The Hosts view provides a list of all hosts with an Endpoint agent installed. To access this view, go to INVESTIGATE > Hosts. By default, hosts are sorted based on the risk score.
*You can perform this task in the current view.
- Focusing on Endpoint Analysis
- Investigating Hosts
- Analyzing Downloaded Files
- Changing File Status or Remediate
- Investigating a Process
- Analyzing Events
- Performing Host Forensics
- Isolating Hosts from Network
Below is an example of the Hosts view:
|1||Filter Hosts.You can filter the hosts by selecting the options in the Filters panel and create filters. For more information, see Filter Hosts.|
|2||Actions in the toolbar: |
Server drop-down list - You can select the Endpoint server or Endpoint Broker server to view the hosts.
Analyze Events - Lets you investigate a particular host, IP address, username, filename, or hash to get the entire context of the activity. For more information, see Analyzing Events.
Start Scan - Starts a scan for the selected hosts.
Stop Scan - Stops a scan for the selected hosts.
More - Provides options to:
Sort Columns. Lets you sort on column titles.
Export to CSV - Extracts host attributes to a CSV file. For more information, see Export Host Attributes.
Settings Menu. You can set Hosts view preferences by selecting columns from the Settings menu. For more information, see Set Hosts Preference.
Show/Hide Host Properties Panel. Click a row to show or hide the Host Properties panel. It displays the following tabs:
Host details - Displays the host information such as Network Interfaces, operating system, hardware and others.
Risk details - Displays the distinct alerts associated with the risk score.