Skip to main content

Workflow Template: Use AI to Create Torq Case from Anvilogic Alerts

Use Anvilogic Copilot, to analyze Anvilogic alerts and create cases in Torq.

Updated over a week ago

The "Use AI to Create Torq Case from Anvilogic Alerts" workflow template leverages Anvilogic Copilot to enhance security operations by automating the analysis of alerts and creating cases in Torq. Upon receiving an alert, Copilot conducts an in-depth analysis, categorizing the event as MALICIOUS, SUSPICIOUS, or BENIGN, and generates a comprehensive report. This workflow streamlines case management by mapping alert fields to a predefined layout and creating a new case for each event, optimizing application security operations.

Take Me to the Template

Use Cases

Application Security Operations , Case Management

Workflow Breakdown

  1. Upon event submission, Copilot performs automated analysis

  2. Produces a summary report with relevant context and findings.

  3. A final determination indicating the likelihood of the event being malicious

  4. Map alert fields to a predefined case layout.

  5. Create a case for each new event.

Vendors

Utils, Torq Cases, Anvilogic

Workflow Output

Copilot will respond with a determination about the event, such as MALICIOUS or BENIGN, along with a report detailing its findings and reasoning.

Related Articles
Workflow Template: AI Event Triage with Anvilogic Copilot
Workflow Template: Poll for new SentinelOne Threats and Open a Torq Case
Workflow Template: Poll for new CrowdStrike Alerts and Open a Torq Case
Workflow Template: Initial CrowdStrike Case Creation
Workflow Template: Initial SentinelOne Case Creation
Did this answer your question?