Interactive Demo — Simulated data only. Back to SOC in a Box
SOC365 Dashboard
Acme Legal Services Ltd Live 19:35:41 UTC

High Alerts

Clear
ID Timestamp Alert Type Severity Status Source Hostname User Origin Analyst MITRE
ALR-00351 1h ago Pass-the-Hash Detected High Investigating Attack Surface Scanner WS-PC-006 c.williams FR France Anika Patel T1550.002
ALR-00129 4h ago Failed MFA Challenge High Escalated Network IDS WS-MAC-005 h.roberts KP North Korea Marcus Webb T1621
ALR-00420 5h ago Suspicious Scheduled Task High Investigating SOC365 Engine AP-WIFI-03 l.johnson FR France James Okonkwo T1053.005
ALR-00037 14h ago Shadow IT Discovery High Open SOC365 Engine SRV-APP-01 m.taylor UA Ukraine Emma Richardson T1567
ALR-00114 18h ago Shadow IT Discovery High Investigating Cloud Connector WS-PC-006 r.davies VN Vietnam Emma Richardson T1567
ALR-00025 19h ago Privilege Escalation Attempt High Escalated DecoyPulse WS-PC-006 h.roberts RO Romania Emma Richardson T1134
ALR-00159 21h ago DLP Policy Violation High Open DLP Module SRV-WEB-01 s.jones CN China Marcus Webb T1048
ALR-00013 21h ago Failed MFA Challenge High Escalated DecoyPulse WS-PC-004 l.johnson VN Vietnam Emma Richardson T1621
ALR-00023 1d ago Unusual Outbound Traffic High Investigating Email Gateway WS-PC-003 l.johnson RO Romania Sarah Chen T1041
ALR-00067 1d ago Port Scan Detected High Investigating Dark Web Monitor WS-PC-003 k.brown RO Romania Sarah Chen T1046
ALR-00057 1d ago DecoyPulse Honeypot Triggered High Investigating Firewall WS-PC-003 e.evans KP North Korea Marcus Webb T1018
ALR-00252 2d ago Suspicious PowerShell Execution High Escalated DLP Module WS-MAC-005 k.brown IR Iran Sarah Chen T1059.001
ALR-00124 2d ago Lateral Movement Detected High Investigating Network IDS VM-DEV-01 a.wilson GB United Kingdom Anika Patel T1021.002
ALR-00459 2d ago DecoyPulse Honeypot Triggered High Investigating Email Gateway SRV-FILE-01 l.johnson UA Ukraine James Okonkwo T1018
ALR-00130 2d ago Malware Signature Match High Investigating DecoyPulse WS-LAP-010 d.walker UA Ukraine Marcus Webb T1204.002
ALR-00015 2d ago Phishing Email Blocked High Escalated Firewall SW-CORE-01 s.jones NL Netherlands Sarah Chen T1566.001
ALR-00294 2d ago Malware Signature Match High Escalated DLP Module WS-PC-003 e.evans NG Nigeria James Okonkwo T1204.002
ALR-00206 3d ago Tor Exit Node Connection High Escalated Cloud Connector WS-PC-003 k.brown RU Russia James Okonkwo T1090.003
ALR-00201 3d ago Insider Threat Indicator High Escalated EmilyAI Triage WS-MAC-005 l.johnson FR France Marcus Webb T1119
ALR-00468 3d ago Failed MFA Challenge High Escalated DLP Module AP-WIFI-03 r.davies NG Nigeria Anika Patel T1621
ALR-00321 3d ago Brute Force SSH High Escalated DecoyPulse SRV-APP-01 d.walker GB United Kingdom Emma Richardson T1110.001
ALR-00365 3d ago DecoyPulse Honeypot Triggered High Open DLP Module WS-LAP-011 f.hall US United States James Okonkwo T1018
ALR-00250 3d ago Kerberoasting Attempt High Investigating Attack Surface Scanner SW-CORE-01 e.evans GB United Kingdom James Okonkwo T1558.003
ALR-00232 3d ago Tor Exit Node Connection High Escalated Email Gateway SW-CORE-01 s.jones DE Germany James Okonkwo T1090.003
ALR-00140 3d ago Anomalous DNS Query High Open SOC365 Engine SRV-FILE-01 d.walker UA Ukraine Marcus Webb T1568.002
ALR-00199 3d ago Shadow IT Discovery High Investigating Cloud Connector WS-PC-003 a.wilson NG Nigeria Sarah Chen T1567
ALR-00315 3d ago C2 Beacon Activity High Investigating DLP Module AP-WIFI-03 j.smith US United States Sarah Chen T1071.001
