Skip to content

Live query

Live query functionality enables real-time data retrieval. Utilizing our curated repository of optimized queries facilitates swift access to the specific data you require.

Running a Query

Queries can be initiated through the Incident Portal. Utilize the Description field to specify the parameters for your query.

Common parameters for your queries include: - Username - Hostname - IP Address - Email Address

Running new live query

Query Results

Upon completion of the query, results will be accessible within the corresponding request. The duration for query completion varies based on factors such as complexity and duration. Typically, results are available within 5-10 minutes of query creation.

Custom Queries

For tailored queries, please submit a "New Custom Live Query" request via the Incident Portal. Our SecureOps engineers will develop the custom query for future use, accessible through the Incident Portal.