โšก DEMO SANDBOX โ€” Interactive preview with simulated threat data. Sign up for live protection โ†’
Back
Overview
Protected
92
Security
Your server is well protected
KovaShield is actively blocking attacks. Your honeypot is catching probes before they reach your actual services.
โœ“ 23 IPs blocked
โœ“ 4 subnets flagged
โš  3 Tor nodes detected
๐Ÿšจ
โ†‘ 12%
47
Total incidents logged
๐Ÿšซ
IPs
23
Unique IPs blocked
๐Ÿง…
TOR
3
Tor exit nodes detected
๐ŸŒ
GEO
8
Countries of origin
๐Ÿ’ก
What does this mean? KovaShield blocked 23 attackers out of 47 incidents. Every blocked IP is a threat that never reached your actual website. Your honeypot traps caught attackers probing for /.env, /wp-login.php, and /phpmyadmin โ€” and sealed court-ready evidence automatically.
๐Ÿ“ˆ Attack Timeline
last 24h
โšก Recent Threats
47 total
๐ŸŒ Top Origins
โš”๏ธ Attack Types
๐ŸŽฏ Top Targeted Paths
47 events
๐Ÿ‘†
Select a threat to see details
47
Total incidents
23
Unique IPs blocked
4
Subnets flagged
3
Tor exit nodes
๐ŸŒ Countries
โš”๏ธ Attack Vectors
๐ŸŽฏ Targeted Paths
๐Ÿดโ€โ˜ ๏ธ Top Attackers
IPCountryHitsScoreTorStatus
๐ŸŒ Live Attack Topology
Server โ†’ Honeypots โ†’ Attackers
Your server Domain Honeypot Critical attacker High threat
๐Ÿ‘
1,247
Unique visitors
๐Ÿ“จ
3,891
Total requests
๐Ÿšซ
312
Blocked
โšก
42ms
Avg response
๐Ÿ“ˆ Requests Over Time
๐Ÿ” Top Paths
๐Ÿ“ฑ Status Codes
๐Ÿ›ก๏ธ
Web Application Firewall
47 rules across 12 attack categories. Blocks SQL injection, XSS, path traversal, and 40+ other attack patterns automatically.
โš”๏ธ
47
Total blocks
๐Ÿ“‹
47
Active rules
โœ“
12
Categories
๐ŸŽฏ
99.2%
Accuracy
Rule Categories
CategoryMITRERulesBlockedModeActive
๐Ÿ›ก๏ธ
Firewall rules block, allow, or challenge traffic before it hits your server. Rules run top-to-bottom. First match wins.
Active Rules
3 rules
#NameConditionActionHitsOn
โšก Quick Templates
๐Ÿง…
Block Tor exit nodes
Prevents anonymous Tor traffic from reaching your server
๐Ÿค–
Block known scanners
Blocks Shodan, Censys, Masscan recon tools
๐Ÿ’‰
Block SQL injection
Detects UNION, DROP, SELECT abuse in URLs
๐Ÿ”
Protect /wp-login.php
Rate-limits WordPress brute force attacks
โšก
Security Rules control how KovaShield behaves globally โ€” evidence sealing, honeypot deception, threat feed sharing, and more.
๐Ÿฏ
Gotchas are fake paths, fake credentials, and canary tokens that look real to attackers but are traps. When someone hits a gotcha, KovaShield logs them, scores them, and seals court-ready evidence automatically.
๐Ÿฏ
18
Gotcha triggers
๐ŸŽฃ
5
Active traps
๐Ÿง…
3
Tor nodes caught
โš–๏ธ
18
Evidence sealed
๐Ÿชค Active Traps
PathTypeResponseHitsActive
๐Ÿšซ Blocked IPs
23 blocked
IPCountryReasonScoreTagsLast Seen
๐Ÿ”’ Evidence Vault
SHA-256 + HMAC Sealed
โš–๏ธ
Court-ready evidence. Every captured attack is cryptographically sealed. The SHA-256 hash is a tamper-proof fingerprint โ€” if anyone modifies the record, the hash changes and tampering is immediately detectable.
๐Ÿ•ต๏ธ
Threat actor profiles track the most persistent attackers. KovaShield correlates IPs, attack patterns, timing, and tooling to identify when the same attacker returns.
๐Ÿดโ€โ˜ ๏ธ Known Threat Actors
5 profiles
Actor IDIPsFirst SeenLast SeenPrimary AttackMITREThreat Level
๐Ÿ“‹ Activity Log
real-time
TimeActorActionDetailResult