Security Overview
Real-time detection summary across endpoint, network, identity & cloud telemetry · 22 Jun 2026, 08:00 – 12:00 UTC
Event Volume
events / hour · 24hAlerts by Severity
last 24hDetections by Tactic
MITRE ATT&CKTop External Sources
by alert volumeDetection Coverage
analytic healthATT&CK Coverage — Active Incident
techniques observed in INC-2026-0419Live Alert Feed
most recent · click a row to investigate| Time (UTC) | Severity | Detection | Source | Destination | Entity | Status |
|---|
Alerts
0 detections in the selected window
| Time (UTC) | Severity | Detection | Source | Destination | Entity | Status |
|---|
Search & Hunt
Query normalized event telemetry. Substring match across all indexed fields.
Showing latest events.
Incident Response Console
Document case findings and execute response playbooks. Validated actions issue an evidence token.
Threat Intelligence — Indicator Blocklist
Indicators blocked here are pushed to firewall, EDR and DNS sinkhole enforcement.
| Type | Indicator | Category | Added | Status |
|---|
Assets
Managed endpoints & servers with current risk score and containment state.
| Host | Address | Role | Owner | Risk | State |
|---|