Skip to main content

Use AI to Create Torq Case from Anvilogic Alerts - Workflow Template

Use Anvilogic Copilot, to analyze Anvilogic alerts and create cases in Torq.

Updated over 3 weeks ago

The workflow template "Use AI to Create Torq Case from Anvilogic Alerts" automates the analysis of security events by integrating Anvilogic's AI-powered Copilot with Torq. This solution is strategically designed for businesses to efficiently handle and respond to security alerts by creating a structured case within Torq's platform. The AI-driven triage by Anvilogic Copilot conducts an in-depth investigation of each event, summarizing findings and establishing whether an event is likely malicious. Subsequently, it maps alert details to a predefined case format and initiates a case in Torq for every new event detected, allowing timely and informed incident response actions.

Take Me to the Template

Workflow Breakdown

  1. Upon event submission, Copilot performs automated analysis

  2. Produces a summary report with relevant context and findings.

  3. A final determination indicating the likelihood of the event being malicious

  4. Map alert fields to a predefined case layout.

  5. Create a case for each new event.

Vendors

Utils, Torq Cases, Anvilogic

Workflow Output

Copilot will respond with a determination about the event, such as MALICIOUS or BENIGN, along with a report detailing its findings and reasoning.

Related Articles
AI Event Triage with Anvilogic Copilot - Workflow Template
Poll for new SentinelOne Threats and Open a Torq Case - Workflow Template
Poll for new CrowdStrike Alerts and Open a Torq Case - Workflow Template
Initial CrowdStrike Case Creation - Workflow Template
Initial SentinelOne Case Creation - Workflow Template
Did this answer your question?