CloudNDREvidence Fabric
DashboardTopologyEvidenceAlertsK8s NDRSASE & IdentityAI AssistantCollectorsSettings

System Status

All collectors healthy

Evidence Explorer

Unified network flow evidence with Zeek schema

TimeUIDSourceDestinationServiceK8s ContextRiskActions
10:00:00 AMCabc12345192.168.1.50:4483210.0.2.15:22ssh → payroll/payroll-db95
9:45:00 AMCdef6789010.0.1.100:5210010.0.3.50:8080httpfrontend/web-app → backend/api-server15
9:30:00 AMCghi1112110.0.2.25:534218.8.8.8:53dnspayments/payment-processor75
9:15:00 AMCjkl3141510.0.5.10:49200203.0.113.50:443ssldev/test-app88
8:45:00 AMCmno1617110.0.1.50:4410010.0.4.100:5432httpfrontend/compromised-pod → database/postgres-primary92