cancel
Showing results for 
Search instead for 
Did you mean: 

Who Me Too'd this topic

Managing Compute Defender False Positives?

L0 Member

I'm finding what appears to be a lot of false positives for alerts within Compute Defender > Events and Runtime. What is best practice for marking these false positive to prevent additional alerts from being generated? I noticed some options for re-learning models (e.g. Container Type), but others (e.g. Host type) appear differently.

Who Me Too'd this topic