Global Mapping Rules

This document describes the global automated mapping rules that apply across all entities in the graph.

1. Application -HAS-> qualys_web_app_finding

Mapping Rule Conditions

Application.name IN qualys_web_app_finding.targets

_{Rule Id: igm-rule-83f5f4e4-7dd6-4645-9752-6c0ee098c402}

2. github_repo -HAS-> snyk_finding

Mapping Rule Conditions

github_repo.fullName = snyk_finding.repoFullName

_{Rule Id: igm-rule-aae0a67a-6780-4a81-ac71-e1eccede9b8f}

3. gitlab_project -HAS-> snyk_finding

Mapping Rule Conditions

gitlab_project.fullName IN snyk_finding.targets

_{Rule Id: igm-rule-be95f66d-c132-4a88-a3ba-3e0ff9f9220c}

4. aws_instance -HAS-> aws_guardduty_finding

Mapping Rule Conditions

aws_instance.id = aws_guardduty_finding.targets

_{Rule Id: igm-rule-f7cd3d6f-0c1a-45ff-978b-19b34d77e85f}

5. qualys_host_finding -HAS-> aws_instance

Mapping Rule Conditions

qualys_host_finding.ec2InstanceArn = aws_instance._key

_{Rule Id: igm-rule-48187acf-c442-475b-bcbe-6cc6fadab071}

6. qualys_host_finding -HAS-> azure_vm

Mapping Rule Conditions

qualys_host_finding.azureVmSourceId = azure_vm._key

_{Rule Id: igm-rule-52561b1b-a1c8-4710-bf81-55b2c34557e0}

7. qualys_host_finding -HAS-> discovered_host

Mapping Rule Conditions

qualys_host_finding.hostId = discovered_host.qualysQwebHostId

_{Rule Id: igm-rule-dc5a3636-6d37-4a17-ae81-09e686366f8c}

8. qualys_host_finding -HAS-> google_compute_instance

Mapping Rule Conditions

qualys_host_finding.gcpInstanceSelfLink = google_compute_instance._key

_{Rule Id: igm-rule-567bf866-962a-4292-a440-cbcf81cebb65}

9. Person|Team|UserGroup -MANAGES-> Account|Application|Channel|Cluster|CodeRepo|Configuration|DataStore|Domain|Firewall|Function|Gateway|Host|Network|Organization|Product|Repository|Service|Workload

Mapping Rule Conditions

Person | Team | UserGroup.email = Account | Application | Channel | Cluster | CodeRepo | Configuration | DataStore | Domain | Firewall | Function | Gateway | Host | Network | Organization | Product | Repository | Service | Workload.contactEmails

_{Rule Id: igm-rule-438dc97a-7cac-11ed-a526-d3622dd84680}

10. Application -USES-> DomainZone

Mapping Rule Conditions

Application.name = DomainZone.domainName

Application.name = DomainZone.domainName

_{Rule Id: igm-rule-9981b9c8-8209-44d7-9fdf-38415f62ff32}

11. aws_dms_instance|aws_lambda_function -HAS-> aws_vpc

Mapping Rule Conditions

aws_dms_instance | aws_lambda_function.vpcId = aws_vpc.vpcId

_{Rule Id: igm-rule-83871315-5eb9-4fc0-ada5-342ab075c3c2}

12. CodeRepo -DEFINES-> Function

Mapping Rule Conditions

CodeRepo.name = Function.name

_{Rule Id: igm-rule-752d55ca-7cae-11ed-b27f-c7f83e8f75c9}

13. Control -DEFINES-> ControlTest

Mapping Rule Conditions

Control.id = ControlTest.controlId

_{Rule Id: igm-rule-78a3c2d0-bded-47a3-aa74-fa04c638b4cc}

14. Domain -HAS-> DomainZone

Mapping Rule Conditions

Domain.name = DomainZone.parentDomain

Domain.name = DomainZone.domainName

_{Rule Id: igm-rule-cdb79aae-7cac-11ed-9949-0ff60fee3b5d}

15. Domain|DomainZone|DomainRecord -HAS-> Certificate

Mapping Rule Conditions

Domain | DomainZone | DomainRecord.name = Certificate.domainName

_{Rule Id: igm-rule-ee40c6e2-7cac-11ed-9e6f-c39034f30ecd}

16. DomainRecord -CONNECTS-> IpAddress|Gateway|Cluster

Target Filters

type = "A"

type = "AAAA"

