The toolbar at the top of the results view has several features that will help you to filter and view events.

Results Top Bar

The toolbar at the top of the results view has several features that will help you manage and view the data.

Filter

The filter option allows you to define attributes to show in the results view. For instance, a filter can be made which shows results that are alerts, have more than 9 hits, and have sandfly names that start with "file_", as shown below.

Column values can be exactly or partially matched depending on the operator used.

Presets

Presets are defined results views to access Alert, Pass and Error events quickly. You can select presets without needing to build a manual filter as a convenience feature. Select the option you want and only those results will be shown.

Columns

The column selector allows you to show or hide columns from view depending on which data is important to see at that moment. Some tables of data hide uncommon columns by default. Use this selector to show any or all of those columns.

Export

The Export button generates the current data set as a CSV-formatted file and downloads it. Any filters or selected rows will be applied to the output.

❗️

IMPORTANT: We Hate False Alarms

We have taken great pains to make Sandfly as false-alarm free as possible. If you are experiencing a true false-positive with Sandfly, please contact support with the details so we can look into what is causing it. We investigate all cases and correct any errors or update for new variations so that, in the future, you will not be troubled with false alarms.