Simulation Control
0
Events Generated
0
Incidents Triggered
Inject Attack Scenarios
Start the simulation first, then inject attacks to test correlation rules.
Total Events
0
0.0 events/sec
Critical Events
0
High Severity
0
Incidents
0
0 critical
Unique Sources
0
Active Sources
8
Log sources online
Events Timeline
Last 5 minutesLoading data...
Severity Distribution
Loading data...
Events by Source
Loading data...
Top Source IPs
Loading data...
Incidents
Loading incidents...
Upload Logs
Drop .csv or .log files here
or click to browse • Auto-detects columns
Supported Formats
.csvCSV files with headers. Common columns like source_ip, timestamp, message, severity are auto-detected and mapped to the WebSOC schema.
.logPlain text log files. Each line becomes an event. IPs are auto-extracted and severity is heuristically determined from keywords.
.txtSame as .log format. Any text file with one log entry per line.
Auto-Detected Columns
The parser looks for common column name patterns: source_ip, timestamp, message, severity, event_type, etc. Unmapped columns are preserved in the raw log field.