Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
For anyone else using XDR.Since the change occurred where all alerts from SE are sent XDR we have had little to zero incidents in XDR with SE observable's. While this may be a benefit and working as designed to only promote what would be considered a...
Thanks. I appreciate the reply on this. Yes, I would agree that documentation would help.I am sure it is to make incidents more valuable in terms of actionable investigation, but have a little better understanding and some context would be helpful.
