All Lessons
Skillset Training
Part 0: Introduction - Video 1
Part 1: Understanding A Query - Video 2
Part 2: Operating on Enumerated Fields - Video 3
Part 3: Interacting with Enumerated Fields - Video 4
Part 4: A High Level View - Video 5
Part 5: Advanced Operating on Enumerated Fields - Video 6
Part 6: Finding The Victims - Video 7
Part 7: Hunting For A Phish - Video 8
Platform basics
How-To: Compound Queries & Non-Temporal Joins
Bootcamp course
Bootcamp - Lesson 01
Lessons/Skillset Training/Part 1: Understanding A Query - Video 2

Part 1: Understanding A Query - Video 2

We’ll begin by constructing a basic exploratory query that any analyst approaching an unknown data source can use.

Query 1:
Understanding the components of a query, who are the employees at our company?

tag=envolvelabs-Employees ax
| limit 10
| table
Gravwell is an enterprise data fusion platform that enables security teams to investigate, collaborate, and analyze data from any source, on demand, all with unlimited data collection and retention. Ingest everything. Investigate anything.
TOP