Skip to main content

Fleet

Asset Management

The Fleet Connector integrates with Fleet (FleetDM), an open-source device management and osquery-based platform. It synchronizes managed device inventory and the software they run, along with the vulnerabilities affecting that software. The connector retrieves the following data:

  • Hosts — enrolled devices with their hardware, operating system, MDM, disk, and status details.
  • Packages — distinct software versions discovered across the fleet.
  • Installed Packages — the association of a specific software version installed on a specific host.
  • Vulnerabilities — findings linking a host and an installed software version to a known CVE.
  • Vulnerability Definitions — CVE-level detail (CVSS score, EPSS, CISA known-exploited status, references).

Hosts are retrieved with their software populated (populate_software=true); the package, installed-package, vulnerability, and vulnerability-definition models are all derived from the host payload. Pages are fetched in parallel and host records are buffered in a local key-value store during a sync so multiple host-derived models can be produced from a single retrieval.

Data retrieved from Fleet

Connector ObjectRequiredMaps to Data Model
HostYesHost
PackageYesPackage
Installed PackageYesInstalled Package
VulnerabilityYesVulnerability
Vulnerability DefinitionYesVulnerability Definition

Model relationships

note

For detailed steps on how to view the data retrieved from Fleet in the Brinqa Platform, see How to view your data.