Use the Hunting tab to find the active events and exempted events. The Hunting tab includes the following sub-tabs to view events:
The following screenshot displays the actions that you can perform on the Hunting tab:
Group By: Use the Group By option to view the count of events based on the selected option.
Filters: Use the Filters option to list the Severity and Source of the assets. You can select the severity between Critical, High, Medium, and Low. You can select Anti-malware and EDR from the Source filter.
The following screenshot is an example of High severity and EDR source:
Quick Actions: Hover the mouse over an Object to view the Quick Actions menu.
The Quick Actions menu includes the following options:
Was this topic helpful?