Home

SOC Environment Simulation

Back to Work
ReactViteDockerSIEMSOCNginx
Source Code

Overview

A simulated Security Operations Center (SOC) dashboard designed for log analysis, threat detection, and incident response training.

Built with React and Vite, the platform generates synthetic SIEM events in real-time and runs entirely via Docker.

SOC Environment Simulation preview
SOC Environment Simulation detail

Key Features

  • Live log stream emitting synthetic SIEM events color-coded by severity
  • Threat alert queue that automatically promotes high-severity events to prioritized alerts
  • Incident responder panel with one-click resolution and formatted incident reports
  • System health board displaying simulated status for SIEM, IDS, firewall, and an EPS sparkline
  • Containerized deployment via a multi-stage Docker build with Nginx

Technical Approach

The application uses custom React hooks as engines (useLogEngine, useAlerts, useSystemHealth) to drive the synthetic generation of logs and health states without needing a complex backend.

The UI is styled to mimic a dark-terminal environment for a realistic security analyst experience, with a modular component architecture.

The entire project is containerized using a multi-stage Docker build, serving the optimized production build via Nginx, making it instantly deployable anywhere.

Outcomes

  • Created a fully standalone, interactive SOC training environment that runs without external dependencies.
  • Demonstrated advanced React state management and real-time data simulation techniques.