On-Demand Action & Evidence Report

Generate Report

Create a forensic report with granular controls.

Date & Time Range

Action Type

Cloud Provider

Resource ID or Tag

Granular Action Log

Showing all Security actions from Oct 25, 2025, 9:00 AM to Oct 25, 2025, 5:00 PM affecting resources in AWS tagged production.

Patched CVE-2025-1234 on EC2 instance i-123abc.

2025-10-25 09:30:15 UTC

Generated IaC

resource "aws_security_group_rule" "patch_cve_2025_1234" {
  type        = "ingress"
  from_port   = 22
  to_port     = 22
  protocol    = "tcp"
  cidr_blocks = ["10.0.0.0/16"]
  security_group_id = "sg-0123456789abcdef0"
}

View in AWS Console View in CloudTrail

Blocked malicious IP '123.45.67.89' via WAF rule.

2025-10-25 11:45:02 UTC

Generated IaC

resource "aws_wafv2_ip_set" "malicious_ips" {
  name               = "malicious_ips"
  scope              = "REGIONAL"
  ip_address_version = "IPV4"
  addresses          = ["123.45.67.89/32"]
}

View in AWS Console View in CloudTrail