when clicking on an alert, you get to see the flow.
It is however quite basic information (still great info and useful), it would be awesome if we could drill down further and see more information about that flow: Pcap? Text content? Certificate info, etc… in fact being able to see all the related flow would also be great.
the reason is that if I look at an alert as simple as the testmyids.org, I don’t know why it triggered? I would need to check online about that alert. It would be great to see the data that triggered the alert, or even an ability to see the alert rule on the dashboard so you understand what is wrong without having to leave the PiRogue portal (as you already have the rules on the system it may be a « simple » thing to do.
Hi,
when clicking on an alert, you get to see the flow. It is however quite basic information (still great info and useful), it would be awesome if we could drill down further and see more information about that flow: Pcap? Text content? Certificate info, etc… in fact being able to see all the related flow would also be great.
the reason is that if I look at an alert as simple as the testmyids.org, I don’t know why it triggered? I would need to check online about that alert. It would be great to see the data that triggered the alert, or even an ability to see the alert rule on the dashboard so you understand what is wrong without having to leave the PiRogue portal (as you already have the rules on the system it may be a « simple » thing to do.