Security Operations
Real-time threat monitoring · Last 24 hours
Critical Alerts 7 +3
Mean Time to Detect 2.4m -18s
Events / sec 14.2k stable
Active Sources 47 +2
| ID | Severity | Rule | Source IP | Destination | Status | Time | |
|---|---|---|---|---|---|---|---|
ALT-4821 | critical | Brute Force SSH | 203.0.113.42 | prod-web-01 | Open | 2m ago | |
ALT-4820 | critical | Data Exfiltration | 10.0.4.18 | ext-cdn.unknown | Investigating | 8m ago | |
ALT-4819 | high | Privilege Escalation | 10.0.2.5 | db-cluster-03 | Contained | 15m ago | |
ALT-4818 | high | Malware Detected | 192.168.1.104 | endpoint-fleet | Open | 23m ago | |
ALT-4817 | medium | Anomalous Login | 198.51.100.7 | vpn-gateway | Investigating | 31m ago | |
ALT-4816 | medium | Port Scan Detected | 203.0.113.99 | 10.0.0.0/24 | Resolved | 45m ago | |
ALT-4815 | low | Policy Violation | 10.0.3.22 | ext-storage | Resolved | 1h ago | |
ALT-4814 | low | Certificate Expiry | internal | api.internal | Open | 2h ago | |
ALT-4813 | medium | DDoS Attempt | multiple | edge-lb-01 | Contained | 2h ago | |
ALT-4812 | high | Unauthorized API Key | 203.0.113.50 | api-gateway | Investigating | 3h ago | |
ALT-4811 | critical | Ransomware Signature | 10.0.5.12 | file-server-02 | Contained | 3h ago | |
ALT-4810 | low | DNS Tunneling | 10.0.1.8 | ext-dns.suspect | Resolved | 4h ago |
Live Event Stream
Live- SSH brute force blocked
47 attempts from 203.0.113.42 → prod-web-01
- New lateral movement
SMB connection WS-014 → FS-02 flagged
- VPN session opened
j.martinez connected from 198.51.100.7
- Auto-remediation complete
Host 10.0.5.12 isolated successfully
- API rate limit triggered
key ak_7f3a***2b9 throttled
- Firewall rule updated
Blocked 203.0.113.99 at perimeter
- Ransomware IOC match
LockBit 3.0 signature on file-server-02
- Certificate renewed
auth.internal.corp TLS auto-renewed