Dashboards

The Dashboards page, found in the navigation menu (dashboards_menu_icon.jpg), serves as the Alert Logic console homepage and houses several sets of interactive graphics. The dashboards visualize your environment's data and cover the following information:

Also on this page, you can change the color mode of the dashboards with the color icon (dashboards_color_icon.jpg) in the top right-hand corner.

Threat Summary

The Threat Summary dashboard provides graphical information on incidents, including data points such as Open Incident Count, Incidents Count by Source Location, Incidents by MITRE Tactic, and Top Attackers.

threat_summary_dashboard.png

Vulnerability Summary

The Vulnerability Summary dashboard provides graphical information on scanning and confirmation assessments, including data points such as Vulnerabilities by Deployment and Most Vulnerable Hosts. 

console_overview_vulnerability_summary.jpg

TRI Summary

The TRI Summary dashboard provides graphical information on recent Threat Risk Index (TRI) scores of your environment including the average TRI score and trends, vulnerability changes, last scanned asset changes, and TRI scores by assets and includes data points such as Total Vulnerabilities and Deployments by TRI Score.

tri_dashboard.jpg

Coverage and Health

The Coverage and Health dashboard provides graphical information on general account health including your network, appliances, agents, other assets, and entitlement usage and includes data points such as Protected Network Status and Unprotected Node Count. 

console_overview_coverage_and_health.jpg

Endpoint Protection

The Endpoint Protection dashboard provides graphical information on endpoint and includes data such as Malware Attacks DetectedMost Attacked Endpoints, and Malware Attacks Blocked. 

console_overview_endpoint_protection.jpg

Firewall Log Volume Analysis

The Firewall Log Volume Analysis dashboard provides graphical information on the volume of firewall log messages and firewall security incidents and observations in your environment and allows you to quickly identify patterns, trends, and anomalies that may require response or investigation. This dashboard includes data such as Firewall Log Volume Trends and Firewall Log Incidents.

firewall_log_volume_dashboard.jpg

Firewall Log Traffic Analysis

The Firewall Log Traffic Analysis dashboard provides graphical information on the firewall traffic connections found from analyzing firewall logs in your environment and allows you to identify the types of connections detected, trends that require further investigation, and learn about emerging threats. This dashboard includes data such as Connection Trends by Top Protocol and Top Applications.

firewall_log_traffic_dashboard.jpg

Firewall Log Security Analysis

The Firewall Log Security Analysis dashboard provides graphical information on the firewall security incidents generated from analyzing firewall logs in your environment and allows you to quickly identify the types of firewall incidents detected, analyze the effectiveness of your current firewall incident response efforts, and learn about emerging threats. This dashboard includes data such as Firewall Log Incident Trends, Incidents by MITRE Tactic, and Top Targeted Internal Hosts.

firewall_log_security_analysis_dashboard.png

Authentication Management Summary

The Authentication Management Summary dashboard provides graphical information on the authentication management application login activities observed in your environment and will allow you to gain insight into your management efforts and ultimately focus your resources on threats in your environment. This dashboard includes data such as Authentication Attempts and Top Login Users.

auth_management_summary_dashboard.jpg

Authentication Management Security

The Authentication Management Security dashboard provides graphical information on the authentication security activity in your environment and allows you to gain insights into your user authentication attempts and login activity in your environment. This dashboard includes data such as Incident Classifications and Top Sign-In Attempts from Risky IP.

File Integrity Monitoring

The File Integrity Monitoring dashboard provides graphical information on your file integrity monitoring activity and issues found in your environment and allows you to gain insights into your file monitoring scope and status, focus your resources on specific systems or users that may need further investigation, and identify patterns or anomalies in your environment. This dashboard includes data such as Monitored File Types and TOP FIM Events Hosts.

fim_dashboard.jpg

Web Log Analytics

The Web Log Analytics dashboard provides graphical information on the threats, incidents, and observations detected from your web log analytics instance in your environment and allows you to gain insights into the types of incidents detected in your environment, analyze the effectiveness of your current incident response efforts, and learn about emerging threats. This dashboard includes data such as Top Attackers and Web Attack Trends by MITRE Tactic.

web_log_analytics_dashboard.png

Related articles

Comments

0 comments

Please sign in to leave a comment.

Copyright ©2022 Alert Logic, Inc.
All rights reserved. | Legal