Which information is returned after querying a hash on the Hash Search page?
When configuring a custom alert, how do you separate recipient email addresses if including more than 1 recipient?
Your organization's next-gen firewall has detected evidence of DNS beaconing occurring from an internal source. The firewall provides you with the beaconing host's internal (private) IP address.In an IP search, which field would you leverage to identify the hostname based on this indicator?
When reviewing a DNS request in the Event Search, you're curious which process made the request. Which Event Action would be the quickest way to show you the process?
What kind of IP addresses are found using an IP Search?
Which event_simpleName has a field that contains the command line used to create a process?
