Adding artifacts to a case manually
An artifact is data that supports or relates to cases, such as an indicator of compromise. By adding artifacts to your SOAR cases, security analysts have more information available to investigate a case.
You can add artifacts to SOAR from either the Offenses or Log Activity tab.
Before you begin
Ensure that pop-up windows are enabled in your browser.