SOC WEEKLY REPORT
CONFIDENTIAL
15th Nov – 21st Nov
� Table of Contents
1. Executive Summary
1.1 Offense Name
1.2 Top Suspicious Ips
1.3 Pending Incident SLA – Ageing
1.4 Top Source IP
1.5 Top Destination IP
1.6 Top Attack Categories
2. System Health Information
2.1 Potential Ransomware Threat
2.2 Resource Utilization and Disk Growth for QRadar Servers
2.3 Summary of Organizational Health
2.4 Summary of Organizational Graph
Gadiel Technologies
Pvt. Ltd.
� Executive Summary
Weekly Operation report provides the summarized details of the overall status of Wave Security infrastructure, over one
week from 15th Nov – 21st Nov
1.1 Offense Name
Offense Name
9
Gadiel Technologies
Pvt. Ltd.
�1.2 Top Suspicious IPs
Suspicious IP
1 1 1
35.244.195.33 68.178.145.118 96.125.173.141
Gadiel Technologies
Pvt. Ltd.
�1.3 Pending Incident SLA - Ageing
Incident Tickets which have been open till date of this Weekly Analysis Report
20
1
Open Closed
Gadiel Technologies
Pvt. Ltd.
�1.4 Top Source IP
Source IP Source IP Location
172.16.18.62 Mohali - Real Estate
172.16.16.64 SP Noida - Real Estate
172.16.50.237 SP Gzb - Real Estate
172.16.47.55 Bijnore - Wave Industries
172.16.18.62 172.16.16.64 172.16.50.237 172.16.47.55 192.168.24.46 Corporate Office - Real
192.168.24.46 Estate - Main HUB
Source IP
Gadiel Technologies
Pvt. Ltd.
�1.5 Top Destination IP
DESTINATION
Chart Title IP Destination IP Location
104.113.242.2 India
104.81.138.88 Singapore
13.232.193.70 India
146.75.113.140 Japan
152.58.211.122 India
104.113.242.2 104.81.138.88 13.232.193.70 146.75.113.140 152.58.211.122
Gadiel Technologies
Pvt. Ltd.
�1.6 Top Attack Categories
Chart Title
Firewall Deny ACL Deny Firewall Permit Authentication Misc Exploit
Gadiel Technologies
Pvt. Ltd.
�2.1 Potential Ransomware Threats
System Name Status
System Name 0
System Name 0
System Name 0
System Name 0
Gadiel Technologies
Pvt. Ltd.
�2.2 Resource Utilization and Disk Growth for QRadar Servers
Server Name Disk Utilization CPU Utilization RAM Utilization
Total Used Free Total Free
Total Used Free Used
QRadar 001
Sda-500 GB 11.2 GB 488.8 GB 24 10.56
192.168.21.247 13.44 Core 64 GB 12 GB 52 GB
Sdb-5 TB 729 GB 4391 GB Core Core
QRadar 002
24 0.96
192.168.21.246 Sda-900 GB 34 GB 866 GB 23.04 Core 64 GB 1.92 GB 62.08 GB
Core Cores
QRadar 003
12
192.168.21.245 Sda-1 TB 27.3 GB 996.7 GB 0.6 Core 11.04 Core 16 GB 0.32 GB 15.68 GB
Core
Gadiel Technologies
Pvt. Ltd.
�2.3 Summary of Organizational Health
•Current Threat Status : 15th Nov – 21st Nov
No potential cyber threats have been detected based on the monitoring of the SOC System.
•Mitigation Measures:
•Preventive Actions:
•Regular software updates and patching on the affected systems.
•Enhanced employee training on cybersecurity best practices such as Automated Security Awareness
Platforms
•Incident Response:
•Established protocols for rapid response to potential threats by integrating Incident Response Tools within
the SOC environment such as Endpoint Detection & Response (EDR)
•Ongoing Security Practices:
•Continuous monitoring and threat detection.
•Routine data backups and recovery plans.
•Overall Organizational Health:
• Based on the SOC monitoring of listed systems, there are no major incidents being identified during this week.
•Next Steps:
•Maintain current security measures and conduct regular reviews.
•Plan for upcoming enhancements or additional safeguards as needed.
Gadiel Technologies
Pvt. Ltd.
�2.4 Summary of Organizational Graph
Gadiel Technologies
Pvt. Ltd.
�THANK YOU
