Using the Advanced-Query Filter
  • 31 Aug 2022
  • 1 Minute to read
  • Dark
    Light

Using the Advanced-Query Filter

  • Dark
    Light

Follow the steps in this article to access and use the advanced-query filter on the Browse screen:

  1. On the top navigation bar, click Browse to display the Browse screen (Figure 1).

    Graphical user interface, application  Description automatically generated

     

  2. Click Advanced at the upper-right corner of the screen to initiate an advanced query (Figure 2). Some commonly used TQL expressions and a link to a complete list of TQL operators and parameters are displayed in the ThreatConnect Query Language (TQL) pane on the left side of the screen.

    Graphical user interface, application  Description automatically generated

     

  3. Select the type of object to which the advanced query will apply using the dropdown menu to the left of the search bar. Available objects include Indicators, Groups, Tags, Tracks, Victims, and Victim Assets.
  4. Enter a query expression in the search bar along the top of the screen.
  5. Click Search, or press the Enter key on your keyboard, to run the query.

You can save queries for later viewing and use in Query cards in custom dashboards, as well as view and manage your saved queries, by clicking the vertical ellipsis at the upper-right corner of the Browse screen.


ThreatConnect® is a registered trademark of ThreatConnect, Inc.

20052-02 v.17.A


Was this article helpful?