After you create an offense rule, the offenses are added to the All Offenses table. Use the Tenable IO: Vulnerability Summary and Tenable SC: Vulnerability Summary buttons to view enriched offense data. Complete the following steps to view the offenses.
To view offenses:
On the IBM QRadar SIEM console, click button.
The Menu options appear.
The Offenses menu appears.
Click All Offenses.
The All Offenses page appears with a table of offenses.
Click an offense.
When you click Tenable SC: Vulnerability Summary or Tenable IO: Vulnerability Summary, the source IP address brings data from Tenable.io or Tenable.sc and adds it to the notes section.
Note: Both Tenable.io and Tenable.sc options display in the interface. However, if you do not have a Tenable.io account and click the Tenable IO: Vulnerability Summary, you will not get results. In turn, if you do not have a Tenable.sc account and click the Tenable SC: Vulnerability Summary, you will not get results.
A page with offense details appear.