Mapping Rule Conditions

IpAddress | Gateway | Cluster.publicIpAddresses IN DomainRecord.value

_{Rule Id: igm-rule-9b2b7aec-7cac-11ed-b2e0-b3e60622bc88}

17. DomainRecord -CONNECTS-> Host

Target Filters

type = "A"

type = "AAAA"

Mapping Rule Conditions

Host.publicIpAddresses IN DomainRecord.value

_{Rule Id: igm-rule-88bbbafa-4b34-476e-8f6b-ce6bc76fef69}

18. DomainRecord -CONNECTS-> IpAddress

Target Filters

type = "A"

type = "AAAA"

Mapping Rule Conditions

IpAddress.publicIpAddress IN DomainRecord.value

_{Rule Id: igm-rule-d55bcb92-7688-4aa3-8ee4-40351d583c10}

19. DomainRecord -CONNECTS-> IpAddress

Target Filters

type = "A"

type = "AAAA"

Mapping Rule Conditions

IpAddress.privateIpAddress IN DomainRecord.value

_{Rule Id: igm-rule-d822c12e-e163-4dd0-b8a0-42d15e023466}

20. DomainRecord -CONNECTS-> NetworkInterface

Target Filters

type = "A"

type = "AAAA"

Mapping Rule Conditions

NetworkInterface.publicIpAddresses IN DomainRecord.value

_{Rule Id: igm-rule-61efba4a-f0f2-4018-8a95-c66cbeefca0f}

21. security_procedure -IMPLEMENTS-> compliance_control

Mapping Rule Conditions

security_procedure._key = compliance_control.policyItemId

_{Rule Id: igm-rule-3ade111a-0081-4c35-9d77-3f70ae0c6d03}

1. Application -HAS-> qualys_web_app_finding​

2. github_repo -HAS-> snyk_finding​

3. gitlab_project -HAS-> snyk_finding​

4. aws_instance -HAS-> aws_guardduty_finding​

5. qualys_host_finding -HAS-> aws_instance​

6. qualys_host_finding -HAS-> azure_vm​

7. qualys_host_finding -HAS-> discovered_host​

8. qualys_host_finding -HAS-> google_compute_instance​

9. Person|Team|UserGroup -MANAGES-> Account|Application|Channel|Cluster|CodeRepo|Configuration|DataStore|Domain|Firewall|Function|Gateway|Host|Network|Organization|Product|Repository|Service|Workload​

10. Application -USES-> DomainZone​

11. aws_dms_instance|aws_lambda_function -HAS-> aws_vpc​

12. CodeRepo -DEFINES-> Function​

13. Control -DEFINES-> ControlTest​

14. Domain -HAS-> DomainZone​

15. Domain|DomainZone|DomainRecord -HAS-> Certificate​

16. DomainRecord -CONNECTS-> IpAddress|Gateway|Cluster​

17. DomainRecord -CONNECTS-> Host​

18. DomainRecord -CONNECTS-> IpAddress​

19. DomainRecord -CONNECTS-> IpAddress​

20. DomainRecord -CONNECTS-> NetworkInterface​

21. security_procedure -IMPLEMENTS-> compliance_control​

Contents

1. Application -HAS-> qualys_web_app_finding

2. github_repo -HAS-> snyk_finding

3. gitlab_project -HAS-> snyk_finding

4. aws_instance -HAS-> aws_guardduty_finding

5. qualys_host_finding -HAS-> aws_instance

6. qualys_host_finding -HAS-> azure_vm

7. qualys_host_finding -HAS-> discovered_host

8. qualys_host_finding -HAS-> google_compute_instance

9. Person|Team|UserGroup -MANAGES-> Account|Application|Channel|Cluster|CodeRepo|Configuration|DataStore|Domain|Firewall|Function|Gateway|Host|Network|Organization|Product|Repository|Service|Workload

10. Application -USES-> DomainZone

11. aws_dms_instance|aws_lambda_function -HAS-> aws_vpc

12. CodeRepo -DEFINES-> Function

13. Control -DEFINES-> ControlTest

14. Domain -HAS-> DomainZone

15. Domain|DomainZone|DomainRecord -HAS-> Certificate

16. DomainRecord -CONNECTS-> IpAddress|Gateway|Cluster

17. DomainRecord -CONNECTS-> Host

18. DomainRecord -CONNECTS-> IpAddress

19. DomainRecord -CONNECTS-> IpAddress

20. DomainRecord -CONNECTS-> NetworkInterface

21. security_procedure -IMPLEMENTS-> compliance_control