Skip to main content
All CollectionsTemplatesBasic
Assign New Alerts from Hunters.ai - Workflow Template
Assign New Alerts from Hunters.ai - Workflow Template

Retrieve alerts from Hunters XDR, suggest to assign using Slack.

Updated over 6 months ago

This workflow template, "Assign New Alerts from Hunters.ai," automates the process of managing network security alerts. Every two hours, it retrieves new alerts from Hunters XDR, sends pertinent alert information to a designated Slack channel, and prompts team members to either assign the alert for review or skip it. It closes the loop by reporting the outcome back to Slack, optimizing the alert management process and ensuring timely response to potential threats.

Take Me to the Template

Trigger

Scheduled Event

Use Cases

Remediate Network Security Alerts

Workflow Breakdown

  1. Every two hours fetch new Hunters alerts

  2. Send alert information including entities to Slack

  3. Suggest to assign alert or skip

  4. Report back to Slack

Vendors

Slack, Scripting, Utils, Hunters.ai

Workflow Output

Assign alerts in Hunters

Tips

This workflow can be extended to remediate Hunters alerts","Replace Slack with Microsoft Teams, etc

Related Articles
IP Penalty Box with Timeout via Slack (Cloudflare) - Workflow Template
Detected RDP session from Server to External IP (Armis) - Workflow Template
Add and Remove URLs from the Global Blacklist (Zscaler) - Workflow Template
Remediate Alerts from Rules to External Address Adaptive Shield - Workflow Template
Threat Hunt for a Specified SHA1 Signature in SingularityXDR - Workflow Template
Did this answer your question?