You have a Microsoft Sentinel workspace named SW1.
In SW1, you investigate an incident that is associated with the following entities:
* Host
* IP address
* User account
* Malware name
Which entity can be labeled as an indicator of compromise (loC) directly from the incident s page?
Raelene
4 months agoMerilyn
4 months agoAlex
4 months agoIvette
3 months agoTruman
3 months agoBrynn
3 months agoGraciela
3 months agoTish
3 months agoBilly
4 months agoDorthy
4 months agoBilly
4 months agoLetha
4 months agoMargart
4 months agoCheryl
3 months agoLawanda
3 months agoHeike
3 months agoGalen
3 months agoCory
5 months agoBobbye
4 months agoCatina
5 months agoSue
5 months ago