Understanding Custom Templates

Custom templates use database views as the information foundation for reports. For more information on data views, see Understanding Data Views. The look and feel of generated reports falls to the report elements. Report elements consist of the following.

Table 1. Custom Template Elements

Template Element

Description

Page break

Inserts a page break for a report. Each report page supports up to three report template elements.

Static text

Provides a user-defined description or explanation for the report. Static text content can contain up to 4096 characters.

Bar chart

Inserts a bar chart into a report template.

Line chart

Inserts a line graph into a report template.

Pie chart Inserts a pie chart into a report template.

Dynamic table

Inserts a dynamic table/pivot table into a report template.

Grid table

Inserts a table into a report template. The information in a grid table will be the same as the information that displays in an Ad Hoc Query.

Each Custom template can contain up to 100 report template elements. Each page in the report template can contain up to three report template elements. Use page breaks to create report template pages.

To better understand Custom templates, Trend Micro provides the following pre-defined report templates.

Note:

Access the Report Templates screen to view the Trend Micro pre-defined templates.

Table 2. Pre-defined Custom Templates

Template

Description

DDEI Daily Report

Deep Discovery Email Inspector provides scheduled reports (daily, weekly, or monthly) to assist in mitigating threats and optimizing system settings. Scheduled reports can be generated from the provided templates. Deep Discovery Email Inspector offers flexibility in specifying the content for each report.

DDEI Monthly Report

DDEI Weekly Report

TM-Content Violation Detection Summary

Provides the following information:

  • Content Violation Detection Grouped by Day (Line chart)

  • Policy in Violation Count Grouped by Day (Line chart)

  • Sender/Users in Violation Count Grouped by Day (Line chart)

  • Recipient Count Grouped by Day (Line chart)

  • Top 25 Policies in Violation (Bar chart)

  • Content Violation Policy Summary (Grid table)

  • Top 25 Senders/Users in Violation (Bar chart)

  • Content Violation Senders/Users in Violation Summary (Grid table)

  • Action Result Summary (Pie chart)

TM-Deep Discovery Inspector Host Severity Summary

Provides the following information:

  • Summary (number of affected hosts and detections reported by Deep Discovery Inspector threat engines, and Virtual Analyzer, in relation to the attack phases)

  • Detections by Attack Phase (Grid table)

  • Trends by Type (Line chart)

  • Detection Trends (Line chart)

  • Affected Hosts (Grid table)

  • Threat Activity Details for Affected Hosts (CSV file)

  • C&C Communication (Grid table)

  • Geographic Distribution of C&C Servers (Pie chart and map)

  • Virtual Analyzer Detections (Grid table)

  • Scan Engine Detections (Grid table)

  • Lateral Movement (Grid table)

TM-Deep Discovery Inspector Suspicious Threat Detection Summary

Provides the following information:

  • Suspicious Threat Detection Grouped by Day (Line chart)

  • Rule in Violation Count Grouped by Day (Line chart)

  • Sender Count Grouped by Day (Line chart)

  • Recipient Count Grouped by Day (Line chart)

  • Source IP Address Count Grouped by Day (Line chart)

  • Destination IP Address Count Grouped by Day (Line chart)

  • Top 25 Senders (Bar chart)

  • Top 25 Recipients (Bar chart)

  • Suspicious Threat Sender Summary (Grid table)

  • Suspicious Threat Riskiest Recipient Summary (Grid table)

  • Top 25 Source IP Addresses (Bar chart)

  • Top 25 Destination IP Addresses (Bar chart)

  • Suspicious Threat Source Summary (Grid table)

  • Suspicious Threat Riskiest Destination Summary (Grid table)

  • Top 25 Protocol Names (Bar chart)

  • Suspicious Threat Protocol Detection Summary (Grid table)

  • Overall Suspicious Threat Summary (Grid table)

TM-Managed Product Connection/Component Status

Provides the following information:

  • Server/Appliance Connection Status (Pie chart)

  • Client Connection Status (Pie chart)

  • Server/Appliance Pattern File/Rule Update Status (Pie chart)

  • Client Pattern File/Rule Update Status (Pie chart)

  • Server/Appliance Scan Engine Update Status (Pie chart)

  • Client Scan Engine Update Status (Pie chart)

  • Pattern File/Rule Summary for Servers/Appliances (Grid table)

  • Pattern File/Rule Summary for Clients (Grid table)

  • Scan Engine Summary for Servers/Appliances (Grid table)

  • Scan Engine Summary for Clients (Grid table)

TM-Overall Threat Summary

Provides the following information:

  • Complete Network Security Risk Analysis Summary (Grid table)

  • Network Protection Boundary Summary (Grid table)

  • Security Risk Entry Point Analysis Information (Grid table)

  • Security Risk Destination Analysis Information (Grid table)

  • Security Risk Source Analysis Information (Grid table)

TM-Spam Detection Summary

Provides the following information:

  • Spam Detection Grouped by Day (Line chart)

  • Recipient Domain Count Grouped by Day (Line chart)

  • Recipient Count Grouped by Day (Line chart)

  • Top 25 Recipient Domains (Bar chart)

  • Overall Spam Violation Summary (Grid table)

  • Top 25 Spam Recipients (Bar chart)

  • Spam Recipient Summary (Grid table)

TM-Spyware/Grayware Detection Summary

Provides the following information:

  • Spyware/Grayware Detection Grouped by Day (Line chart)

  • Unique Spyware/Grayware Count Grouped by Day (Line chart)

  • Spyware/Grayware Source Count Grouped by Day (Line chart)

  • Spyware/Grayware Destination Count Grouped by Day (Line chart)

  • Top 25 Spyware/Grayware (Bar chart)

  • Overall Spyware/Grayware Summary (Grid table)

  • Top 25 Spyware/Grayware Sources (Bar chart)

  • Spyware/Grayware Source Summary (Grid table)

  • Top 25 Spyware/Grayware Destinations (Bar chart)

  • Spyware/Grayware Destination Summary (Grid table)

  • Action Result Summary (Pie Chart)

  • Spyware/Grayware Action/Result Summary (Grid table)

TM-Virus/Malware Detection Summary

Provides the following information:

  • Virus/Malware Detection Grouped by Day (Line chart)

  • Unique Virus/Malware Count Grouped by Day (Line chart)

  • Infection Destination Count Grouped by Day (Line chart)

  • Top 25 Virus/Malware (Bar chart)

  • Overall Virus/Malware Summary (Grid table)

  • Top 25 Infection Sources (Bar chart)

  • Virus/Malware Infection Source Summary (Grid table)

  • Top 25 Infection Destinations (Bar chart)

  • Virus/Malware Infection Destination Summary (Grid table)

  • Action Result Summary (Pie chart)

  • Virus/Malware Action/Result Summary (Grid table)

TM-Web Violation Detection Summary

Provides the following information:

  • Web Violation Detection Grouped by Day (Line chart)

  • Policy in Violation Count Grouped by Day (Line chart)

  • Client in Violation Count Grouped by Day (Line chart)

  • URL in Violation Count Grouped by Day (Line chart)

  • Top 25 Policies in Violation (Bar chart)

  • Overall Web Violation Summary (Grid table)

  • Top 25 Clients in Violation (Bar chart)

  • Web Violation Client IP Address Summary (Grid table)

  • Top 25 URLs in Violation (Bar chart)

  • Web Violation URL Summary (Grid table)

  • Filter/Blocking Type Summary (Pie chart)