View Offenses

After you create an offense rule, the offenses are added to the All Offenses table. Use the Tenable IO: Vulnerability Summary and Tenable SC: Vulnerability Summary buttons to view enriched offense data. Complete the following steps to view the offenses.

To view offenses:

1. On the IBM QRadar SIEM console, click button.

   The Menu options appear.

2. Click Offenses.

   The Offenses menu appears.

3. Click All Offenses.

   The All Offenses page appears with a table of offenses.

4. Click an offense.

   

   When you click Tenable SC: Vulnerability Summary or Tenable IO: Vulnerability Summary, the source IP address brings data from Tenable.io or Tenable.sc and adds it to the notes section.

   Note: Both Tenable.io and Tenable.sc options display in the interface. However, if you do not have a Tenable.io account and click the Tenable IO: Vulnerability Summary, you will not get results. In turn, if you do not have a Tenable.sc account and click the Tenable SC: Vulnerability Summary, you will not get results.

   A page with offense details appear.