Live query
Live query functionality enables real-time data retrieval. Utilizing our curated repository of optimized queries facilitates swift access to the specific data you require.
Running a Query
Queries can be initiated through the Incident Portal. Utilize the Description field to specify the parameters for your query.
Common parameters for your queries include: - Username - Hostname - IP Address - Email Address
Query Results
Upon completion of the query, results will be accessible within the corresponding request. The duration for query completion varies based on factors such as complexity and duration. Typically, results are available within 5-10 minutes of query creation.
Custom Queries
For tailored queries, please submit a "New Custom Live Query" request via the Incident Portal. Our SecureOps engineers will develop the custom query for future use, accessible through the Incident Portal.