securityonion
securityonion copied to clipboard
FEATURE: Implement event / Alert filtering
Under consideration:
low/medium are classified as events of interest
and are accessible via a new saved Hunt search
high/critical are classified as alerts
and are accessible via SOC Alerts