Overview
Analyst Goal: Customize the Web Console and follow the steps of Threat Lifecycle Management. This is your first use case from start to finish.
Description: Review Threat Lifecycle management in the Web Console. You will be customizing the Web Console to show very specific sets of data. This activity will result in a new dashboard where you can investigate the log data you will inject into your Web Console. This lab’s main focus is to give you detailed experience with threat hunting tools in LogRhythm.
Task: Export and import a dashboard into the Web Console. Then create three new widgets with widget filters. From there, run the appropriate Python script and hunt down the threat data.