ALR-00019 4d ago Credential Stuffing Attempt High Open Endpoint Agent SRV-MAIL-01 h.roberts NL Netherlands Marcus Webb T1110.004
ALR-00407 4d ago C2 Beacon Activity High Escalated Attack Surface Scanner SRV-DC-01 d.walker US United States Emma Richardson T1071.001
ALR-00444 4d ago Insider Threat Indicator High Investigating Email Gateway WS-MAC-005 c.williams VN Vietnam Sarah Chen T1119
ALR-00473 4d ago Insider Threat Indicator High Escalated SOC365 Engine SRV-BACKUP-01 n.clark RU Russia Anika Patel T1119
ALR-00254 4d ago Privilege Escalation Attempt High Open Network IDS WS-PC-002 s.jones US United States James Okonkwo T1134
ALR-00123 4d ago Insider Threat Indicator High Open EmilyAI Triage SRV-MAIL-01 m.taylor UA Ukraine Sarah Chen T1119
ALR-00381 4d ago Privilege Escalation Attempt High Escalated SOC365 Engine SW-CORE-01 m.taylor VN Vietnam James Okonkwo T1134
ALR-00419 5d ago Malware Signature Match High Open Attack Surface Scanner SRV-WEB-01 a.wilson GB United Kingdom Sarah Chen T1204.002
ALR-00082 5d ago Malware Signature Match High Open DLP Module SRV-BACKUP-01 n.clark NG Nigeria Anika Patel T1204.002
ALR-00174 5d ago Port Scan Detected High Escalated Cloud Connector SRV-MAIL-01 p.thomas DE Germany James Okonkwo T1046
ALR-00143 5d ago DLP Policy Violation High Investigating Firewall FW-EDGE-01 l.johnson DE Germany James Okonkwo T1048
ALR-00086 5d ago Phishing Email Blocked High Investigating Attack Surface Scanner SW-CORE-01 k.brown US United States Anika Patel T1566.001
ALR-00177 5d ago DecoyPulse Honeypot Triggered High Investigating SOC365 Engine WS-LAP-011 d.walker CN China James Okonkwo T1018
ALR-00003 5d ago Unauthorised USB Device High Escalated Attack Surface Scanner SRV-BACKUP-01 m.taylor NL Netherlands Emma Richardson T1091
ALR-00358 5d ago Credential Stuffing Attempt High Open Attack Surface Scanner WS-MAC-005 k.brown US United States James Okonkwo T1110.004
ALR-00022 5d ago Suspicious Scheduled Task High Escalated DecoyPulse SRV-APP-01 h.roberts RO Romania Marcus Webb T1053.005
ALR-00389 5d ago Unusual Outbound Traffic High Open Attack Surface Scanner WS-MAC-005 n.clark DE Germany Emma Richardson T1041
ALR-00054 6d ago Failed MFA Challenge High Open DLP Module FW-EDGE-01 h.roberts NL Netherlands Anika Patel T1621
ALR-00149 6d ago Pass-the-Hash Detected High Escalated Endpoint Agent SRV-DC-01 k.brown CN China James Okonkwo T1550.002
ALR-00433 6d ago Unauthorised USB Device High Escalated DecoyPulse WS-MAC-005 r.davies GB United Kingdom Marcus Webb T1091
ALR-00359 6d ago Kerberoasting Attempt High Escalated Dark Web Monitor SW-CORE-01 n.clark KP North Korea Emma Richardson T1558.003
ALR-00214 6d ago Shadow IT Discovery High Escalated Network IDS SRV-MAIL-01 h.roberts NL Netherlands Anika Patel T1567
ALR-00471 6d ago Lateral Movement Detected High Open SOC365 Engine SRV-FILE-01 h.roberts UA Ukraine James Okonkwo T1021.002
ALR-00449 6d ago Ransomware Behaviour Detected High Escalated EmilyAI Triage WS-PC-002 s.jones NL Netherlands James Okonkwo T1486
ALR-00360 6d ago Data Exfiltration Attempt High Investigating EmilyAI Triage SRV-SQL-01 e.evans CN China Marcus Webb T1567.002
ALR-00451 6d ago Data Exfiltration Attempt High Open EmilyAI Triage SRV-SQL-01 j.smith US United States Anika Patel T1567.002
ALR-00427 6d ago Malware Signature Match High Open Attack Surface Scanner SRV-MAIL-01 d.walker GB United Kingdom Marcus Webb T1204.002
ALR-00119 6d ago Insider Threat Indicator High Open Cloud Connector WS-PC-006 c.williams NL Netherlands James Okonkwo T1119