Investigate

The Investigation tab offers a centralized interface for analyzing and responding to security threats and network events across your cloud environment. 

It features advanced tools for monitoring and analyzing security incidents through two main components:

Detections

The Detections page provides a comprehensive interface for monitoring and managing security threats identified by Cloud Detection and Response (CDR).

It enables you to:

  • View and prioritize active security findings.
  • Analyze threat indicators across your infrastructure.
  • Take prompt actions to mitigate potential risks.

For more information, see Detections.

Events

The Events page provides detailed visibility into network connection-based events at the AWS appliance level.

CDR imports and analyzes event logs to give you:

  • Detailed insights into appliance-level network activity.
  • The ability to connect events with larger detection patterns.
  • A historical record of activity for analysis.

For more information, see Events.

© 2025 Qualys, Inc. All rights reserved. Privacy Policy.