Home
Vantage
Learn how Vantage uses the power and simplicity of SaaS to deliver unmatched security and visibility across your OT, IoT and IT networks.
User Guide
Information about the main features of Vantage and the tasks that you can do from the user interface (UI).
Alerts
The Alerts page shows all the alerts notifications that your sensors pass to Vantage related to security incidents in your network. This page lets you learn about the alerts, edit their values and post comments.
Overview
The Overview page provides insights into security alerts, risk levels, and alert trends.

Vantage
Learn how Vantage uses the power and simplicity of SaaS to deliver unmatched security and visibility across your OT, IoT and IT networks.
- Introduction
  An overview of Vantage.
- Administrator Guide
  Information about the Administration section of Vantage, and the tasks that you can do in this part of the software.
- User Guide
  Information about the main features of Vantage and the tasks that you can do from the user interface (UI).
  - Sensors
    The Sensors page lets you view all of the sensors that you have in your system.
  - Alerts
    The Alerts page shows all the alerts notifications that your sensors pass to Vantage related to security incidents in your network. This page lets you learn about the alerts, edit their values and post comments.
    - Overview
      The Overview page provides insights into security alerts, risk levels, and alert trends.
    - Detailed list
      The Detailed list page shows all the alerts notifications that your sensors pass to Vantage related to security incidents in your network. This page lets you learn about the alerts, edit their values and post comments.
  - Assets
    The Assets page shows all the physical components and systems that Vantage has detected through your sensors. Composed of one or more nodes, assets are the fundamental resources that Vantage protects.
  - Wireless
    The Wireless page lets you buy and connect a Guardian Air sensor. Once you have connected one or more Guardian Air sensor, the Wireless page show the connected Guardian Air sensors.
  - Queries
    The Queries page lets you write queries for your system. You can also save queries and assertions to be used again.
  - Vulnerabilities
    The Vulnerabilities page shows a list of all the vulnerabilities that Vantage has detected in your system. Vulnerabilities are weaknesses that reduce the security of your system and give threat actors an opportunity to exploit your system.
  - Vantage IQ
    Vantage IQ helps you navigate and explore your network. You can use smart query commands to leverage advanced machine learning and data analytic algorithms to dive deeper into your data.
  - Network
    The Network page shows a visual representation of your network and all its assets.
  - Graph
    Displays a visual map of your network, highlighting asset connections and communication paths. Users can switch between network and physical views to explore infrastructure relationships.
  - Process
    The Process page shows a list of processes in your environment. Processes are a set of repeatable functions that a business does to deliver a core value.
  - Dashboards
    The Dashboards page shows a list of all the dashboards that have been created.
  - Reports
    The Reports page shows all the reports that the sensors in your system have created.
  - Sites
    The Sites page shows all the geographical locations of the assets in your system. It lets you associate a site to one or more network domains. You can also add details such as the country or city of the site.
  - Workbooks
    The Workbooks page shows recommended courses of action that can improve your network security. Generated through machine learning, workbooks highlight the vulnerabilities currently creating the highest risk exposure.
  - Threat Intelligence
    The Threat Intelligence page shows an overview of all of the available threat cards and categories. It also lets you filter the threat cards to show only malware, threat actors, or vulnerabilities
  - Asset Risk
    The Asset Risk page provides an in-depth view of asset risk levels. This includes an overview, detailed analysis, and benchmark comparisons to help assess and manage risks effectively.
  - Smart Polling
    Smart Polling provides a centralized interface for creating, managing, and monitoring polling plans within your organization. It helps you streamline data collection and control monitoring activities from one location.
  - Async operations
    The Async operations page lets you keep track of tasks that are being executed in the background, and it shows their outcome once that they are completed.
  - What's new drawer
    The What's new drawer shows a list of new features, enhancements, and fixes for issues.
  - Administration
  - Profile settings
    The profile settings menu lets you edit your user settings and update your profile.
  - Organizations menu
    The organizations menu lets you search or show a list of all of your organizations, and lets you switch between them. Vantage provides a default organization, but administrators can add more organizations as necessary.
- Print format documentation
  A list of all the print-format documentation that is available for Vantage.

Overview

The Overview page provides insights into security alerts, risk levels, and alert trends.

Alerts Overview dashboard displaying total alerts, alert sources, destinations, and risk distribution. — Figure 1. Overview page

Time Range

Allows users to filter alerts based on different time periods, such as:

1w (week)
1m (month)
1q (quarter)
1y (year)
All

Risk Range

You can adjust the slider to filter alerts based on severity, from low to high.

Alerts

Shows the total number of security alerts, in these categories:

Closed
Acknowledged
New
Recent

Compromised Assets

Lists assets that have been flagged as compromised based on detected threats.

Alert Sources

Lists the origin of alerts, including affected devices and IP addresses.

Alert Protocols

Lists the types of network protocols associated with the detected alerts.

Alerts Trend

Shows a graphical representation of alerts over time, helping users analyze security trends.

Open Alerts

Lists a breakdown of open alerts by category.

Open Threats

Lists active security threats detected within the system.

Alerts Site Distribution

Shows the distribution of alerts by site or geographical region.

MITRE ATT&CK: Techniques for ICS

Provides security threat analysis using the MITRE ATT&CK framework, specifically for industrial control systems (ICS).

Alert Protocols

Shows the network protocols associated with detected alerts.

Zones Raising Alerts

Shows which network zones are generating security alerts and their respective alert counts.

Alerts Risk Distribution

Shows the severity of alerts using a risk distribution graph.