Carbon Black Cloud: How To Search For TTP:PortScan and TTP:Port_Scan Alerts

Carbon Black Cloud: How To Search For TTP:PortScan and TTP:Port_Scan Alerts

search cancel

Carbon Black Cloud: How To Search For TTP:PortScan and TTP:Port_Scan Alerts

book

Article ID: 287810

calendar_today

Updated On:

Products

Carbon Black Cloud Endpoint Standard (formerly Cb Defense)

Issue/Introduction

How To Search For TTP:PortScan and TTP:Port_Scan Alerts.

Environment

Carbon Black Cloud Console: All Versions
Endpoint Standard Sensor: All Supported Versions
Microsoft Windows: All Supported Versions
Apple macOS: All Supported Versions
Linux: All Supported Versions

Resolution

If you toggle the threat button under Target Value Alert Severity you will refresh the results and they will appear.

Feedback

thumb_up Yes

thumb_down No