Interactive Demo — Simulated data only. Back to SOC in a Box
SOC365 Dashboard
Acme Legal Services Ltd Live 18:36:34 UTC

High Alerts

Clear
ID Timestamp Alert Type Severity Status Source Hostname User Origin Analyst MITRE
ALR-00352 1h ago Pass-the-Hash Detected High Escalated Firewall SRV-APP-01 m.taylor US United States Marcus Webb T1550.002
ALR-00443 1h ago Unauthorised USB Device High Escalated DLP Module WS-PC-001 k.brown IR Iran James Okonkwo T1091
ALR-00342 1h ago Rogue DHCP Server High Open SOC365 Engine WS-PC-004 l.johnson KP North Korea Sarah Chen T1557.003
ALR-00406 2h ago Malware Signature Match High Escalated DecoyPulse WS-PC-004 p.thomas NG Nigeria James Okonkwo T1204.002
ALR-00279 9h ago Privilege Escalation Attempt High Escalated Attack Surface Scanner WS-PC-006 p.thomas US United States Sarah Chen T1134
ALR-00457 10h ago Tor Exit Node Connection High Investigating Endpoint Agent WS-MAC-005 n.clark IN India James Okonkwo T1090.003
ALR-00130 13h ago Certificate Anomaly High Escalated Network IDS WS-LAP-012 j.smith NL Netherlands Sarah Chen T1553.004
ALR-00315 16h ago Suspicious PowerShell Execution High Open EmilyAI Triage SRV-APP-01 c.williams BR Brazil Sarah Chen T1059.001
ALR-00095 17h ago Phishing Email Blocked High Escalated Endpoint Agent SRV-MAIL-01 c.williams BR Brazil James Okonkwo T1566.001
ALR-00195 20h ago Suspicious Scheduled Task High Investigating Firewall SRV-WEB-01 k.brown FR France Sarah Chen T1053.005
ALR-00046 1d ago Kerberoasting Attempt High Open Network IDS WS-PC-001 p.thomas FR France Emma Richardson T1558.003
ALR-00147 1d ago C2 Beacon Activity High Investigating SOC365 Engine WS-PC-001 s.jones NG Nigeria Sarah Chen T1071.001
ALR-00486 1d ago Unusual Outbound Traffic High Investigating Network IDS SRV-FILE-01 r.davies NL Netherlands Sarah Chen T1041
ALR-00269 1d ago Kerberoasting Attempt High Escalated Dark Web Monitor WS-PC-003 n.clark NL Netherlands Sarah Chen T1558.003
ALR-00485 1d ago Suspicious Scheduled Task High Investigating DLP Module WS-PC-003 c.williams IN India James Okonkwo T1053.005
ALR-00187 1d ago C2 Beacon Activity High Escalated Endpoint Agent WS-LAP-012 d.walker IN India Anika Patel T1071.001
ALR-00393 1d ago Kerberoasting Attempt High Escalated Firewall WS-PC-003 a.wilson NG Nigeria Anika Patel T1558.003
ALR-00023 1d ago Lateral Movement Detected High Escalated Network IDS SW-CORE-01 r.davies RO Romania Sarah Chen T1021.002
ALR-00117 2d ago Certificate Anomaly High Open EmilyAI Triage SRV-FILE-01 system RO Romania Emma Richardson T1553.004
ALR-00239 2d ago Unusual Outbound Traffic High Open Attack Surface Scanner SRV-FILE-01 a.wilson KP North Korea James Okonkwo T1041
ALR-00327 2d ago Certificate Anomaly High Open Endpoint Agent WS-PC-001 r.davies IN India James Okonkwo T1553.004
ALR-00004 2d ago Anomalous DNS Query High Escalated Dark Web Monitor VM-DEV-01 p.thomas IR Iran Sarah Chen T1568.002
ALR-00227 2d ago Credential Stuffing Attempt High Escalated Attack Surface Scanner AP-WIFI-03 h.roberts RU Russia Sarah Chen T1110.004
ALR-00355 2d ago Unusual Outbound Traffic High Escalated Endpoint Agent VM-DEV-01 m.taylor NL Netherlands Anika Patel T1041
ALR-00370 2d ago Tor Exit Node Connection High Escalated Network IDS WS-LAP-012 s.jones FR France James Okonkwo T1090.003
