Threat Topology Map
Threat Topology Map is an investigative tool that allows the visualization of event data. The visualized event data resembles the data shown in the Events page. The data displayed on the topology map shows information on both the connections between hosts and any threats detected on the hosts.
To view the Threat Topology map, access the Infinity XDR
Extended Detection & Response/XPR Extended Prevention & Response Administrator Portal and click Investigate > Threat topology map.
By default, the page shows the Threat topology map for the last 24 hours.
|
Legend |
Item |
Description |
|---|---|---|
|
1 |
Views |
Shows filters with the predefined queries that are applied to the data before it is displayed on the topology map. For more information, see Managing Views. |
|
2 |
Topology Map |
Shows the connections between hosts and any threats detected on the hosts. For more information, see Reading the Threat Topology Map. |
|
3 |
Mini map |
A miniature overview of the Topology map. |
|
4 |
Filters |
Parameters that help to filter the Threat Topology map. For more information, see Filtering the Threat Topology Map. |