Fleet Workloads
3,842
NIX 60% WIN 25% DCK 10% OTH 5%
Unhealthy Hosts
6
Failed EDR heartbeats
Patch Backlog
4
Requires EDR mitigation
Overdue SLA
4
Target patches past due
Module 10
Fleet Health Telemetry
DEMO DATANOMINAL
Fleet Workloads Funnel
○ BASELINE1.4KFleet WorkloadsTotal VM server instances tracked
184EDR Coverage GapsServers missing active EDR agents
9Critical Host CVEsUnresolved critical host vulnerabilities
1.3KPatches DeployedVulnerability patches successfully deployed
Enterprise GRC Checkpoint
EDR ComplianceENTERPRISE
Deploy EDR agents on 100% of internal server workloads.
OS Patch UpdatesENTERPRISE
Verify baseline security policies and apply OS updates regularly.
🔍 Fleet Filters & Workload Search
⚡ EDR Agent Footprint Benchmark
CrowdStrike CPU Impact1.4%
CrowdStrike RAM Hook84 MB
Feature Active: Threat Graph · Overwatch Hunting
🖥️ Managed VM Fleets & Active Threat Isolation Shields
Select a workload row to inspect live kernel process threads. Quarantine nodes to break external network routes instantly.
| Server Hostname | Role | CPU Load | Active Threat | Uptime | Isolate Net | Vulnerability State | Action |
|---|---|---|---|---|---|---|---|
| ur-fleet-db-01 | Fleet Database | 94% | PostgreSQL CVSS 9.4 Injection | 204 days | CRITICAL | ||
| ur-telemetry-01 | IoT Receiver Node | 34% | Unauthenticated API | 45 days | WARNING |
🛡️ Fleet-wide Targeted CVE Vulnerability Patching Engine
Auto-patch critical vulnerabilities fleet-wide in real-time. Action deploys Hot-Patch routines simultaneously across all targets.
| CVE ID | Vulnerability Descriptor | Threat Severity | Core Impact Scope | Vulnerable Hosts | Global Resolution Action |
|---|---|---|---|---|---|
| CVE-2026-3840 | OpenSSH CVSS 9.8 RCE | Critical | Remote root execution bypass | 🟢 0 Host (Secured) | |
| CVE-2026-9042 | PostgreSQL SQL Injection | Critical | Data exfil via database queries | 1 unpatched VM(s) | |
| CVE-2026-2810 | Nginx Buffer Overflow | High | Load balancer denial of service | 🟢 0 Host (Secured) | |
| CVE-2026-1042 | TLS Cipher Negotiation MitM | High | Session hijacking in transit | 🟢 0 Host (Secured) | |
| CVE-2026-1122 | API Unauthorized Endpoint | Medium | Metadata exposure via socket leak | 1 unpatched VM(s) |
🕵️ Active Host Process & Threat Inspector
💡 Select an active VM hostname row in the fleet table above
to load its kernel CPU/RAM process inspector panel...
to load its kernel CPU/RAM process inspector panel...
edr_orchestrator_node@posturepilot: ~
EDR heartbeats active. Swap agent modes, quarantine VMs, kill suspicious PIDs,
or deploy hot-patches to stream boundary orchestration logs...
or deploy hot-patches to stream boundary orchestration logs...