Incident Details Report
The Incident Details report provides comprehensive technical findings with full remediation guidance — designed for security analysts, SOC teams, and technical stakeholders who need actionable detail for each detected incident.
Accessing Incident Details
The Incident Details report can be downloaded directly from any Incidents page in the XTron Console:
- Navigate to any incidents view (DarkFlash, BrandSafe, or ShadowSpot)
- Click the Download Report button
- Select Incident Details
- The report is generated instantly and downloaded as a PDF
You can also generate an Incident Details report for a single incident by opening the incident and clicking Download.
What the Incident Details Report Covers
Per-Incident Details
For each incident in the report scope:
| Field | Description |
|---|---|
| Incident ID and ticket key | Unique reference for tracking |
| Title and description | Full context of what was detected |
| Severity and priority | Risk rating |
| Status and timeline | When detected, last updated |
| Technical details | Module-specific evidence fields (IOCs, URLs, assets, CVE data) |
| Impact assessment | Business and operational impact |
| Remediation guidance | Step-by-step recommended actions |
Module-Specific Sections
DarkFlash: Source of exposure (dark web forum, Telegram, paste site), retrieved data context, keyword match, threat actor context.
BrandSafe: Infringing URL, hosting provider, registrar, platform, evidence of active phishing or impersonation.
ShadowSpot: Affected asset, vulnerability details (CVSS, EPSS, ransomware exploitation), verification evidence, remediation steps.
Audience
The Incident Details report is designed for:
- Security analysts — For investigation and evidence documentation
- SOC teams — For triage, escalation, and remediation tracking
- Incident responders — For guided remediation workflows
- IT and DevOps teams — For specific technical remediation instructions
Scope Control
Filters applied to the Incidents view (date range, severity, status, module) are reflected in the generated report. To generate a report for a specific time window or severity tier, apply filters before downloading.
For a leadership-friendly summary without technical detail, see the Executive Summary Report.