A modern security breach investigation tool with an interactive visualization interface.
- Interactive investigation tree visualization
- AI-powered hypothesis generation
- Node expansion for deeper investigation
- Detailed node information view
- Investigation report generation
- Modern, responsive UI
frontend/: React-based frontend applicationbackend/: Python-based backend servicescommon/: Shared utilities and servicesinvestigation/: Investigation agent and tree management
- Start the backend API server:
python -m backend.investigation.run_apiThe API server will run on http://localhost:8000
- Navigate to the frontend directory:
cd frontend- Install dependencies:
npm install- Start the development server:
npm run devThe frontend will be available at http://localhost:5173
- Enter initial breach information in the text area
- Click "Start Investigation" to generate the initial investigation tree
- Interact with nodes:
- Click "View Details" to see detailed information about a node
- Click "Expand" to generate more hypotheses based on the selected node
- Click "Plausible" to mark a node as plausible and automatically expand it
- Click "Implausible" to mark a node as implausible and lock it
- Click "Generate Report" to create a comprehensive investigation report
- Frontend: React, Vite, react-d3-tree
- Backend: Python, FastAPI, AWS Bedrock (Claude AI models)