Common Reports

Details
Content
Dependencies
Version History

Frequently used reports pack.

Report

Name	Description
Last 24 hours closed incidents	All closed incidents in the last 24 hours. Counts of types, severity, SLAs and analysts work, and a list of all closed incidents.
Critical and High incidents	All critical and high severity incidents that may need the analyst attention.
Last 7 days closed incidents	All closed incidents in the last 7 days. Counts of types, severity, SLAs and analysts work, and a list of all closed incidents.
Investigation Summary	A summary report that contains various details such as evidence and investigation time line, investigation team, statistics and more
Mean time to Resolve by Incident Type (Last 2 Quarters)	This report generates Mean Time to Resolve by Incident type for last 2 Quarters
Unknown severity incidents	Report about all unknown severity incidents that may need the analyst attention.
Critical and High incidents	All critical and high severity incidents that may need the analyst attention.
Late Incidents	All the incidents that passed their SLA due date and the incidents that are at risk to soon pass their SLA.
Open Incidents	List and statistics of the current open incidents including type and severity distribution and SLA compliance.
Last 30 days incidents	Last 30 days summary of incidents statistics, followed by a list of all current open incidents.
Last 24 hours incidents	Last 24 hours summary of incidents statistics, followed by a list of all current open incidents.
Daily incidents	Daily summary of incidents statistics, followed by a list of all current open incidents.
Last 7 days incidents	Last 7 days summary of incidents statistics, followed by a list of all current open incidents.
Shift summary report	Shift summary which includes the last 6 hours open and closed incidents.
Last 30 days closed incidents	All closed incidents in the last 30 days. Counts of types, severity, SLAs and analysts work, and a list of all closed incidents.
Investigation Summary	A summary report that contains various details such as evidence and investigation time line, investigation team, statistics and more
Mean time to Resolve by Incident Owner (Last 2 Quarters)	This report generates Mean Time to Resolve by Incident Owner for last 2 Quarters
Daily incidents	Daily summary of incidents statistics, followed by a list of all current open incidents.
Daily incidents	Daily summary of incidents statistics, followed by a list of all current open incidents.
Open Incidents	List and statistics of the current open incidents including type and severity distribution and SLA compliance.

Pack Name	Pack By
Base	By: Cortex XSOAR

Pack Name	Pack By
Base	By: Cortex XSOAR

PUBLISHER

PLATFORMS

Cortex XSOAR

INFO

Certification	Certified	Read more
Supported By	Cortex
Created	November 9, 2020
Last Release	July 3, 2025

DISCLAIMER

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise.

Common Reports

Common Reports

Common Reports

Common Reports

Reports

Daily incidents

PUBLISHER

PLATFORMS

INFO

DISCLAIMER