Cybersecurity-Projects/PROJECTS/intermediate/siem-dashboard
dependabot[bot] 555efbb67b
chore(deps): bump axios
Bumps [axios](https://github.com/axios/axios) from 1.15.2 to 1.16.0.
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](https://github.com/axios/axios/compare/v1.15.2...v1.16.0)

---
updated-dependencies:
- dependency-name: axios
  dependency-version: 1.16.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-05-29 16:25:57 +00:00
..
assets/images chore: add demos for projects, update haskell-reverse-proxy modules, refresh siem assets 2026-04-26 23:12:48 -04:00
backend feat: did a couple things idk 2026-02-28 14:08:36 -05:00
conf siem dashbaord complete 2026-02-08 17:47:33 -05:00
frontend chore(deps): bump axios 2026-05-29 16:25:57 +00:00
learn siem dashbaord learn folder 2026-02-08 18:16:11 -05:00
.env.example siem dashbaord complete 2026-02-08 17:47:33 -05:00
.gitignore siem dashbaord complete 2026-02-08 17:47:33 -05:00
.style.yapf siem dashbaord complete 2026-02-08 17:47:33 -05:00
DEMO.md chore: add demos for projects, update haskell-reverse-proxy modules, refresh siem assets 2026-04-26 23:12:48 -04:00
LICENSE - Standardize READMEs and add justfiles across all 14 projects 2026-02-11 07:01:25 -05:00
README.md chore: add demos for projects, update haskell-reverse-proxy modules, refresh siem assets 2026-04-26 23:12:48 -04:00
cloudflared.compose.yml siem dashbaord complete 2026-02-08 17:47:33 -05:00
compose.yml siem dashbaord complete 2026-02-08 17:47:33 -05:00
dev.compose.yml siem dashbaord complete 2026-02-08 17:47:33 -05:00
justfile siem dashbaord complete 2026-02-08 17:47:33 -05:00

README.md

███████╗██╗███████╗███╗   ███╗
██╔════╝██║██╔════╝████╗ ████║
███████╗██║█████╗  ██╔████╔██║
╚════██║██║██╔══╝  ██║╚██╔╝██║
███████║██║███████╗██║ ╚═╝ ██║
╚══════╝╚═╝╚══════╝╚═╝     ╚═╝

Cybersecurity Projects Python React License: AGPLv3 Live Demo Docker

Full-stack SIEM dashboard with real-time log correlation and MITRE ATT&CK attack scenario simulation engine.

This is a quick overview — security theory, architecture, and full walkthroughs are in the learn modules.

Screenshots & live demo →

What It Does

  • Real-time log ingestion and event correlation with three rule types (Threshold, Sequence, Aggregation)
  • Four YAML-based attack playbooks mapped to MITRE ATT&CK (brute force, DNS tunneling, phishing, privilege escalation)
  • Server-Sent Events for live alert feed with paginated, filterable log viewer
  • Alert lifecycle management (acknowledge, investigate, resolve, false positive)
  • Attack simulation engine that generates realistic multi-stage security events
  • Built with Just for task automation with full Docker Compose deployment

Quick Start

docker compose up -d

Visit http://localhost:8431 or the live demo at siem.carterperez-dev.com

[!TIP] This project uses just as a command runner. Type just to see all available commands.

Install: curl -sSf https://just.systems/install.sh | bash -s -- --to ~/.local/bin

Stack

Backend: Flask, MongoEngine, Redis Streams, Pydantic, Argon2, JWT, Gunicorn

Frontend: React 19, TypeScript, Vite, TanStack Query, Zustand, visx, SCSS Modules

Data: MongoDB 8, Redis 7

Learn

This project includes step-by-step learning materials covering security theory, architecture, and implementation.

Module Topic
00 - Overview Prerequisites and quick start
01 - Concepts Security theory and real-world breaches
02 - Architecture System design and data flow
03 - Implementation Code walkthrough
04 - Challenges Extension ideas and exercises

License

AGPL 3.0