When HelloHacker detects an event, it emails the address you’ve set for alerts. That message includes the essentials so you can tell what happened at a glance: the event name (for example, a port scan), the severity badge, date and time, source IP, targeted IP, and the targeted port. There’s also a Take Action button and a Go to my portal link.
Respond in a few steps
1) Review the email.
Confirm the details are relevant to your environment. The summary is meant to be enough to decide if you should investigate or act right away.
2) Click “Take Action.”
You’ll land on the Take action page in your HelloHacker portal. From here you can assign the alert to a manager (dropdown at the top left) and press Start processing the alert.
3) Decide what to do.
Based on what you see, you can choose to assign a manager to this alert or block/allow the activity. Before confirming your decision, you’ll be prompted to add an optional comment. We recommend including a brief note explaining your choice to help you and your colleagues remember the reason behind it.
4) Additional context
If you need more context, you can open “Event details.” This opens a panel with the full JSON object for the event. From there, you can also download a full « tcpdump » of the traffic associated with the alert so you can dig into the packets and understand exactly what triggered it.
Also, if you require more help or have questions about an alert, you can always reach us directly at alert@hellohacker.com or call us at +1 (866) 334-2525. We’re here to make sure you get the info and support you need.
Once you’ve acted and, you can return to the rest of your alerts from the Portal, or close the page.