Triage results - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

Cortex XSIAM Administrator Guide

Product
Cortex XSIAM
Creation date
2024-02-26
Last date published
2024-05-22
Category
Administrator Guide
Abstract

You can drill down from the triage collection to review the results.

The Triage collection results page displays an overview of the different types of triage collections that were initiated on an endpoint.

Drill down to further investigate the triage artifact.

The triage results page is divided by the following tabs:

  • Alerts: Refer to Alerts for descriptions of the fields.

  • Artifacts: Shows all of the artifact categories collected. You can select the item to add to a timeline.

  • **Host Timeline: