Spaces:
Paused
Paused
| { | |
| "latest_logs": [ | |
| { | |
| "id": "log_001", | |
| "entry": "Wazuh: Failed SSH login attempt from 192.168.1.101", | |
| "timestamp": "2025-11-04T09:13:00", | |
| "severity": "CRITICAL", | |
| "source": "wazuh", | |
| "category": "security", | |
| "ip_address": "192.168.1.101", | |
| "action_taken": "IP temporarily blocked", | |
| "requires_review": true, | |
| "tags": ["authentication", "failed_login", "intrusion_attempt"] | |
| }, | |
| { | |
| "id": "log_002", | |
| "entry": "CloudTrail: IAM role assumed outside working hours", | |
| "timestamp": "2025-11-04T11:25:00", | |
| "severity": "WARNING", | |
| "source": "cloudtrail", | |
| "category": "access_control", | |
| "user": "admin_user_02", | |
| "role": "PowerUserAccess", | |
| "action_taken": "Logged for review", | |
| "requires_review": true, | |
| "tags": ["iam", "after_hours", "unusual_activity"] | |
| }, | |
| { | |
| "id": "log_003", | |
| "entry": "Wazuh: Unexpected port scanning activity detected", | |
| "timestamp": "2025-11-04T14:50:00", | |
| "severity": "CRITICAL", | |
| "source": "wazuh", | |
| "category": "security", | |
| "ip_address": "203.0.113.45", | |
| "ports_scanned": [22, 80, 443, 3306, 5432], | |
| "action_taken": "IP blocked, alert sent to security team", | |
| "requires_review": true, | |
| "tags": ["port_scan", "reconnaissance", "threat_detected"] | |
| }, | |
| { | |
| "id": "log_004", | |
| "entry": "Frontend: provider directory unavailable to user session", | |
| "timestamp": "2025-11-04T16:02:00", | |
| "severity": "WARNING", | |
| "source": "frontend", | |
| "category": "application", | |
| "user_session": "sess_a3f9c21", | |
| "affected_feature": "provider_directory", | |
| "action_taken": "Session redirected to support", | |
| "requires_review": false, | |
| "handoff_to_frontend_pam": true, | |
| "tags": ["user_facing", "service_unavailable", "ux_issue"] | |
| }, | |
| { | |
| "id": "log_005", | |
| "entry": "API: Rate limit exceeded for endpoint /ai/chat/", | |
| "timestamp": "2025-11-04T17:30:00", | |
| "severity": "WARNING", | |
| "source": "api_gateway", | |
| "category": "performance", | |
| "endpoint": "/ai/chat/", | |
| "request_count": 150, | |
| "rate_limit": 100, | |
| "action_taken": "Requests throttled", | |
| "requires_review": true, | |
| "tags": ["rate_limit", "performance", "api_abuse"] | |
| }, | |
| { | |
| "id": "log_006", | |
| "entry": "Database: Slow query detected - response time 8.5s", | |
| "timestamp": "2025-11-04T18:15:00", | |
| "severity": "WARNING", | |
| "source": "database", | |
| "category": "performance", | |
| "query": "SELECT * FROM appointments WHERE...", | |
| "response_time": "8.5s", | |
| "action_taken": "Query logged for optimization", | |
| "requires_review": true, | |
| "tags": ["slow_query", "database_performance", "optimization_needed"] | |
| }, | |
| { | |
| "id": "log_007", | |
| "entry": "Backup: Daily backup completed successfully", | |
| "timestamp": "2025-11-04T02:00:00", | |
| "severity": "INFO", | |
| "source": "backup_service", | |
| "category": "maintenance", | |
| "backup_size": "2.3GB", | |
| "backup_location": "s3://uminur-backups/2025-11-04/", | |
| "action_taken": "None - routine operation", | |
| "requires_review": false, | |
| "tags": ["backup", "routine", "success"] | |
| }, | |
| { | |
| "id": "log_008", | |
| "entry": "SSL Certificate: Certificate renewal required in 14 days", | |
| "timestamp": "2025-11-04T08:00:00", | |
| "severity": "WARNING", | |
| "source": "certbot", | |
| "category": "infrastructure", | |
| "domain": "api.uminur.app", | |
| "expiration_date": "2025-11-18", | |
| "action_taken": "Renewal notification sent", | |
| "requires_review": true, | |
| "tags": ["ssl", "certificate", "renewal_needed"] | |
| }, | |
| { | |
| "id": "log_009", | |
| "entry": "Frontend: User reported PHI visible in error message", | |
| "timestamp": "2025-11-04T19:45:00", | |
| "severity": "CRITICAL", | |
| "source": "frontend", | |
| "category": "privacy", | |
| "incident_id": "INC-2025-1104-001", | |
| "action_taken": "Error logs sanitized, incident report created", | |
| "requires_review": true, | |
| "handoff_to_frontend_pam": true, | |
| "tags": ["phi_leak", "privacy_violation", "urgent"] | |
| }, | |
| { | |
| "id": "log_010", | |
| "entry": "HF Inference API: Model loading timeout for mistral-7b", | |
| "timestamp": "2025-11-04T20:30:00", | |
| "severity": "WARNING", | |
| "source": "api_service", | |
| "category": "ai_inference", | |
| "model": "mistralai/Mistral-7B-Instruct-v0.2", | |
| "timeout": "30s", | |
| "retry_count": 3, | |
| "action_taken": "Fallback response provided", | |
| "requires_review": false, | |
| "tags": ["model_loading", "timeout", "inference_error"] | |
| }, | |
| { | |
| "id": "log_011", | |
| "entry": "Compliance: HIPAA audit check passed", | |
| "timestamp": "2025-11-04T06:00:00", | |
| "severity": "INFO", | |
| "source": "compliance_monitor", | |
| "category": "compliance", | |
| "audit_type": "hipaa_daily_check", | |
| "result": "passed", | |
| "action_taken": "None - compliant", | |
| "requires_review": false, | |
| "tags": ["hipaa", "compliance", "audit"] | |
| }, | |
| { | |
| "id": "log_012", | |
| "entry": "Nginx: Unauthorized access attempt to /admin endpoint", | |
| "timestamp": "2025-11-04T21:10:00", | |
| "severity": "CRITICAL", | |
| "source": "nginx", | |
| "category": "security", | |
| "ip_address": "198.51.100.23", | |
| "endpoint": "/admin", | |
| "status_code": 403, | |
| "action_taken": "Access denied, IP logged", | |
| "requires_review": true, | |
| "tags": ["unauthorized_access", "admin_endpoint", "security_threat"] | |
| } | |
| ], | |
| "log_summary": { | |
| "total_entries": 12, | |
| "critical": 4, | |
| "warning": 5, | |
| "info": 3, | |
| "requires_review": 8, | |
| "handoff_to_frontend": 2, | |
| "time_range": { | |
| "start": "2025-11-04T02:00:00", | |
| "end": "2025-11-04T21:10:00" | |
| }, | |
| "top_categories": [ | |
| "security", | |
| "performance", | |
| "compliance", | |
| "privacy" | |
| ] | |
| }, | |
| "alert_thresholds": { | |
| "critical_alerts_per_hour": 2, | |
| "failed_login_attempts": 5, | |
| "port_scan_tolerance": 0, | |
| "phi_leak_tolerance": 0, | |
| "rate_limit_threshold": 100 | |
| } | |
| } |