All engines nominal
admin
A
Recent Incidents
All alerts
Active Kill Chains MITRE
MITRE ATT&CK Coverage
Covered Partial None
Top Attackers Intel
IP Reputation AbuseIPDB →
Alerts by Engine (24h)
Attack Vectors 7 days →
Traffic Volume (24h)
Engine Modules
85
Security Posture
Last audit: pending
Anomaly Baselines
IsolationForest Training 0 / 50 samples
TLS Fingerprints JA3 →
0 malicious fingerprints active View all 28 →
Alerts Timeline (24h)
Attacks by Type
Top CPU Processes
SIEM Integration
SOAR Webhook
HMAC-SHA256 signed Last ping: —
All Incidents
0 alerts
SeverityEventModuleSource IPTimeAction
Active Chains
Source IPStageProgressCoverageSeverity
Chain Detail Click a chain to inspect
Select a kill chain IP to view stage timeline and events
WAF Inspection
HTTP Method
Source IP
Target Path
Query String
Request Body
Attack payload presets
WAF Event Log Refresh
Source IPPathRuleTime
Custom WAF Rules
0 rules
NameAttack TypeSeverityPatternActionStatusDefaultActions
IP Lookup
Top Traffic IPs
IP AddressHitsIntelAction
Reputation Summary
--
Security Posture Score
Hardening audit pending
Hardening Findings
SeverityFindingMetric
Audit Log
EventActorTypeTime
Tamper Verification
[OK]
Audit Trail Integrity Verified
0 entries
Chain intact
Alert Rules
NameSeverityModulePatternWebhookStatusActions
Process Monitor
PIDProcess NameUserCPU %RSSStatus
Network Connections
ProcessLocal AddressRemote AddressPortStatus
Monitored Directories
DirectoryAction
Specific Files
File PathAction
File Integrity Monitor
PathHashSizeLast Seen
Login Monitor
TimeSource IPUsernameServiceStatusPortLog SourceActions
Fleet Agents
Agent IDStatusVersionLast HeartbeatUptimeActions
Security Assistant