, and company trademarks.Nike, Microsoft
DomainsPublic domains owned by the company and/or those that serve its mail servers and email addresses.[company].com or [company].net
Brand namesA name to a trademark, or alternatively to a line of products, that was given by the legal owner of these assets.Coca-Cola, Pepsi
Mobile & browser appsLinks to the official application in mobile app stores and browser app stores. parts of the URL are case-sensitive; only the scheme/protocol (e.g. http://) and the host (e.g. are not. Trailing slashes are permitted.
Social media official pagesLinks to the official company pages and profiles in social media. This asset helps the system to locate fake pages.,, parts of the URL are case-sensitive; only the scheme/protocol (e.g. http://) and the host (e.g. are not. Trailing slashes are permitted.
External IP addressesThe range of external IP addresses that serve your organization., not provide internal IP addresses (such as,, IP ranges that contain more than 256 addresses must be split or receive special approval. To use subnet masks smaller than x.x.x.x/24, contactCustomer Support.
Login pagesURLs of official login pages. These assets help the system find leaked credentials and phishing webpages.Most parts of the URL are case-sensitive; only the scheme/protocol (e.g. http://) and the host (e.g. are not. Trailing slashes are permitted.
Technologies in useProducts, hardware, or software that are used in the organization. These assets help find published vulnerabilities about company technologies. You can add multiple naming schemes (CPEs) at once, as described in The "Technologies in use" asset (or in (doc:configuring-assets#the-technologies-in-use-assets) for the deprecated Assets page.Google Chrome 10.0.603.0, Alcatel Adsl Modem 1000Values are case-sensitive.
DLP indicatorsData Loss Prevention indicator strings are UNIQUE company DLP that mark internal company documents. This helps identify leaked documents to make threat and alert notifications more relevant. For more information, see Data Leakage.“[Company] confidential”, “Property of [Company]”, “Classification level - [Company]”).Values are case-sensitive.

Not simply the word "confidential" or "classified," DLP should include a string with a company or brand name or a unique string known within your company.
Secret projectsIn-house technologies and project names. These assets help the system identify leakage of sensitive company information.Tell Nobody XYZ, Secret Plans Eagle
VIP namesNames of company VIPs or other personnel who possess sensitive data (e.g., other executives, IT personnel)John Doe, Jane Doe
VIP emailsEmail addresses of company VIPs or other personnel who possess sensitive data (e.g., other executives, IT personnel),
Countries of activityCountries where the organization headquarters and branch offices are located. These assets help the system find alerts relevant to the company's geographic areas of activity.See theaccepted country values.
SectorsSectors in which the company operates. These assets help the system find alerts relevant to the organization’s sector.Values are case-sensitive. See the accepted sector values.
BIN numbersThe bank identification number (BIN), the initial four to six numbers of a credit card, indicates the institution that issued the credit card. BIN is primarily used to match between the transaction and the person or company that supplies something.
Routing numbersThe bank routing number or routing transit number (RTN) is a nine-digit code used to identify financial institutions in a transaction. Most common transaction types where routing numbers are used are ACH and wire transfers.
SWIFT codesThe SWIFT (or BIC) code contains 8 or 11 alphanumeric characters that represent international banking numbers used for international transactions.Values are case-sensitive.
Public repositoriesThe URL of a repository to check for leaked secrets. Use the URL of the specific repository to be covered (not the "organization" page that may include nested repositories). or parts of the URL are case-sensitive; only the scheme/protocol (e.g. http://) and the host (e.g. are not. Trailing slashes are permitted.

Note: is not a valid asset, as it refers to an account overview and not a repository.
Public repository queriesUnique, high-indication, exact strings that will help to target repositories connected to your business.

Common uses: internal server names, AD path, subdomains (not SMTP mail domains), company GIT, package names, etc.
· AD path "dc=aryp,dc=com"

· Subdomains

· Company GIT "git.newegle"

· Package name or package name query "com.kioup.dc.function.core.model.SearchResult" or ".com.ritnyl" AND "apikey"
Values are case-sensitive.

All searches are considered to be exact, as if the search term is surrounded by apostrophes. You can use the AND (uppercase) operator to combine multiple exact terms.
Code mentionsA phrase, keyword, or complex expression that, when found in code outside of a company repository, can indicate code leakage or unauthorized use of a company asset. Every found mention of the listed phrase will be displayed as anAsset Mentionsthreat."PyRepScan" describes an internal library that is specific to Rapid7. AND <password>
Any word or phrase that is relevant to company code. This can also be a word that describes a component within the code. Values are case-sensitive.

For most accurate results, every phrase is searched for an exact match.

To search for more than one phrase, use the AND operator between the phrases.
Custom QueriesKeywords (max: 5) that indicate interesting cyberintelligence content.gasoline, gasoline AND unleaded, "unleaded gasoline"Values are case-sensitive.

