Activity

The Activity section contains four pages:

Triaged alerts - contains a list of incidents that were received from GravityZone, and after being triaged by the SOC team, were deemed not need further alert.
Investigations - are launched as a result of a security incident that involves your company or the companies you manage.
Hunts - are wider, general investigations launched as a result of a third party or external incident, and advise you if your company or one of the companies you manage can be affected by this incident.
Response Actions - contains a list of every action that a SOC Analyst has taken in your environment, based on data gathered from investigations or hunts.

Both investigations and hunts may result in recommendations. You can find them in the Recommendations page.

In this section:

Search results