Skip to content
English
Go to Mercury
  • There are no suggestions because the search field is empty.

How does the global search bar in Mercury work, and how can I use filters to refine my queries?

Learn how to use Mercury’s search bar and filters to explore threats, incidents, and intelligence by keyword or date.

How Does the Search Bar in Mercury Work?

Mercury’s global search bar allows you to search across all intelligence layers — including threats, incidents, alerts, and signals — using intuitive keywords or advanced filters. This feature helps you quickly identify relevant threat actors, IOCs, vulnerabilities, or incidents linked to your organization.

Key Highlights

  • Search Across Modules: Covers DRP, Intelligence Reports, Alerts, Raw Intel, and Signals
  • Supports Keywords & Filters: Search by IP, domain, hash, email, CVE, actor name, and more
  • Contextual Intelligence: Pulls data from past alerts, finished intel, and watch listed assets
  • Historical Access: Depending on your plan, access both real-time and archived insights
  • 🔐 Subscription Note: Access to Signals and Catalogs may vary depending on your subscription tier (e.g., Essential, Practitioner, or Professional)

Want to Use Advanced Filters?

Mercury supports an extended filter syntax for building advanced queries (e.g., by date, priority, relationships, etc.). You can filter by:

  • Attributes (e.g., priority:high)
  • Dates (created_at:2024-01-01/2024-06-01)
  • Phrases ("APT28 group")
  • Nested logic with AND/OR/NOT

👉 Full Filter Syntax Documentation:
Explore the full Mercury Filter Syntax Guide