View Types
On the records listing page of a component, using the View by button on the top-right corner, you can modify the list of records based on severity, status, priority, platform, risk, and so on. The options under the View by button varies based on the selected component. Following are some of the options available under the View by button:
List: Displays all the records available in a list format.
Table: Displays the records available in a table format. The table heading includes, ID, Status, Assigned User, Assigned Group, and Labels.
Phase: Separates records based on Incident Response phases. For example, Detection Analysis, Containment, Investigation and Eradication, Recovery, and Closure.
Severity: Divides the records based on the severity type. For example, Critical, High, Low, Crisis.
Devices: Segregates records based on the devices that are afflicted with Malware or other Vulnerabilities.
Users: Separates records based on the unique User ID assigned.
Type: Displays the records as a list based on the malware on other malicious software. For example, Botnet, Ransomware.
Status: Divides the records based on the Status types available. For example, Open, Closed, In Progress, and Resolved.
Priority: Divides the records based on the severity type. For example, Very High, High, Low, Medium.
Platform: Displays the records as a list based on the computing platforms. For example, Mac, Linus, Windows XP.
Risk: Displays the records as a list based on risk types. For example, Very High, High, Low, Medium.
The View By filter is available under the following modules:
Incidents
Actions
PIRs
Threat Actors
Malware
Vulnerabilities
By default, the components are displayed in the list view. To retain your view type preference, click View By and pin a view type.