Interactive Demo — Simulated data only. Back to SOC in a Box
SOC365 Dashboard
Acme Legal Services Ltd Live 17:24:04 UTC

Critical Alerts

Clear
ID Timestamp Alert Type Severity Status Source Hostname User Origin Analyst MITRE
ALR-00461 1d ago Data Exfiltration Attempt Critical Open Endpoint Agent WS-PC-002 j.smith RU Russia Marcus Webb T1567.002
ALR-00425 1d ago Insider Threat Indicator Critical Escalated Network IDS SRV-FILE-01 k.brown NL Netherlands Emma Richardson T1119
ALR-00224 1d ago C2 Beacon Activity Critical Investigating SOC365 Engine AP-WIFI-03 f.hall UA Ukraine Sarah Chen T1071.001
ALR-00076 4d ago Tor Exit Node Connection Critical Escalated Network IDS VM-DEV-01 f.hall NG Nigeria Sarah Chen T1090.003
ALR-00365 4d ago Shadow IT Discovery Critical Open Endpoint Agent SRV-DC-01 system KP North Korea Anika Patel T1567
ALR-00102 4d ago Kerberoasting Attempt Critical Investigating DLP Module SRV-BACKUP-01 system IR Iran James Okonkwo T1558.003
ALR-00174 4d ago Rogue DHCP Server Critical Escalated Email Gateway WS-PC-006 h.roberts BR Brazil Emma Richardson T1557.003
ALR-00214 4d ago C2 Beacon Activity Critical Escalated Dark Web Monitor SRV-BACKUP-01 n.clark NG Nigeria Anika Patel T1071.001
ALR-00045 5d ago Rogue DHCP Server Critical Escalated Dark Web Monitor SRV-DC-01 j.smith IR Iran Emma Richardson T1557.003
ALR-00470 5d ago Unauthorised USB Device Critical Open Dark Web Monitor SRV-DC-01 p.thomas VN Vietnam Emma Richardson T1091
ALR-00223 5d ago Brute Force SSH Critical Escalated Dark Web Monitor VM-DEV-01 c.williams RO Romania Emma Richardson T1110.001
ALR-00080 6d ago Shadow IT Discovery Critical Escalated Cloud Connector SRV-BACKUP-01 c.williams RU Russia James Okonkwo T1567
ALR-00273 6d ago DecoyPulse Honeypot Triggered Critical Escalated DLP Module SRV-APP-01 f.hall GB United Kingdom James Okonkwo T1018
ALR-00361 6d ago Credential Stuffing Attempt Critical Investigating Cloud Connector SRV-DC-01 k.brown FR France Marcus Webb T1110.004