Skip to content

Hunt Lab Overview

Hunt Lab is SenseOn’s advanced query interface that enables security teams to analyse raw telemetry using flexible SQL-based queries. It supports deep investigations, proactive threat hunting, IT hygiene checks, and compliance reporting—all within the SenseOn platform.

Whether you’re responding to an incident or conducting routine threat hunts, Hunt Lab gives you direct access to the data you need.

What You Can Do with Hunt Lab

  • Investigate threats and anomalies using custom queries
  • Hunt for indicators of compromise (IOCs) and emerging patterns
  • Audit endpoint configurations and software versions
  • Validate compliance with internal policies and external frameworks

Key Features

1. SQL Query Interface

Use SQL to query raw telemetry data collected by SenseOn: - Write custom queries using the built-in editor - Reference tables and columns via the schema guide - Filter by host, timestamp, event type, and more

2. Pre-Built Query Library

Quickly get started with templates for: - Investigations: Pivot from known suspicious behaviour - Threat Hunting: Scan for common TTPs or anomalies - IT Hygiene: Identify outdated software, missing patches, or protocol misuse - GRC: Check control coverage and monitor regulatory adherence

3. In-Product SOC Assistance

Need help crafting a query? Use the in-product chat to: - Request help building or modifying queries - Discuss analysis strategies with a SenseOn analyst - Get guidance on interpreting results

4. Structured Output

Query results are returned in an easy-to-read table: - View directly in the platform - Export to CSV for sharing, archiving, or reporting