Labels
Labels in Legacy Search datasets are like smart tags that help you identify and filter specific types of hosts, services, or devices. Instead of manually sifting through endless data, you can use labels to narrow your search and focus on what matters most.
Fields
| Field | Type |
|---|---|
| labels | text |
| services.labels | text |
Example queries
| Query description | Legacy Search query | Run query in Legacy Search |
|---|---|---|
| Find hosts with the C2 label | labels: C2 | Try it |
| Find IoT device | labels: IoT | Try it |
| Find SCADA devices | labels: SCADA | Try it |
| Find honeypots | labels: {tarpits, truncated} | Try it |
| Find hosts with open directories and C2s that are not honeypots | labels: open-dir and labels: C2 and not labels: {tarpits, truncated} | Try it |
| Find hosts with open directories | labels: open-dir | Try it |
Updated 20 days ago