Threat Group

Last updated 4 months ago

In the "Threat Group" section, the user can view and manage threat groups.

Below are the available features:

Configure a new scan schedule for the targets. Follow these steps:

In the upper-right corner of the screen, the following resources are available to help you search for Schedules:

Search: Click on the magnifying glass icon to open the search field. Type the name of the threat and press Enter to locate it.
Filters: Click on "Filters" to refine the search with the following options:
- Threat Name: Enter the name of the threat and press Enter to locate it.
- Threat Type: Select the type (Info, Low, Medium, High, or Critical). By default, the filter is set to "All."
- Domain: Select the desired domain.
- Status: Choose between All, Resolved, and Pending.
- Threats: Choose between Active and Silenced.

You can also filter the Threat Type using the options displayed on the left side of the screen.

After filling out or selecting the filters, simply click "Apply". If you want to remove the filters, click "Clear Filters".

The "Refresh" button allows you to check for new changes immediately, without waiting for the next automatic update.

The upper panels indicate the number of threats by status:

Active Threats: Threats that are currently active and require immediate action.
Resolved Threats: Threats that have been resolved and no longer pose a risk.
Muted Threats: Threats that have been muted and are no longer being monitored.

In this area, you can view all threats and direct actions:

Status: Indicates the current status of the threat (Resolved or Pending).
Threat: The name of the detected threat.
Targets: The number of targets associated with the threat.
Type: The severity level of the threat (Info, Low, Medium, High, or Critical).
Created On: The number of days since creation.