Search by speed

### Describe the feature

If possible, we want to add a search by execution speed. If an action is performed within a certain time frame, for example 5 ms, it may be a script and not a human. And then avoid false positives.

### Use Case

This option could, for example, allow us to know if a GPO is activated within a certain time period, such as a group change, etc.

### Proposed Solution

A speed boost in the agents or from the SIEM itself

### Other Information

_No response_

### Acknowledgements

- [x] I may be able to implement this feature request
- [x] This feature might incur a breaking change

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Search by speed #1151

Describe the feature

Use Case

Proposed Solution

Other Information

Acknowledgements

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Search by speed #1151

Description

Describe the feature

Use Case

Proposed Solution

Other Information

Acknowledgements

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions