AI Investigation Widget
This widget looks at the whole Case (Alerts, Events, and Entities) and provides an AI-generated Case summary and suggestions based on the specific use case and the way in which the case should be handled.
The widget classifies the Case in terms of how much attention the Case might require, summarizes the alerts data for a better understanding of the threat, and provides recommendations for next steps to be taken for effective remediation.
The classification, summary, and recommendations all include an option to leave feedback as to the level of the AI accuracy and usefulness. The feedback will be used to help us improve accuracy.
The AI Investigation widget is displayed under the Case Overview tab in the Cases screen.
Note: If there is only one alert in the Case, you need to click on the Case Overview tab to see this widget.
To add the AI Investigation Widget:
Click on the Gear icon on the top right corner of the screen and select Views from the dropdown.
Select the Default Case View from the left side-panel.
Drag and drop the AI Investigation widget from the Widgets List into the Default Case View template on the right and click Save View.
Note: If the AI Investigation widget does not appear on the Widgets List, contact Customer Support.
- Once a new case is ingested into the platform, the AI investigation widget will be displayed under the Case Overview tab in the Cases screen.
Note: The AI widget will not be displayed for Cases that are created manually or Request Cases that are initiated from the Homepage.