Enterprise Search simultaneously queries multiple technologies aggregating results to present a federated view. You can search for entity objects such as users/IP/Host or use our structured Unified Query Language (UQL). You can even search in natural English enabled by NLP to access your data no matter how distributed.
Any results returned you wish to visualize can be represented in dashboards to gain complete enterprise-wide visibility regardless where the data lives.
The Command Interface creates an interactive user experience to support your investigations providing the capability to interrogate and start remediation across all your technologies from a single interface.
Use our structured Unified Query Language (UQL) or the solution’s Natural Language Processing (NLP) capabilities as a universal translator to query your data regardless of your platforms’ syntax
A workflow uses simple English scripting language that empowers analysts to capture a sequence of remedial tasks to support investigations and threat hunting without requiring programming experience. Workflows orchestrate repetitive tasks to get answers fast and accelerate incident response.
The Collaborate tab is used to share relevant information and content for investigation of threats internally or even amongst industry partners, in a platform agnostic manner. Build and share without constraints of underlying platform syntax hurdles.