Security Overview
Loading…
Enrolled Devices
—
protecting endpoints
Events (24h)
—
total signal volume
Secrets Caught (24h)
—
leak attempts blocked
Open Incidents
—
awaiting review
⚡ Live Event Stream
auto-refresh · 2s
Signal Breakdown · 24h
by collector
| Hostname | OS | Agent | Status | Last seen |
|---|
| — |
| Title | Severity | Status | When |
|---|
| No incidents — all clear 🛡 |
Risk Engine
Fleet-wide composite risk · time-decayed · peer-relative · auto-mitigated
Fleet Size
—
enrolled assets
Vuln Instances
—
across the fleet
Pending Approval
—
auto-executed 24h: —
🔥 Top Risk Assets
click to drill down
| # | Asset | User | ARS | Pct | Top Vuln |
|---|
| Loading… |
⚠ Top Vulnerabilities (VRS)
CVSS × env × temporal × prev
| ID | Title | VRS | Assets | Trend |
|---|
| Loading… |
👥 Top Risk Users (URS)
composite across all devices
| User | URS | Devices | Primary ARS | Top Vuln |
|---|
| Loading… |
Asset Fleet
All enrolled devices · click any row to drill into vulnerabilities + mitigations
| ARS | Hostname | OS | User | Vulns | Last Seen |
|---|
| Loading… |
Vulnerability Catalog
All known patterns the brain detects · CVSS-shape base score · MITRE ATT&CK mapped
| ID | Title | Cat | Base | VRS | Assets | MITRE | Playbook |
|---|
| Loading… |
Vulnerability Detail
Mitigation Approval Inbox
Pending actions with risk/benefit math · approve or reject · audit-tracked
| When | Tier | Action | Target | Status | Decided By |
|---|
| Loading… |
Playbooks
YAML-defined CAPA response templates · containment / corrective / preventive / verification
Loaded Playbooks
hot-reloadable from /playbooks/*.yaml
| ID | Title | Trigger | Auto | Efficacy | Runs | Verified |
|---|
| Loading… |
AI Agent Firewall
OWASP LLM Top 10 protection for your AI agents · intent-based ML detection · in-flight tokenization · auto red-team
🤖 Registered AI Agents
click to manage
| Name | Kind | Mode | Scans | Blocks | Last |
|---|
| No agents registered yet. POST to /api/shieldmind/_aifw/agents/ to onboard one. |
OWASP LLM Top 10 Hits
last 30 events
| When | Agent | Direction | Verdict | Risk | OWASP |
|---|
| No scans yet |
Audit Log
Immutable record of every admin action · SOC 2 CC7.2 + ISO 27001 A.12.4 evidence · last 200 entries
| When | Action | Actor | Target | Severity | Summary |
|---|
| No audit entries yet |
Compliance Evidence Pack
Auditor-ready ZIP for SOC 2 Type II · ISO 27001 · PCI DSS 4.0.1 · HIPAA · GDPR · NIST 800-171 · FedRAMP Moderate
📦 Generate Evidence Pack
cuts SOC 2 prep from 6 weeks to 30 seconds
Your auditor's request list, satisfied automatically. Click to download a ZIP containing:
- manifest.json — coverage summary + metadata
- controls.csv — every control across all frameworks with status + evidence pointer
- evidence/<framework>_<control>.txt — actual evidence per control (RBAC dumps, audit log, incident records, mitigations, crypto config)
- audit_log.csv — complete audit log for the chosen window
- report.html — executive summary for the auditor
Window:
⬇ Download Evidence Pack
| Framework | Controls | Status |
|---|
| SOC 2 Type II | 9 (Trust Service Criteria) | automated |
| ISO 27001 | 5 (mapped to SOC 2) | automated |
| PCI DSS 4.0.1 | 4 (Req-7, 8, 10, 12.10) | automated |
| HIPAA | 4 (164.308 / 164.312) | automated |
| GDPR | 3 (Art.5.1.f / 32 / 33) | automated |
| NIST 800-171 | 3 (3.1.1 / 3.3.1 / 3.14.6) | automated |
Settings
Org-level controls · risk thresholds · autonomy mode
• Auto-Approve Threshold: 10.0 (net benefit must exceed this for auto-execution)
• Friction Weight: 3.0 (cost per friction-point per affected user)
• Admin Cost: 0.4 benefit-points per admin-minute required
• Confidence Floor: 0.3 (minimum confidence multiplier)
Tuning these knobs lives in services/risk_benefit.py and will move to per-tenant ShieldMindConfigModel in v2.
python -m core.manage shieldmind_recompute_risk --seed # nightly
python -m core.manage shieldmind_verify --weekly # every 15min + weekly post-mortem