Help & Documentation

Learn how to use the KYRA MDR console

KYRA AI Assistant

KYRA AI is your intelligent security analyst. Ask questions about alerts, get investigation recommendations, or analyze threats in real-time.

Getting Started

KYRA MDR is a managed detection and response platform that provides real-time threat monitoring, incident management, and security analytics for your organization.

Start with the Dashboard for an overview of your security posture.
Review Detections to see alerts triggered by your detection rules.
Manage security events in Incidents and track their resolution.
Configure data sources through Connectors and Collectors.
Use Log Search to query raw log data across all your sources.

Key Features

Detection & Response

Automated threat detection with customizable rules, MITRE ATT&CK mapping, and playbook-driven response workflows.

Incident Management

Full lifecycle incident tracking with severity classification, assignment, timeline views, and investigation graphs.

Log Search & Analytics

Powerful log search across all connected data sources with filtering, aggregation, and export capabilities.

Compliance & Reporting

Compliance dashboards, risk intelligence, automated reports, and audit logging for regulatory requirements.

Threat Intelligence

Integrated threat intelligence feeds, IOC matching, and risk scoring to prioritize the most critical threats.

Asset Management

Inventory and monitor all assets, identities, and network endpoints connected to your environment.

Keyboard Shortcuts

Press ? anywhere to open the shortcuts dialog. Available shortcuts:

Shortcut	Action
`?`	Open keyboard shortcuts help
`g then d`	Go to Dashboard
`g then a`	Go to Detections
`g then i`	Go to Incidents
`g then s`	Go to Settings
`g then l`	Go to Log Search
`g then k`	Toggle KYRA AI panel
`Escape`	Close any open dialog or panel

Frequently Asked Questions

How are detections generated?

Detections are generated by matching incoming log data against your configured detection rules. Rules can be based on signatures, anomalies, or threat intelligence indicators.

What is the difference between a detection and an incident?

A detection is a single alert triggered by a rule. An incident is a group of related detections that represent a broader security event requiring investigation and response.

How do I connect a new data source?

Navigate to Connectors in the sidebar, click "Add Connector", and follow the setup wizard for your data source type. Supported sources include cloud providers, endpoints, network devices, and more.

Can I customize notification settings?

Yes. Go to Settings to configure notification preferences including email alerts, severity thresholds, and escalation policies.

Contact Support

Need further assistance? Our support team is here to help.

Contact the KYRA MDR team

Shortcut

Action

?

Open keyboard shortcuts help

g then d

Go to Dashboard

g then a

Go to Detections

g then i

Go to Incidents

g then s

Go to Settings

g then l

Go to Log Search

g then k

Toggle KYRA AI panel

Escape

Close any open dialog or panel