Re: Ways to mark/categorize alerts in threat analyzer as new alerts or persistent
This is to know if the detection has come from the newly updated signature set.
Or i.e. a traffic that wasn't blocked before is suddenly being blocked, we could check the RTTA and see if what's been triggered is new or not. Could belong to an old sigset but was just detected for the first time or a newly added signature.
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.