Hunt

Hunt is similar to our Dashboards interface but is tuned more for threat hunting.

_images/41_hunt.png

The main difference between Hunt and Dashboards is that Hunt’s default queries are more focused than the overview queries in Dashboards. Also, most of the default Dashboards queries display a separate table for each aggregated field, whereas many of the default queries in Hunt aggregate multiple fields in a single table which can be beneficial when hunting for more obscure activity.

https://user-images.githubusercontent.com/1659467/94723168-5256e880-0326-11eb-8952-37804962d526.png