SOC Portal
Centralised security operations for web infrastructure.
Centralised security operations platform for organisations managing multiple websites and servers. Real-time monitoring, full incident lifecycle management, integrated security scanning, forensic-grade reporting, and cross-team coordination — all in a single secure web interface. Integrates with CyberTools and WPress Cleaner for comprehensive threat detection.
At a Glance
Security Operations Without the Chaos
Managing security across multiple websites is fragmented and reactive. Incidents tracked in spreadsheets, evidence scattered across email threads, no central view of your security posture, and no professional reporting when stakeholders need answers.
Scattered Documentation
Incident details live in spreadsheets, emails, chat messages, and personal notes. When an incident escalates, critical information is hard to find and impossible to audit.
Coordination Gaps
Security teams, developers, and management work in silos. No shared view of active incidents, no structured handoff between shifts, and no accountability trail.
No Professional Reporting
When management or regulators ask 'what happened?', teams scramble to reconstruct timelines from memory and fragmented records. Reports take hours to compile instead of seconds.
Complete Security Operations Platform
SOC Portal consolidates every aspect of security operations into a single, auditable interface — from first detection to final report.
Centralised Dashboard
Real-time status of all monitored assets, incident counters by severity, quick actions, recent activity feed, and health indicators. One screen to understand your security posture.
Incident Management
Full lifecycle tracking from detection to closure. Severity classification, team assignment, evidence collection, timeline documentation, and resolution tracking with structured workflows.
Security Scanning
Integrated SEO spam scanning and malware detection powered by CyberTools and WPress Cleaner. Configurable scan depth, scheduled scans, custom keyword lists, and automated alerting.
Infrastructure Documentation
Server inventory, website registry, access matrix, runbooks, emergency contacts, and network documentation. Everything your team needs during an incident, organised and searchable.
Forensic Reporting
Professional incident reports with executive summary, technical analysis, chronological timeline, indicators of compromise, remediation steps, and recommendations. Export as PDF, HTML, or JSON.
Team Coordination
Role-based access control, secure evidence sharing, configurable notification system, complete audit trail, and threaded discussions attached to incidents. Everyone stays informed.
Complete Incident Lifecycle
Every incident follows a structured workflow from detection to closure. No steps missed, no evidence lost, full accountability at every stage.
Detection
Automated alerts from integrated scanners, manual incident reporting, or external webhook triggers. Every incident gets a unique ID and enters the triage queue.
Triage
Severity classification, initial assessment, team assignment. Priority routing ensures critical incidents reach the right people immediately.
Investigation
Evidence collection, timeline reconstruction, root cause analysis. All findings attached to the incident record with timestamps and attribution.
Remediation
Action tracking, verification steps, rollback procedures. Each remediation step is documented and tracked to completion.
Closure
Resolution documentation, lessons learned, prevention measures. Incidents are never just 'closed' — they're resolved with a complete record.
Built-in Scanning & Analysis
SOC Portal integrates directly with IWH's security scanning tools, bringing threat detection into your operations workflow without context switching.
Integration A
Live Website Scanner
Powered by CyberTools technology. Scan any website for SEO spam injections, hidden content, malicious redirects, and defacement indicators directly from the SOC Portal dashboard.
- SEO spam injection detection
- Hidden content analysis
- Malicious redirect detection
- Configurable scan depth
- Custom keyword lists
- Findings auto-linked to incidents
Integration B
Backup Analyzer
Powered by WPress Cleaner technology. Analyse WordPress .wpress backup files for malware, spam content, and suspicious modifications — all within the secure SOC Portal environment.
- WordPress .wpress file analysis
- Malware and backdoor detection
- Database content scanning
- False positive filtering
- Historical comparison
- Findings auto-linked to incidents
Professional Incident Documentation
When stakeholders ask 'what happened?', SOC Portal generates comprehensive, professional reports in seconds — not hours.
Executive Summary
Non-technical overview for management and stakeholders. Impact assessment, resolution status, and key recommendations presented clearly.
Technical Analysis
Detailed findings with supporting evidence. File hashes, code snippets, log entries, and correlation data for security professionals.
Timeline Reconstruction
Chronological event sequence with timestamps, actions taken, and personnel involved. Complete audit trail from detection to resolution.
Indicators of Compromise
Structured IOC documentation: file hashes, IP addresses, domains, file paths, and behavioural patterns. Ready for threat intelligence sharing.
Remediation Steps
Completed and pending remediation actions with verification status. Clear accountability for who did what and what remains to be done.
Export Formats
Interactive HTML reports for web viewing, PDF for formal documentation and archival, JSON for integration with other security tools and SIEM platforms.
Built for Security Teams
SOC Portal is designed for organisations that take web security seriously — whether you're protecting your own infrastructure or managing security for clients.
Managed Service Providers
Manage security operations across multiple client environments. Isolated incident tracking per client, unified operations view, and professional reporting as a service deliverable.
Web Development Agencies
Track security posture during and after development. Demonstrate due diligence with documented security assessments and professional incident response capabilities.
Corporate IT Security
Centralise security operations for distributed web infrastructure. Maintain compliance documentation, audit trails, and structured incident response procedures across your organisation.
Security Consultants
Professional incident response documentation and forensic reporting. A portable, structured toolkit that travels with you across client environments and engagement types.
Deploy Your Way
SOC Portal adapts to your security requirements and operational model. Choose the deployment that fits your organisation.
SaaS (Managed)
Fully managed cloud deployment. Automatic updates and maintenance, daily backups, and support included. Operational in hours, not days.
Self-Hosted
Docker-based deployment on your infrastructure. Full control over data and access. Air-gapped environment support for sensitive operations. Custom integration options.
Hybrid
SaaS portal with on-premise scanning agents. Management and reporting in the cloud, scanning and data processing on your infrastructure. Best of both approaches.
Enterprise-Grade Architecture
Built for security workloads with audit-grade data integrity. Every action logged, every access controlled, every communication encrypted.
FastAPI
Backend API
React
Frontend UI
PostgreSQL
Database
Docker
Containerisation
Redis
Cache & Sessions
Role-Based Access Control
Granular permissions for analysts, managers, and administrators. Control who can view, create, modify, and close incidents.
Complete Audit Logging
Every action recorded with user, timestamp, and details. Tamper-evident logging for compliance and accountability.
Session Management
Configurable session timeouts, secure token handling, and forced re-authentication for sensitive operations.
Zero External Dependencies
No third-party tracking, no external analytics, no data leaving your control. HTTPS-only communication throughout.
Flexible Licensing
SOC Portal licensing scales with your organisation. Pricing is transparent and based on your deployment model and operational requirements.
Deployment Model
SaaS, self-hosted, or hybrid
Monitored Sites
Tier-based by site count
User Accounts
Per-user licensing
Support Level
Standard or priority
Ready to centralise your security operations?
Stop managing incidents in spreadsheets and email threads. SOC Portal gives your security team a professional, auditable platform for every aspect of web infrastructure security — from detection to documentation.