Workbench provides the following information about Workbench insights:
|
Element
|
Description
|
|
Score
|
The score that Trend Vision One assigns to the insight based on the total scores from related alerts
|
|
Insight ID
|
The unique identifier of the insight
|
|
Insight name
|
The name of the insight
|
|
Case status
|
The status of the case
|
|
Findings
|
The investigation findings of the case
|
| Case ID |
The unique identifier of the case
|
|
Impact scope
|
The list of entities affected by the insight
|
|
Attack phase
|
The MITRE tactics detected in the insight
|
|
Data source / processor
|
The data source or product that provided the information correlated into the insight
|
|
Last updated
|
The date and time Trend Vision One last updated the insight and the last update status
|
|
Created
|
The date and time Trend Vision One generated the insight
|
Click any insight ID on the Workbench Insights tab to open a new page with the following information:
|
Tab name
|
Description
|
||
|
Overview
|
The AI-generated insight summary and highlights
|
||
|
Impact scope
|
The list of entities affected by the insight
|
||
|
Highlighted objects
|
The highlighted objects that Trend Vision One analyzes to correlate alerts
|
||
|
The list of alerts included in the insight
|
|||
|
Timeline
|
The timeline of the insight and the root cause, lifecycle, and impact scope of an insight
|
||
|
In-depth investigation
|
The investigation report generated for the insight
|
