Views:

Search for predefined threat-hunting queries from Trend Micro and Cyborg Security based on known threats, tactics, and techniques to aid you in constructing powerful search queries in your own environment.

Important
Important
  • For some threat hunting queries you must have Threat Insights entitlement. To view threat hunting queries enhanced with threat intelligence curated by Trend Micro experts, allocate credits to Threat Insights. Contact your sales representative for more information or to purchase additional credits.
  • Threat hunting queries powered by Cyborg Security allow you to access related threat intelligence information on the Cyborg Security - HUNTER platform and send threat hunting queries directly to XDR Data Explorer.

Procedure

  1. On the Trend Vision One console, go to Agentic SIEM & XDRXDR Data Explorer.
  2. Click Threat Hunting Queries.
  3. Enter a title, description, or query keyword in the text field to search for related threat hunting queries.
  4. Click Execute Query to use the selected threat hunting query in the XDR Data Explorer app, or click Copy Query to copy the query to the clipboard.
  5. Click expandIcon=GUID-20231214145353.png for more information about the threat hunting query.
  6. Click the report link to view related threat information in Threat Insights.