Recently Discovered Endpoint with Threats and No Domain and No Group and No Site

← All Findings

Vendor: SentinelOne Singularity XDR FIN-562 Weight: Confidence: Edited: 2026-02-04 14:36 Not Verified

What It Detects

MITRE ATT&CK Techniques

Comma-separated, e.g. T1078, T1190

Checks read-only

Field	Operator	Value
`First Time Seen`	newer than	7 days
`Threat List`	is not empty
`Domain`	is empty
`Asset Groups`	is empty
`Site`	is empty

Remediation

Why It Matters

Notes read-only

LDG fields used:

First Time Seen
Threat List
Domain
Asset Groups
Site