Recipe

Incident Dashboard

Build a real-time security incident dashboard with live alerts, severity triage, and forensic timeline views.

Live

WebSocket alerts

Triage

Severity scoring

Timeline

Forensic replay

Overview

This recipe walks through standing up a Meridian-powered incident dashboard that ingests ETW telemetry, correlates process creation events, and surfaces anomalies in a filterable table with severity badges. WebSocket push keeps operators in sync without polling.

Prerequisites

Meridian agent deployed on target hosts
Next.js 14 project with Tailwind
Upstash Redis for pub/sub

Next Steps

All Recipes ETW Consumer →