Skip to main content
All CollectionsTemplatesBasic
Assign New Alerts from Hunters.ai - Workflow Template
Assign New Alerts from Hunters.ai - Workflow Template

Retrieve alerts from Hunters XDR, suggest to assign using Slack.

Updated over a week ago

This workflow template, "Assign New Alerts from Hunters.ai," automates the process of managing network security alerts. Every two hours, it retrieves new alerts from Hunters XDR, sends pertinent alert information to a designated Slack channel, and prompts team members to either assign the alert for review or skip it. It closes the loop by reporting the outcome back to Slack, optimizing the alert management process and ensuring timely response to potential threats.

Take Me to the Template

Trigger

Scheduled Event

Use Cases

Remediate Network Security Alerts

Workflow Breakdown

  1. Every two hours fetch new Hunters alerts

  2. Send alert information including entities to Slack

  3. Suggest to assign alert or skip

  4. Report back to Slack

Vendors

Slack, Scripting, Utils, Hunters.ai

Workflow Output

Assign alerts in Hunters

Tips

This workflow can be extended to remediate Hunters alerts","Replace Slack with Microsoft Teams, etc

Related Articles
Add Phishing Domain to CloudFlare ZeroTrust (IntSights) - Workflow Template
Enable AWS S3 Bucket Versioning on Lacework Alert - Workflow Template
Handle High Level CNC Threat Detected on Network (Armis) - Workflow Template
Remediate Alerts from Rules to External Address Adaptive Shield - Workflow Template
Threat Hunt for a Specified SHA1 Signature in SingularityXDR - Workflow Template
Did this answer your question?