Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FEATURE: Improve Correlate and Hunt actions on SOC Actions menu #12315

Closed
dougburks opened this issue Feb 6, 2024 · 1 comment
Closed

FEATURE: Improve Correlate and Hunt actions on SOC Actions menu #12315

dougburks opened this issue Feb 6, 2024 · 1 comment
Assignees
@dougburks
Milestone
2.4.50

Comments

@dougburks
Copy link
Contributor

dougburks commented Feb 6, 2024
edited
Loading

Currently, going to the SOC Actions menu and choosing the Correlate or Hunt actions results in a query that groups by event.module and event.dataset. Add more groupbys to this query to surface more information with less clicking.
@dougburks dougburks self-assigned this Feb 6, 2024
@dougburks dougburks added this to the 2.4.50 milestone Feb 6, 2024
@dougburks dougburks changed the title FEATURE: Improve Correlate and Hunt actions on SOC Action menu FEATURE: Improve Correlate and Hunt actions on SOC Actions menu Feb 6, 2024
dougburks added a commit that referenced this issue Feb 6, 2024
@dougburks
FEATURE: Improve Correlate and Hunt actions on SOC Actions menu #12315
7106095
dougburks added a commit that referenced this issue Feb 6, 2024
@dougburks
Merge pull request #12316 from Security-Onion-Solutions/feature/impro…
d800d59 
…ve-soc-actions

FEATURE: Improve Correlate and Hunt actions on SOC Actions menu #12315
@dougburks
Copy link
Contributor Author

Verified:

image

image

image

image

image

image

image

image

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Mar 10, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@dougburks dougburks

Labels
None yet
Projects
None yet
Milestone
2.4.50
Development

No branches or pull requests
1 participant
@dougburks