The following is an example of how to retrieve XDR data on the Alerts page.
- On the left navigation pane, click Alerts.
- In the Filters pane on the left, scroll to ATT&CK Tactic and select
TA0002.Tip: Click the vertical 3-dot Configuration menu to configure the filters that display in the console. For example:
- Construct and run your search query. For example, filter for
Intrusion Detection System.Alternatively, you could search for
type:INTRUSION_DETECTION_SYSTEMin the Search bar.Note: See netconn-specific XDR search fields in XDR Search Fields. See all search fields in the in-product Search Guide.