shieldSecurity Operations Center

Live data from Wazuh SIEM — SOAR-powered | n8n Orchestration | AWS WAF + ModSecurity

dns

2

Total Agents

2 connected · 0 disconnected

warning

--

Active Alerts (24h)

folder_open

--

FIM Events

File integrity changes

bug_report

--

Vulnerabilities

verified_user

--

PCI-DSS Score

publicLive Global Attack Map

Servers: Frankfurt · Dublin · Virginia · Singapore

Top Attacking Countries

2.4 attacks/sec

Attacks Blocked

0

Blocked (Sanctioned)

High Attack Volume

Moderate Attacks

Normal / Low

Server Location

notifications_activeLive Alert Feed

devicesAgent Status

Name	IP	OS	Status	Last Keepalive

casinoiGaming Security Metrics

lock_person

--

Failed Logins (1h)

monitoring

--

Suspicious Patterns

admin_panel_settings

--

Admin Access Events

enhanced_encryption

--

FIM Violations

location_off

--

Geo Violations

vpn_key

--

API Key Events

policyCompliance Status

securityWAF & Perimeter Defense

AWS WAF

CloudFront WAF ACLACTIVE

ALB WAF ACL (eu-west-1)ACTIVE

AWSManagedRulesCommonRuleSetBLOCK

AWSManagedRulesSQLiRuleSetBLOCK

RateBasedRule (2000 req/5min)COUNT

AWS ShieldSTANDARD

Rate triggers: 47 | Blocked: 12,841

On-Premise Security

ModSecurity 3 (nginx)ACTIVE

OWASP CRS v4 RulesetENFORCING

nftables rules2,341

fail2ban (sshd/nginx/casino-auth)RUNNING

CrowdSec bouncerACTIVE

Connections tracking18,447

fail2ban bans: 183 | ModSec: 529

account_treen8n SOAR Workflow Status

timelineIncident Timeline

Click to expand

blockTop Blocked IPs

IP Address	Country	Block Reason	Blocked Since	TTL	Source	Actions

verified_userRecommended Security Solutions

bug_reportVulnerability Management

42

Total Vulns

4

Critical

8

High

6

Integrations

CVE	Title	CVSS	Source	Component	Status
CVE-2024-3094	xz-utils backdoor	10.0	OS CVE	xz-utils 5.6.0	Open
CVE-2024-32002	Git clone RCE	9.1	Aqua	git 2.43.0	Investigating
CVE-2024-21626	runc container breakout	8.6	Aqua	runc 1.1.10	Patching
CVE-2024-24790	Go net/netip ParseAddr	7.5	SonarQube	golang 1.22.0	Open
CVE-2024-27304	pgx SQL injection	7.3	pip	pgx 5.5.3	Patching

deployed_codeDocker Image Security

45 images scanned

Image	Base	Size	C	H	M	L	Status
casino-api:3.2.1	Debian 12	245MB	0	2	5	3	Pass
casino-bo:2.1.0	Alpine 3.19	89MB	0	1	3	2	Pass
game-rng:1.8.5	Debian 12	312MB	1	3	4	2	Fail
payment-gw:4.0.2	Ubuntu 22.04	198MB	0	0	2	1	Pass
nginx-proxy:1.25.4	Alpine	42MB	0	1	2	1	Pass

inventory_2Supply Chain Security

ONLINE

Internal Registry

1,847

Packages Scanned

12

Vulns Found

94%

SBOM Coverage

PASS

Lock File Integrity

person_alertSocial Engineering Prevention

3.2%

Phishing Click Rate

78%

Report Rate

96%

Training Complete

100%

MFA Coverage

0

Incidents (90d)

Attack Vector Monitoring

Phishing emails blocked1,284

Spear phishing attempts7

Vishing attempts2

BEC attempts blocked3

MFA fatigue attempts0

Prevention Controls (ISO 27001:2022)

A.6.3 Security awarenessACTIVE

A.6.7 Remote workingACTIVE

A.5.15 Least privilegeACTIVE

A.5.24 Incident responseACTIVE

A.8.5 MFA (hardware)ACTIVE

linkQuick Links (opens Wazuh GUI via secure proxy)

dashboardWazuh Dashboard list_altFull Alert List devicesAgent Management folder_openFile Integrity bug_reportVulnerability Scanner