DescriptionScopeKey Concepts
SolutionAn Investigation within ZoneFox is a way of collating related alerts together and adding notes to help you compile a record of a forensic investigation.
Investigations belong to a particular user on the system, although ownership of an Investigation can be transferred to another ZoneFox user by editing the investigation.
Notes can be added to an Investigation to provide comments and context around the alerts which have been recorded.
The status of an Investigation can be changed to closed, or marked as reported / not requiring further action.