To find a combination, separate the keywords by a space and the word AND (uppercase). To match an exact phrase, surround it with apostrophes. Special characters will be automatically escaped. For example, the phrase New-York will be translated to New-York.
Black listWords or expressions that typically appear on web pages that contain irrelevant only, advertisement
Patent drugsA medication that is sold under a brand name by which the clinicians can prescribe it. The medication is covered under patent protection.
Brand name drugsA medication that is sold under a brand name by which the clinicians can prescribe it.Viagra

Accepted location values

This section lists the accepted location values.

AfghanistanCayman IslandsGibraltarLibyan Arab JamahiriyaOmanSouth Sudan
Åland IslandsCentral African RepublicGreeceLiechtensteinPakistanSpain
AlbaniaChadGreenlandLithuaniaPalauSri Lanka
AlgeriaChileGrenadaLuxembourgPalestine, State ofSudan
American SamoaChinaGuadeloupeMacaoPanamaSuriname
AndorraChristmas IslandGuamMacedonia, The Former Yugoslav Republic ofPapua New GuineaSvalbard and Jan Mayen
AngolaCocos (Keeling) IslandsGuatemalaMadagascarParaguaySwaziland
Antigua and BarbudaCongoGuinea-BissauMaldivesPitcairnSyrian Arab Republic
ArgentinaCongo, The Democratic Republic of theGuyanaMaliPolandTaiwan
ArmeniaCook IslandsHaitiMaltaPortugalTajikistan
ArubaCosta RicaHeard Island and Mcdonald IslandsMarshall IslandsPuerto RicoTanzania, United Republic of
AustraliaCroatiaHoly See (Vatican City State)MartiniqueQatarThailand
AzerbaijanCuraçaoHong KongMauritiusRomaniaTogo
BahamasCyprusHungaryMayotteRussian FederationTokelau
BahrainCzech RepublicIcelandMexicoRwandaTonga
BangladeshDenmarkIndiaMicronesia, Federated States ofSaint BarthélemyTrinidad and Tobago
BarbadosDjiboutiIndonesiaMoldova, Republic ofSaint HelenaTunisia
BelarusDominicaIran, Islamic Republic OfMonacoSaint Kitts and NevisTurkey
BelgiumDominican RepublicIraqMongoliaSaint LuciaTurkmenistan
BelizeEcuadorIrelandMontenegroSaint Martin (French part)Turks and Caicos Islands
BeninEgyptIsle of ManMontserratSaint Pierre and MiquelonTuvalu
BermudaEl SalvadorIsraelMoroccoSaint Vincent and the GrenadinesUganda
BhutanEquatorial GuineaItalyMozambiqueSamoaUkraine
BoliviaEritreaJamaicaMyanmarSan MarinoUnited Arab Emirates
Bonaire, Sint Eustatius and SabaEstoniaJapanNamibiaSao Tome and PrincipeUnited Kingdom
Bosnia and HerzegovinaEthiopiaJerseyNauruSaudi ArabiaUnited States
BotswanaFalkland Islands (Malvinas)JordanNepalSenegalUnited States Minor Outlying Islands
Bouvet IslandFaroe IslandsKazakhstanNetherlandsSerbiaUruguay
BrazilFijiKenyaNetherlands AntillesSeychellesUzbekistan
British Indian Ocean TerritoryFinlandKiribatiNew CaledoniaSierra LeoneVanuatu
Brunei DarussalamFranceKorea, Republic ofNew ZealandSingaporeVenezuela
BulgariaFrench GuianaKosovoNicaraguaSint Maarten (Dutch part)Vietnam
Burkina FasoFrench Southern TerritoriesKuwaitNigerSlovakiaVirgin Islands, British
BurundiGabonKyrgyzstanNigeriaSloveniaVirgin Islands, U.S.
CambodiaGambiaLatviaNiueSolomon IslandsWallis and Futuna
CameroonGeorgiaLebanonNorfolk IslandSomaliaWestern Sahara
CanadaGermanyLesothoNorthern Mariana IslandsSouth AfricaYemen
Cape VerdeGhanaLiberiaNorwaySouth Georgia and the South Sandwich IslandsZambia

Accepted sector values

This section lists the accepted sector values (case-sensitive).

AdvertisingConsumer DurablesFood & BeverageInvestmentPublishing
Aerospace/DefenseConsumer Non-DurablesGamingLaw EnforcementReal Estate
AutomotiveDiversified ServicesHealth ServicesMajor CorporationsRetail
BankingEducationHotels, Restaurants & LeisureManufacturingSport
CasinoElectronicsHuman Resources DepartmentsMaterials & ConstructionTechnology
Computer HardwareEntertainmentInformation servicesMetals & MiningTobacco
Computer Software & ServicesFinancial ServicesInsuranceNon-ProfitTransportation