Hi,
As the title says. Refer to the screenshot below too;
![The event][1]
The above is the log for the event. as you can see, there are multiple indicatorName in a single event.
![The table][2]
And this is the table when I do a top. However, I only want certain values to show. E.g. Only show `indicatorName: DETECTED_MALWARE_APP` and not `indicatorName: CODE_DROP`.
[1]: /storage/temp/217900-screen-shot-2017-10-19-at-83516-am.png
[2]: /storage/temp/217901-screen-shot-2017-10-19-at-83543-am.png
↧