The Samurai dashboard provides a simple self explanatory high level view of your Managed Detection and Response service metrics.
Summary Panels
Within the dashboard are various summary panels which can be updated based on a specified time period and includes:
- Total number of events ingested into the Samurai platform
- Total log volume
- Number of integrations (this is current state and not affected by the specified time period)
- Integrations with no events in the last 12 hours (these integrations likely need action, please review the Telemetry Monitoring article for further information)
The dashboard panel uses aggregated data and may not be completely up to date with the latest events.
Figure 1: Example summary panels
Time period
You can update relevant panels to specific date and time ranges. We have included Quick time ranges or you can specify a date and time period.
Figure 2: Date and time selection
Detail Panels
Additional panels provide event data based on products you have integrated with the Samurai platform.
Hover over any area of the bar or chart for specific time period and total events
Events per product (bar graph)
Figure 3: Example events per product bar graph
Events per product (pie chart)
Figure 4: Example events per product pie chart
Events per product (table)
Figure 5: Example events per product table
If you wish to drill down into the events we recommend you use the Advanced Query feature. Review Advanced Query Introduction for more information.
Comments
0 comments
Article is closed for comments.