Visualization

The Visualization page displays artifacts with visual nodes. Each node represents a data and data type. A right-click on each node allows users to expand the artifact information.

Windows In-Depth Analysis: This section allows users to research specific In-Depth analysis artifacts on visual exploration. Also, in-depth analysis can be done with Windows Sysmon Analysis, Windows Threat Analysis, Windows Object and Honeypot Access Analysis and Windows File Activity Monitoring results.

Artifact Visualizer: This section shows selected artifacts with visual exploration. Also, users can take action with right-click. The users can select the filter and analyze it with filtering.

Time-Based Analysis: This section allows users to time-based research on artifacts with specific queries and filters.

PreviousAnalysis & Investigation NextHunting Settings

Last updated 5 months ago