Display Options and Search Filters Parent topic

To customize the display of targeted attack detections, apply the following display options and search filters:

Display Options and Search Filters: Affected Hosts

Filter Options
Description
Detection severity
Filter options include the following detection severity settings:
High only
Displays High severity detections only
detections_filter_hi.jpg
 
Displays High and medium severity detections
detections_filter_hi_001.jpg
 
Displays High, medium, and low severity detections
detections_filter_hi_002.jpg
All
Displays All detections, including informational detections
detections_filter_al.jpg
Period
Past 1 hour
Past 24 hours (default)
Past 7 days
Past 30 days
Custom range
Specify a custom range from the current day to the past 31 days.
Customize Columns
Display optional columns.
Basic Search
Search for an IP address or host name.
Tip
Tip
Type a case-insensitive keyword in the basic search field to search a partial host match.
Preset Search Filters
Search by preset search criteria.
  • Affected Hosts view includes the following preset searches:
    • Hosts with Targeted Attack detections
    • Hosts with C&C Communications detections
    • Hosts with Lateral Movement detections
  • Affected Hosts - Host Details view includes the following preset searches:
    • Threats
    • Known Threats
    • Potential Threats
    • Ransomware
Advanced Search Filter
Search by user-defined criteria sets.
Each set includes one or more of the following:
  • Attributes
  • Operators
  • Associated values