Method Capabilities

The capabilities of the application signatures method include:

Search for	Example	Results
A single word	`cat`	Topics that contain the word "cat". You will also find its grammatical variations, such as "cats".
A phrase. You can specify that the search results contain a specific phrase.	`"cat food"` (quotation marks)	Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase.

Search for	Operator	Example
Two or more words in the same topic	`AND` `and` `+` (plus symbol) `&` (ampersand)	`cat AND dog` `"cat food"+milk` `"cat food"&"dog food"`
Either word in a topic	`OR` `or` `\|` (pipe)	`cat OR dog` `cat \| dog`
Topics that do not contain a specific word or phrase	`NOT` `not` `!` (exclamation point)	`NOT cat` `! dog`
Topics that contain one string and do not contain another	`^` (caret)	`cat ^ mouse`
A combination of search types	`( )` parentheses	`cat + (dog \| mouse)` `cat \| dog + (! mouse)`

Identification of applications based on full or partial match of process names.

Identification of applications based on presence of specific open ports.

Identification of applications based on presence of specific substrings in command lines of the processes.

Distinction between instances of applications where several are running on the same host. (Limitations apply.)

Reporting specific subclasses of RunningSoftware CIT if enough identification information is available.

Completing additional attributes for RunningSoftware CIs. Data can be taken from processes by using parse rules.

Support for plug-ins. Whenever an application is found, it is possible to execute additional commands and enrich the topology of the application with more data.