Hunt and Investigate (Analysts and SOC teams)

The Cybereason platform enables you to hunt for malicious behavior in your organization using powerful investigation tools. You conduct hunts using the Investigation screen or via the API.

What is hunting?

• Read Plan a Hunt to learn how to build hunting queries.

• Learn about Elements and Features.

• Understand the Investigation Cycle.

Perform a hunt

To learn about how to use the Cybereason platform to hunt and investigate, see:

1. Build a Query

2. Analyze Query Results

3. Hunt with the Attack Tree

4. Hunting Use-Case Example

5. Query Use-Case Examples

6. Hunting Quick Start Guide

Videos

Watch these videos to learn more about Hunting:

Part 1: Hunting Concepts

 

Part 2: Hunting with Cybereason

 

Watch this video to learn how to build a query.

Watch this video for a short demonstration of the investigation cycle.

Training courses

We recommend enrolling in Cybereason Academy online training courses for security analysts:

Cybereason Academy