Device Hardware Info

device_hw_info

The Device Hardware Information object contains details and specifications of the physical components that make up a device. This information provides an overview of the hardware capabilities, configuration, and characteristics of the device.

Attributes

Caption	Name	Type	Description
BIOS Date	`bios_date`	String	The BIOS date. For example: `03/31/16`.
BIOS Manufacturer	`bios_manufacturer`	String	The BIOS manufacturer. For example: `LENOVO`.
BIOS Version	`bios_ver`	String	The BIOS version. For example: `LENOVO G5ETA2WW (2.62)`.
Chassis	`chassis`	String	The chassis type describes the system enclosure or physical form factor. Such as the following examples for Windows Windows Chassis Types
CPU Architecture	`cpu_architecture`	String	The CPU architecture, normalized to the caption of the `cpu_architecture_id` value. In the case of `Other`, it is defined by the source.
CPU Architecture ID	`cpu_architecture_id`	Integer	The normalized identifier of the CPU architecture. `0`: Unknown (`UNKNOWN`) `1`: x86 (`X86`) `2`: ARM (`ARM`) `3`: RISC-V (`RISC_V`) `99`: Other (`OTHER`)
CPU Bits	`cpu_bits`	Integer	The cpu architecture, the number of bits used for addressing in memory. For example: `32` or `64`.
CPU Cores	`cpu_cores`	Integer	The number of processor cores in all installed processors. For Example: `42`.
CPU Count	`cpu_count`	Integer	The number of physical processors on a system. For example: `1`.
Processor Speed	`cpu_speed`	Integer	The speed of the processor in Mhz. For Example: `4200`.
Processor Type	`cpu_type`	String	The processor type. For example: `x86 Family 6 Model 37 Stepping 5`.
Desktop Display	`desktop_display`	Display[]	The desktop display affiliated with the event
Keyboard Information	`keyboard_info`	Keyboard Information[]	The keyboard detailed information.
RAM Size	`ram_size`	Integer	The total amount of installed RAM, in Megabytes. For example: `2048`.
Raw Data	`raw_data`	JSON	Group:`context` The event data as received from the event source.
Record ID	`record_id`	String	Group:`primary` Unique identifier for the object
Serial Number	`serial_number`	String	Entity:`SERIAL_NUMBER` The device manufacturer serial number.
Unmapped	`unmapped`	Unmapped[]	Data from the source that was not mapped into the schema.
UUID	`uuid`	UUID	The device manufacturer assigned universally unique hardware identifier. For example: The BIOS System UUID or the Apple IOPlatformUUID.
Vendor Name	`vendor_name`	String	The device manufacturer.

Relationships

Inbound Relationships

These objects and events reference Device Hardware Info in their attributes:

Outbound Relationships

Device Hardware Info references the following objects and events in its attributes:

This page describes ocsf-1.4.0