Skip to main content
Version: 5.3

Incident Statistics

The Threat Intelligence: Incident Statistics dashboard is designed to display detailed information on user interactions with the IoC database.

Incident Metrics

Displays summary quantitative indicators for all incidents.

  • total number of incidents — cumulative number of recorded incidents for the selected time interval

  • distribution by severity level — number of incidents grouped by severity levels (alert, warning, normal)

Incident Count and Severity Metrics

Charts

Charts display interaction statistics broken down by the following parameters: provider, hosts, users, as well as hosts interacting with the IoC database.

Interaction Statistics Charts

Detailed Statistics

Displays a detailed table with all created incidents. Conduct deep incident investigations, obtain all necessary contextual information for response, and sort data to search for specific events.

For each incident, the following information is available: last detection time, host name, user, IoC type and provider, severity, count.

Detailed Statistics