The original post: /r/cybersecurity by /u/ChartingCyber on 2025-03-13 12:53:39.

I’ve run into a couple situations in my career where there isn’t a good asset inventory, but there is a mis-mash of tools deployed in an environment (EDR, RMM, assets in Azure/GCP, whatever). Sometimes a company grew by mergers/acquisition and there are multiple MSPs, or maybe they relied on only a break/fix contract for too long, or there is an IR with no real solid asset inventory. I know there is a boom in CAASM tools but they are generally targeted towards long term engagements with a single company.

Ask: Any tools or techniques that are better than exporting an asset list and using excel? I’ve had success building a “master list” by pulling unique computer names/mac addresses in excel, but reconciling to see if something is decommissioned/from last year is a pain. The end goal is definitely to build a better asset tracking system, but I am specifically trying to bridge from the “OMG we have no single source of truth” to the end of that build process. Even more so in an IR where it’s helpful to know the discrepancies quickly if the DFIR agents are running into difficulty being pushed out. Doesnt need to be perfect, but a quick gauge on risk can be super helpful.

One thought I had was trying to build something rough but usable in PowerBI by connecting to different tool APIs, but I’m also strong in python (think dev level, can build full server backend) and thought that might be possible as well. But I’d hate to try to normalize all that data myself.

Bonus if it’s free/open source/low price point since it’s hard to get someone to fork out for Axonius if they didn’t want to pay for a good asset inventory in the first place. Not looking for commercial solutions unless they have a 30 day free trial that can cover that initial window.