• How can I search for a HASH list with live discover?

    Hello. I´m trying to create a query that allows me to check if a HASH from a list (with a comma separated) is located on some device. The problem I have when consulting the hash table is that it does not show me any value if I do not define a directory…

  • [LiveDiscoverHelp] "Retrieve the list of the installed non Microsoft software version"

    Hi Team, Community, Could you help to share a query allowing to retrieve the list of the installed non Microsoft software version ? thank you so much in advance

  • Live Discover for Parent_Sophos_PID without result - how can that be?

    Im trying to get the root process for an event on a client currently offline. Using Data Lake query. However, the Parent PID Search gives no results.The Event is 14 days old. I thought the Sophos PID is THE idicator of something in the Data Lake - how…

  • Live Discover Sophos Product Updates - in particular NTP: Network Threat Protection

    Today Sophos is pushing new updates to NTP Engine, causing short outages on every computer. This produces some ammount of calls in our helpdesk and I'd like to run a query in Live Discover about computers that have received the update. This would…
Unfiltered HTML