See network, file, and execution events with context. Filter by category—Network Flows, File Access, Execution—or search by severity.
By default, events are filtered to show only interpreter activity (for example: python3, node, ruby) to reduce noise from infrastructure or internal system events. You can toggle this filter off from the category selector to view all execution events.
Event Details
The event details drawer shows the full context behind a detection: the triggering command (argv), the parent/child process tree, timestamps, and any related network destinations. Events are also tagged with MITRE ATT&CK techniques so you can quickly understand the behavior and why it was flagged. 
