Operating System (OS)
os
The Operating System (OS) object describes characteristics of an OS, such as Linux or Windows.
Attributes
| Caption | Name | Type | Description |
|---|---|---|---|
| OS Build | build | String | The operating system build number. |
| Country | country | String | Entity: Note: The two letter country code should be capitalized. For example: |
| The product CPE identifier | cpe_name | String | The Common Platform Enumeration (CPE) name as described by (NIST) For example: |
| CPU Bits | cpu_bits | Integer | The cpu architecture, the number of bits used for addressing in memory. For example: |
| OS Edition | edition | String | The operating system edition. For example: |
| Kernel Release | kernel_release | String | The kernel release of the operating system. On Unix-based systems, this is determined from the |
| Language | lang | String | The two letter lower case language codes, as defined by ISO 639-1. For example: |
| Name | name | String | The operating system name. |
| Raw Data | raw_data | JSON | Group: |
| Record ID | record_id | String | Group: |
| OS Service Pack | sp_name | String | The name of the latest Service Pack. |
| OS Service Pack Version | sp_ver | Integer | The version number of the latest Service Pack. |
| Type | type | String | The type of the operating system. |
| Type ID | type_id | Integer | The type identifier of the operating system.
|
| Unmapped | unmapped | Unmapped[] | Data from the source that was not mapped into the schema. |
| Version | version | String | The version of the OS running on the device that originated the event. For example: "Windows 10", "OS X 10.7", or "iOS 9". |
Relationships
Inbound Relationships
These objects and events reference Operating System (OS) in their attributes:
Outbound Relationships
Operating System (OS) references the following objects and events in its attributes:
This page describes ocsf-1.4.0
Updated 19 days ago