The exploration view
The main view is split into several elements:
The search bar
On the top you have the search bar. It is used to build additional filtering queries that cannot be done with the Selected Fields or timeline options.
One example would be to deliver all the log events that contain the sequence "authenticate".
We will describe the usage of it in a little while.
Next to the search bar you have some additional options:
Exploration view additional options
They allow you to:
- Saving analysis/alerts or updating an analysis
- Creating a temporary link for the analysis
- Download the analysis in .csv format
On the right side you have the fields panel which contains the Selected Fields also called the filters. They help you select which piece of data you want to focus on.
You can find the details on how to use the fields (or filters) here.
In the center you have the the analysis panel. This is where you pick up and configure the analytics you want to display in different widgets