---
title: IoAs (Indicators of Attack)
description: The IoAs (Indicators of Attack) dashboard lists the detected IoAs for a client row int the Attack list table of the Attack management dashboard. The IoAs dashboard provides some high-level details, and functionality for further drill downs, inspection and analysis of the client's activities during the reported period.
component: pingintelligence
version: 5.1
page_id: pingintelligence:pingintelligence_dashboard:pingintelligence_ioas
canonical_url: https://docs.pingidentity.com/pingintelligence/5.1/pingintelligence_dashboard/pingintelligence_ioas.html
revdate: March 29, 2024
section_ids:
  actions-and-drill-downs: Actions and drill downs
---

# IoAs (Indicators of Attack)

The **IoAs** (Indicators of Attack) dashboard lists the detected IoAs for a client row int the **Attack list** table of the [Attack management](pingintelligence_attack_management.html) dashboard. The **IoAs** dashboard provides some high-level details, and functionality for further drill downs, inspection and analysis of the client's activities during the reported period.

Go to [Attack management](pingintelligence_attack_management.html).

Click on a client row in the **Attack list** table, to navigate to the client's **IoAs** dashboard, for further drill downs, inspection and analysis of the client's activities during the reported period. The **IoAs** dashboard lists detected IoAs.

![PingIntelligence IoAs dashboard attack list](_images/xyt1639907832319.png)

| Column              | Description                                                                                                                               |
| ------------------- | ----------------------------------------------------------------------------------------------------------------------------------------- |
| Type                | Type of IoA                                                                                                                               |
| Time                | Starting and ending date and time of the abnormal activity                                                                                |
| APIs                | The name of the impacted API                                                                                                              |
| Reason              | The rationale behind generating the IoA                                                                                                   |
| Remediation         | Suggestions for handling the reported IoA                                                                                                 |
| Three-dot drop down | Click **View transactions** to navigate to the **Transactions** screen, for details on each transaction that generated the IoA on the API |

## Actions and drill downs

* Actions

  On the right side of the row in the main **Attack management** list, or at the top right of the **IoAs** dashboard, click the three-dots drop down to choose an action option:

  * [Client activity](pingintelligence_client_activity.html): Navigate to the **Client activity** dashboard, for further inspection and analysis of the client's activities during the reported period.

  * **Tune IoA detection**: Select this option to update models to not flag this behavior in the future.

  * **Remove from blocklist**: Select this option to update models to remove this entry from the blocklist.

* Drill down

  [View transactions](pingintelligence_viewing_transactions.html): To view the list of transactions that generated the IoA, click the three-dot drop down on the right of the IoA row, and then click [View transactions](pingintelligence_viewing_transactions.html). The [View transactions](pingintelligence_viewing_transactions.html) dashboard provides functionality for further drill downs, inspection and analysis of the client's activities during the reported period.

Click **X** in the top right to return to the previous dashboard.