Searching for alerts using an IOC file

To view the events that were found using an IOC file:

1. In the window of the program web interface, select the User rules section, IOC subsection.

   This opens the table of IOC files.

2. Select the IOC file to use for searching for events in the event database.

   This opens a window containing information about the IOC file.

3. Go to the event database by clicking Find events.

   The event table is opened in a new browser tab.

Page top