mredirisinghe/advanced-soc-dashboard

GitHub: mredirisinghe/advanced-soc-dashboard

Stars: 0 | Forks: 0

# 🛡️ Advanced SOC Analyst Dashboard

![Python](https://img.shields.io/badge/Python-3.x-blue?style=for-the-badge\&logo=python) ![Flask](https://img.shields.io/badge/Flask-Web_App-black?style=for-the-badge\&logo=flask) ![SQLite](https://img.shields.io/badge/SQLite-Database-blue?style=for-the-badge\&logo=sqlite) ![Linux](https://img.shields.io/badge/Linux-Kali%20%7C%20Termux-yellow?style=for-the-badge\&logo=linux) ![Security](https://img.shields.io/badge/Cybersecurity-SOC-red?style=for-the-badge) ### 🚨 Real-Time Threat Detection & SOC Monitoring Platform A Python-based Security Operations Center (SOC) monitoring platform that performs real-time log analysis, threat detection, MITRE ATT&CK mapping, and security event visualization using Flask and SQLite.

# 📸 Live Demo

## 🎥 SOC Dashboard Demo

# 🚀 Features ✅ Real-time Apache log monitoring ✅ SQL Injection detection ✅ XSS attack detection ✅ Command Injection analysis ✅ Directory Traversal detection ✅ MITRE ATT&CK mapping ✅ Severity classification ✅ Flask-powered SOC dashboard ✅ SQLite incident storage ✅ Multi-machine SOC architecture # 🧠 Technologies Used | Technology | Purpose | | ----------- | -------------------------- | | Python | Backend & Detection Engine | | Flask | SOC Dashboard | | SQLite | Incident Storage | | Apache2 | Log Generation | | HTML/CSS/JS | Frontend Interface | | Linux | Security Environment | | Kali Linux | SOC Analysis Machine | | Termux | Target Web Server | # 🏗️ SOC Architecture [Termux Apache Server] ↓ [Apache Access Logs] ↓ [detector.py Threat Engine] ↓ [SQLite Database] ↓ [Flask SOC Dashboard] # 📂 Project Structure advanced-soc/ │ ├── app.py ├── detector.py ├── requirements.txt ├── README.md ├── .gitignore │ ├── database/ │ └── soc.db │ ├── logs/ │ └── access.log │ ├── templates/ │ └── dashboard.html │ ├── static/ │ ├── style.css │ └── app.js │ ├── screenshots/ │ ├── dashboard.png │ ├── detector.png │ └── alerts.png │ └── demo/ ├── soc-demo.mp4 └── soc-demo.gif # 🔥 Supported Threat Detection | Threat Type | Severity | MITRE ATT&CK | | ------------------- | -------- | ------------ | | SQL Injection | HIGH | T1190 | | XSS Attack | MEDIUM | T1059 | | Command Injection | CRITICAL | T1059.004 | | Directory Traversal | CRITICAL | T1083 | # ▶️ Running the Project ## 1️⃣ Clone Repository git clone https://github.com/mredirisinghe/advanced-soc-dashboard.git cd advanced-soc-dashboard ## 2️⃣ Install Requirements pip install -r requirements.txt ## 3️⃣ Start Detector Engine python detector.py ## 4️⃣ Start Dashboard python app.py ## 5️⃣ Open Dashboard http://localhost:5000 # 📸 Screenshots ## 🖥️ SOC Dashboard ![Dashboard](https://static.pigsec.cn/wp-content/uploads/repos/2026/05/9eae04b4ac044125.png) ## 🚨 Threat Detection Engine ![Detector](https://static.pigsec.cn/wp-content/uploads/repos/2026/05/ae00309a74044126.png) ## 📊 Security Alerts ![Alerts](https://static.pigsec.cn/wp-content/uploads/repos/2026/05/e2c79ae87d044127.png) # 💼 LinkedIn Project Title # 👨‍💻 Author M.P.J.K Edirisinghe Cybersecurity Enthusiast | SOC Analyst | Python Developer # ⭐ Future Improvements * Real-time WebSocket updates * AI-based threat scoring * Elasticsearch integration * Threat intelligence feeds * Advanced SIEM correlation rules * User authentication * PDF incident reporting

### 🛡️ Developed for SOC Analysis, Threat Monitoring & Detection Engineering