The endpoints in your Red Canary platform can be filtered by their attributes. This filtering allows you to assess your inventory of systems and take actions on multiple endpoints simultaneously.
Filtering endpoints
You can filter for endpoints in a number of different ways. Preset filters are defined for common use cases.
To filter for specific endpoints using preset filters:
- Click Endpoints in the site navigation.
- Click in the filter bar next to the ICON_SEARCH icon.
- Click the title of a common use case and the criteria associated with that use case will be entered in the filter bar.
To filter for specific endpoints by criteria:
- Click Endpoints in the site navigation.
- Click in the filter bar next to the ICON_SEARCH icon.
- Enter the criteria that describes the endpoints you wish to find.
You can learn more about ways to filter for endpoints by clicking learn more about filtering for endpoints.
What if I want to quickly jump to an endpoint by hostname, IP, etc?
The fastest way to jump to an endpoint is by using ⌘-K. Many attributes of endpoints are indexed and can be found with ⌘-K, including:
- Reporting tags
- Hostnames
- IP addresses
- MAC addresses