View, investigate, and respond to alerts and incidents in your environment.

The Workbench app (XDR Threat Investigation > Workbench) provides a list of alerts triggered by detection models, as well as incidents that correlate alerts.

The following table outlines the sections available in the Workbench app.



Alert View

Displays alerts that you can investigate through an in-depth root cause and impact analysis to understand the alert extent and severity and further determine actions to respond to the alerts.

Incident View

Displays incidents that group related alerts to help you quickly identify and mitigate potential system breaches in your network environment.