The network analytics report consists of three main sections: Summary, Correlation Graph, and Transaction and IoC Details.
Summary
The Summary includes the following information:
- Severity
- Number of detected internal hosts and indicators of compromise (IOCs)
- Attack patterns
- High-level overview of the malicious activity of the correlated event
To export the correlation data of this correlated event, click Export then select Printer-friendly or CSV.
Click the up carat (
) to collapse and down carat (
) to expand the Summary section.
) to collapse and down carat () to expand the Summary section.See Review the summary.
Correlation Graph
The Correlation Graph provides a visual representation of correlations made between the selected suspicious
object and other related objects.
Click 
next to the Playback Bar to display or hide the advanced search filter.
next to the Playback Bar to display or hide the advanced search filter.Transaction and IOC Details
The Transaction and IOC Details section provides details about each transaction represented in the correlation graph
and each detected Indicator of Compromise (IOC).
The report lists transactions from oldest to most recent. Listed transactions might
have occurred in a single day or span several months, depending on the correlations
found by Deep Discovery Director - Network
Analytics. The report lists IOCs from oldest to most recent.
Use on the right carat (
) to collapse and left carat to expand (
) the Transaction and IOC Details section.
) to collapse and left carat to expand () the Transaction and IOC Details section.