Problem statement
Is there an endpoint that can retrieve all users who are currently blocked by Brute Force Attack Protection?
Solution
At the moment there is no endpoint to get a list of users blocked by the brute force feature. There are a couple of other methods to retrieve this information though.
One way to see users who are blocked via Brute Force Protection is to search the tenant logs for type:limit_wc to filter for Brute Force blocks (Log Event Type Codes ). Note that this approach will be limited to the log retention time period for your tenant.
The other method would be to do a Bulk User Export and check the blocked status with the Endpoints available here (Auth0 Management API v2)