Skip to content

The-R34per/Alert-Dashboard

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
alert_dashboard.py
alert_dashboard.py
 
 

Repository files navigation

Alert Dashboard

The Alert Dashboard is a blue team monitoring dashboard that uses a real-time, terminal-based defensive console designed for competition environments. It automatically detects the operating system (Windows or Linux) and loads the correct monitoring modules.

The dashboard provides:

  • Live log monitoring
  • Process activity monitoring
  • File integrity monitoring
  • Real-time alerts
  • A curses-based TUI (Text User Interface)

This tool is lightweight, fast, and requires no admin privileges.

Features

The Alert Dashboard has features that include:

  • OS auto-detection
  • Log monitoring
  • Process monitoring
  • File integrity monitoring
  • Real-time alerts
  • A clean curses-based UI

INSTALLING DEPENDENCIES

  1. Python Requirements

You must install:

  • psutil (All Operating Systems require this)
  • curses (Linux/macOS)
  • windows-curses (Windows only)

Install psutil:

pip install psutil

Installing curses on Windows

Windows does NOT include curses by default. Install the Windows-compatible version:

pip install windows-curses

After installation, Python can import curses normally.

Installing curses on Linux

Most Linux distros already include curses.

If missing:

Debian/Ubuntu:

sudo apt install python3-curses

Fedora/RHEL:

sudo dnf install python3-curses

Arch:

sudo pacman -S python-curses

HOW TO RUN THE DASHBOARD

Basic usage:

python dashboard.py

Optional arguments:

--log <path>       Monitor an additional log file
--watch <dirs>     Comma-separated directories to watch

Example:

python dashboard.py --log /var/log/auth.log --watch "/etc,/var/www"

Windows example:

python dashboard.py --watch "C:\Users\YourName\Downloads,C:\Temp"

OS AUTO-DETECTION

At startup, the dashboard detects the OS using:

platform.system().lower()

This determines which monitoring modules to load:

Windows:

  • Process monitor (psutil)
  • File monitor (polling)
  • Log monitor (only if a log file is provided)

Linux:

  • Process monitor (psutil)
  • File monitor (polling)
  • Log monitor (auth.log, syslog, or custom)

WHAT THE DASHBOARD MONITORS

A) Log Monitor

On Linux:

  • /var/log/auth.log
  • /var/log/syslog

On Windows:

  • Only logs you explicitly provide with --log

The monitor highlights suspicious keywords:

  • fail
  • denied
  • unauthorized
  • invalid
  • error
  • login

B) Process Monitor

Tracks:

  • New processes
  • High CPU usage
  • Unusual spikes in activity

Events look like:

NEW PID 5321 - chrome.exe
HIGH CPU 72.5% PID 884 - python.exe

C) File Integrity Monitor

Watches directories for:

  • New files
  • Modified files
  • Deleted files

Example events:

NEW FILE: /etc/passwd.bak
MODIFIED: C:\Users\User\Downloads\config.ini
DELETED: /var/www/html/index.php
  1. THE TUI DASHBOARD

The screen is divided into four panels:

  1. Logs
  2. Processes
  3. File Changes
  4. Alerts

Alerts are automatically generated from:

  • Suspicious log entries
  • High CPU processes
  • File changes

Controls:

  • Press 'Q' to quit

About

A minimal dashboard application for displaying, organizing, and monitoring alert data in a clean, centralized interface. Designed for lightweight visibility and simple alert management workflows.

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages