Review alerts - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

Cortex XSIAM Documentation

Product
Cortex XSIAM
Creation date
2024-03-06
Last date published
2024-05-15
Category
Administrator Guide
Abstract

The alerts table shows you all the collections within the investigation that has identified suspicious or malicious activity within the forensics data sets.

The alerts table shows you all the collections within the investigation that has identified suspicious or malicious activity within the forensics data sets.

Refer to Alerts for the descriptions of the table fields.Alerts

You can implement any of the available actions from the selected alert.

  • Change status

  • Change severity

  • Investigate causality chain

  • Run playbook

  • Manage alerts