SentinelStream AI is a high-velocity Security Information and Event Management (SIEM) platform designed to bridge the gap between asset vulnerability and real-time threat intelligence. Built as a "Workshop-Ready" product, it allows security teams to enroll network nodes, assign critical vulnerabilities (such as CVE-2024-21410), and monitor automated incident responses (SOAR).
- Dynamic Asset Enrollment: Manually input and monitor specific internal IP addresses live.
- Neural Threat Correlation: Real-time matching of incoming logs to known device vulnerabilities.
- Automated Remediation: Instant "Threat Neutralized" logic for high-severity attack patterns like NTLM Relay and SQL Injection.
- Risk Posture Analytics: Executive-level health scoring (0-100%) based on live infrastructure status.
- Frontend: React.js for stateful UI management.
- Styling: Tailwind CSS (Deep Mesh Gradient & Glassmorphism design).
- Logic: Asynchronous JavaScript (ES6+) simulation engine.
- Deployment: Standalone Babel implementation for zero-setup browser execution.
- Clone this repository:
git clone [Your-GitHub-URL-Here] - Open
src/sentinel_v5_live.htmlin any modern web browser. - No local installation or servers are required.
- Mastering the SIEM data lifecycle (Ingestion, Correlation, and Response).
- Identifying critical NTLM Relay attack vectors (CVE-2024-21410).
- Building reactive security dashboards with modern web frameworks.