We have a default Queries & Reports to achieve this. However you will get a report based on the incident recorded in your environment. If there is no such incident happened ever, then the result would be ZERO.
Further if you want to drill down the report, then you have to adjust the filter.
Was my reply helpful?
If you find this post useful, please give it a Kudos! Also, please don't forget to select "Accept as a Solution" if this reply resolves your query!
In our default queries and reports section we have various queries to generate the reports, these queries can also be customer as per your requirement. The default query cannot be edited but you may create a duplicate of the default query and the edit it to suit your requirements
Some of the queries which may help you are as follows
Endpoint Security Threat Prevention: Threats Detected Over the Previous 2 Quarters Endpoint Security Threat Prevention: Top 10 Detected Threats Endpoint Security: Threats Detected in the Last 24 Hours
The Key word Threat can be used to find all the queries for threat reporting
Was my reply helpful? If you find this post useful, Please give it a Kudos! Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.