Arctic Wolf Unified Portal Data ExplorationUpdated Dec 21, 2023
Data Explorer is a licensed MDR add-on feature that lets you search the Arctic Wolf® observation pipeline for analyzed event logs. To provide 24/7 security monitoring, the Arctic Wolf observation pipeline ingests logs from all systems that are configured to send log data to Arctic Wolf.
You can use Data Explorer to:
- Monitor access to your network and cloud services.
- Gather information about user activity and system events.
Your Data Explorer search results only include enriched and analyzed observations from your security-relevant log sources. Log data that is not considered security-relevant is filtered out of the Arctic Wolf observation pipeline. Logs that are filtered out of Data Explorer can include DHCP logs, wireless access point connection information, and firewall logs that are not parsed and enriched.