Basically I have a feed from one of our log sources of IP addresses, due to a few environmental limitations I am using ePO to resolve the IP to a DNS and want to then see what threats have been seen on that machine in the last 7 days.
Using system.find?searchText=IP works for a chunk of the data, however based off the system name returned I then want to search for all threats seen on that machine for the last week.
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.