ALR-00385 2d ago Privilege Escalation Attempt High Investigating Cloud Connector SRV-DC-01 f.hall IR Iran Marcus Webb T1134
ALR-00099 2d ago Phishing Email Blocked High Investigating Firewall AP-WIFI-03 d.walker GB United Kingdom Emma Richardson T1566.001
ALR-00206 2d ago Tor Exit Node Connection High Open EmilyAI Triage SRV-MAIL-01 d.walker IN India Marcus Webb T1090.003
ALR-00223 2d ago Certificate Anomaly High Investigating Dark Web Monitor WS-PC-003 s.jones IN India James Okonkwo T1553.004
ALR-00451 3d ago Brute Force SSH High Investigating Firewall WS-PC-006 d.walker CN China Sarah Chen T1110.001
ALR-00176 3d ago Failed MFA Challenge High Investigating Endpoint Agent SRV-BACKUP-01 e.evans KP North Korea Anika Patel T1621
ALR-00052 3d ago Shadow IT Discovery High Escalated Dark Web Monitor SW-CORE-01 p.thomas VN Vietnam Emma Richardson T1567
ALR-00425 3d ago Data Exfiltration Attempt High Open SOC365 Engine SRV-DC-01 f.hall NG Nigeria Anika Patel T1567.002
ALR-00031 3d ago Port Scan Detected High Investigating EmilyAI Triage FW-EDGE-01 e.evans KP North Korea Emma Richardson T1046
ALR-00395 4d ago DLP Policy Violation High Escalated Dark Web Monitor FW-EDGE-01 a.wilson RO Romania Emma Richardson T1048
ALR-00309 4d ago DLP Policy Violation High Investigating DLP Module FW-EDGE-01 r.davies FR France James Okonkwo T1048
ALR-00026 4d ago Suspicious PowerShell Execution High Open EmilyAI Triage SRV-WEB-01 r.davies IR Iran Anika Patel T1059.001
ALR-00238 4d ago Brute Force SSH High Investigating SOC365 Engine SRV-MAIL-01 m.taylor US United States James Okonkwo T1110.001
ALR-00105 4d ago DecoyPulse Honeypot Triggered High Investigating Attack Surface Scanner WS-LAP-010 system US United States James Okonkwo T1018
ALR-00428 4d ago Phishing Email Blocked High Escalated Dark Web Monitor VM-DEV-01 k.brown FR France James Okonkwo T1566.001
ALR-00254 4d ago Certificate Anomaly High Open Dark Web Monitor SRV-BACKUP-01 h.roberts UA Ukraine James Okonkwo T1553.004
ALR-00409 5d ago Rogue DHCP Server High Escalated Email Gateway SRV-DC-01 e.evans GB United Kingdom Sarah Chen T1557.003
ALR-00293 5d ago Shadow IT Discovery High Open DecoyPulse SRV-APP-01 e.evans CN China Marcus Webb T1567
ALR-00491 5d ago Privilege Escalation Attempt High Investigating Endpoint Agent WS-PC-004 c.williams GB United Kingdom Sarah Chen T1134
ALR-00111 6d ago C2 Beacon Activity High Open Attack Surface Scanner SRV-BACKUP-01 s.jones NG Nigeria Marcus Webb T1071.001
ALR-00224 6d ago Pass-the-Hash Detected High Escalated Attack Surface Scanner SW-CORE-01 c.williams UA Ukraine Marcus Webb T1550.002
ALR-00070 6d ago Tor Exit Node Connection High Open Email Gateway WS-MAC-005 l.johnson IN India James Okonkwo T1090.003
ALR-00001 6d ago Tor Exit Node Connection High Open EmilyAI Triage SRV-FILE-01 c.williams US United States Marcus Webb T1090.003
ALR-00500 6d ago Phishing Email Blocked High Investigating Network IDS WS-LAP-011 a.wilson IN India Anika Patel T1566.001
ALR-00302 6d ago Suspicious PowerShell Execution High Investigating EmilyAI Triage SRV-DC-01 l.johnson NL Netherlands Emma Richardson T1059.001
ALR-00488 6d ago Lateral Movement Detected High Escalated DecoyPulse SRV-APP-01 f.hall VN Vietnam Sarah Chen T1021.002
ALR-00285 6d ago Unauthorised USB Device High Investigating SOC365 Engine WS-PC-003 l.johnson KP North Korea Emma Richardson T1091