Screenshots gallery
===================

Nmap results
------------

See :ref:`usage/active-recon:Active recon`.

|screenshot_heatmap|

Home page with "heatmap" IP addresses.

|screenshot_heatmap_zoom|

Scan result details, using the "heatmap" IP addresses to "zoom" in the
address space

|screenshot_solar_map|

Screenshots containing the word "solar" and map

|screenshot_top_products_80|

Most common products seen on port 80

|screenshot_top_enip_vendors|

Help tooltip and most common ENIP vendors

Flow analysis
-------------

See :ref:`usage/flow:Flow`.

|screenshot_flow_dns_halo|

DNS flows with halo to show connected nodes

|screenshot_flow_host_details|

Flows with details for a specific host

|screenshot_flow_flow_details|

Flows with details for a specific flow

|screenshot_map|

Flow map

Passive network analysis
------------------------

See :ref:`usage/passive:Passive`.

|animation_passive|

A simple passive analysis demonstration

|animation_passive_view|

The data from the previous scene used to create an Nmap-like result

Kibana exploration
------------------

See :ref:`usage/kibana:IVRE with Kibana`.

|screenshot_kibana_cloud_domains|

Domain names tag cloud

|screenshot_kibana_cloud_services|

Service names tag cloud

|screenshot_kibana_pie_countries_asnums|

Countries / AS numbers pie

|screenshot_kibana_heatmap_asnames_ports|

Heatmap showing correlations between AS and open ports

|screenshot_kibana_worldmap|

World map

IVRE as a plugin
----------------

See :ref:`usage/use-cases:YETI plugin`, :ref:`usage/use-cases:Cortex
analyzer` and :ref:`usage/use-cases:OpenCTI connector` use cases.

|yeti_investigation|

Fictitious investigation in `Yeti <https://yeti-platform.github.io/>`_
about an IP address used by the archlinux.org domain, based on data
from IVRE.

|cortex_analyzer_template|

`Cortex <https://thehive-project.org/>`_ report about an IP address
using data from IVRE.

|opencti_connector_scans|

Fictitious investigation in `OpenCTI <https://www.opencti.io/>`__
based on scans data from IVRE.

|opencti_connector_passive|

Fictitious investigation in `OpenCTI <https://www.opencti.io/>`__
based on passive data from IVRE.

.. |screenshot_heatmap| image:: ../screenshots/webui-home-heatmap.png
.. |screenshot_heatmap_zoom| image:: ../screenshots/webui-details-heatmapzoom.png
.. |screenshot_solar_map| image:: ../screenshots/webui-screenshots-solar-world.png
.. |screenshot_top_products_80| image:: ../screenshots/webui-topproducts-80.png
.. |screenshot_top_enip_vendors| image:: ../screenshots/webui-tooltip-topenipvendors.png
.. |screenshot_flow_dns_halo| image:: ../screenshots/webui-flow-dns-halo.png
.. |screenshot_flow_host_details| image:: ../screenshots/webui-flow-details-host.png
.. |screenshot_flow_flow_details| image:: ../screenshots/webui-flow-details-flow.png
.. |screenshot_map| image:: ../screenshots/webui-flow-flow-map.png
.. |animation_passive| image:: ../screenshots/passive-cli.svg
.. |animation_passive_view| image:: ../screenshots/passive-view-cli.svg
.. |screenshot_kibana_cloud_domains| image:: ../screenshots/kibana-cloud-domains.png
.. |screenshot_kibana_cloud_services| image:: ../screenshots/kibana-cloud-services.png
.. |screenshot_kibana_pie_countries_asnums| image:: ../screenshots/kibana-pie-countries_ASnums.png
.. |screenshot_kibana_heatmap_asnames_ports| image:: ../screenshots/kibana-heatmap-asnames-ports.png
.. |screenshot_kibana_worldmap| image:: ../screenshots/kibana-worldmap.png
.. |yeti_investigation| image:: ../screenshots/yeti_investigation.png
.. |cortex_analyzer_template| image:: ../screenshots/cortex-analyzer-template.png
.. |opencti_connector_scans| image:: ../screenshots/opencti-connector-scans.png
.. |opencti_connector_passive| image:: ../screenshots/opencti-connector-passive.png
