- IP addresses
- Open ports
- Services (HTTP, HTTPS, etc.)
- Hosts and subdomains
- Technologies (e.g., Cloudflare, Nginx, frameworks)
- TLS/SSL certificate information
- HTTP status codes and response metadata
Assets are automatically generated from scanning jobs and cannot be created manually.
Explore assets
To view and explore assets:- Navigate to Assets
- Browse the asset list with detailed information such as:
- Service (host + port)
- Status code
- Detected technologies
- TLS/SSL certificate
- Last seen time
- Use the screenshot preview to quickly understand web-based services
Filter and search
OASM provides flexible filtering to help you quickly find relevant assets. You can filter assets by:- IP
- Port
- Technology
- Status Code
- Host
- TLS Host
Asset views
Assets are organized into multiple views to support different analysis perspectives:- All Services: Combined view of all discovered services
- Technologies: Grouped by detected technologies
- IP Addresses: Assets grouped by IP
- Ports: Services grouped by open ports
- Hosts: Grouped by domain or hostname
- Status Code: Grouped by HTTP response codes
- TLS: TLS/SSL-related assets and certificates
Export assets
To export asset data:- Navigate to Assets
- Click the Export button
- Download the asset dataset for external analysis or reporting
Notes
- Assets are continuously updated as new scans are executed
- Historical changes (e.g., status code, technology) may evolve over time
- Assets reflect the current observed state of your attack surface, not just configured targets