This KB article serves as the replacement for all other KB articles that contained various prior versions of this document. There is also a JSON version which can be used as metadata to enrich Vectra Detections in third-party tools like Tines that are ingesting Vectra detections via API or Syslog.
In the past, Vectra provided scoring guidance in this document for the detection models that are contained in this document. With the advent of the Respond UX, individual detections are no longer scored and Vectra prioritizes host and account entities for analysts with AI-driven Prioritization . Quadrant UX deployments still have individual one-pager detection explanations with Threat and Certainty ranges that are linked from each individual detection in the UI.
