Skip to content
English
More support Customer portal Sign in
Contact us
  • There are no suggestions because the search field is empty.

Report generation

This article outlines the different types of reports available in Cydarm and how to use them.

Overview

Cydarm has a number of built in reports that it can generate:

  • Case Details Report
  • Summary Report
  • Tag Heat Map report
  • Incident Report (located on the tab in the case view 

Case details report

The Case Details Report will provide tabular information, in a CSV file, of all cases that have been created or updated in the specified date range.

If you want only the cases created during the time period (for example, for weekly or monthly reporting purposes), the simplest way is to filter based upon the date in the Triage column, and remove any which were created prior to the specified date. Do note that the times in the report are in the UTC timezone, so you will need to factor this in.

Report generation-1

To generate this report, go to the Reports menu (1), select the Reports tab and then choose Case Details Report (2) from the dropdown. Select the organisation and date range. Additional filters can be applied to the report to select for Users, Tags and Severities. Click Preview Report to preview the results, and Download Report to download a CSV file.

Summary report

The Summary Report provides an overview of operational activity in the specified date range. This report summarises the activity on all cases that have been in an open state during the specified date range.

The Summary Report contains a count of all the cases, the time spent in each workflow state, as well as frequency counts of tags and playbooks across those cases.

To generate this report, go to the Metrics menu, select the Reports tab and then choose Summary Report from the dropdown. Select the organisation and date range. Click Preview Report to preview the results, and Download Report to download a DOCX file.

Summary report
Tag heat map report

The Tag Heat Map report generates a matrix type heat map of tag groups. That is, it will show the number of cases that contain tags from both tag groups. This can be useful if your tagging scheme contains two groups of tags that you expect to apply to cases. For example, priority and category and category tag groups.

Heat map-1

Incident report

Generated directly from within a case, Incident Reports provide a downloadable summary of case activity in MS Word (.docx) or PDF format (4). To create one, locate your target case from the Case List (1) open it, and navigate to the Reports tab (2).

They can be filtered by the activity type and significance (3) as well as the date timeframe (4 )to customise and control the content that is included. You can find more information about generating incident reports on the Incident report generation article. 

Once you have selected what you would like to include in the report, click Create Report (5).

Incident report

At the bottom of the case reports page, you'll find a consolidated list of Indicators of Compromise, complete with threat details and an instant cross-reference to any other cases where they’ve appeared.

IOCs

Note ❗️  If you would like your organisation logo to be included in the Incident Report (instead of the Cydarm logo) please log a support ticket requesting Incident report template customisation.