Better Explore Results in Updated Table View
Predict 21: The Intelligence Summit Register Today

Better Explore Results in Updated Table View

January 14, 2014 • Chris

Over the holidays we detailed how to search across entity types in Recorded Future. This week we’ll show you how to quickly explore those results in our updated table visualization.

How to Use the Table View

We’ve upgraded the ability to investigate all entities mentioned in a result set by using the table view. Displayed in a left-side panel are all of the entities mentioned in events matching a user’s query. These entities are organized by category and arranged from most to least referenced.

Our upgraded table view makes it easy for users to sift through large result sets to quickly identify the presence of interesting entities like companies, malware, technical cyber details, and locations.

Recorded Future Table View

The above image is an example of the table view from this query seeking cyber attacks against technology companies during a week-long period. The company Apple is selected, which determines the event information displayed in the main panel, and a separate entity, phishing, is being moused over in the left drawer to see the total references.

Build Entity Watch Lists from the Table View

Aside from rapid identification of entities present in a result set, users can take advantage of this view to create robust watch lists for monitoring and further analysis. Below, we’ve identified a reportedly malicious IP address for monitoring and can add it directly to a watch list from the table view. Addition of entities to a list also be done in bulk.

Build Entity List from Table View

Why add entities to a list? This is one of the most powerful ways to customize the analysis workspace to your domain. Lists of entities created by users are stored privately in their My Work area and are available for search, application tuning, and alerts.

Ready to try it out? Fire up the how-to article on our support site and then login to Recorded Future.

New call-to-action

Related Posts

Using Intelligence to Prioritize AWS Guard Duty Alerts

Using Intelligence to Prioritize AWS Guard Duty Alerts

March 10, 2021 • Meghan McGowan

Security operations teams are inundated with alerts and threats making it difficult for them to...

Announcing Security Intelligence for Splunk — For Free

Announcing Security Intelligence for Splunk — For Free

February 23, 2021 • Ellen Wilson

Today, we’re thrilled to announce the launch of a free 30-day trial of our integration for Splunk...

Special Delivery: Recorded Future Hunting Packages

Special Delivery: Recorded Future Hunting Packages

September 25, 2019 • The Recorded Future Team

Quickly detecting and preventing malicious activity is imperative to effectively protecting your...