This Torq workflow template automates the process of monitoring and reporting new exploited vulnerabilities as released by CISA. It identifies new vulnerabilities by comparing the latest data against the previous polling interval, enriches the findings with NIST references, and notifies the specified Microsoft Teams channel about any new findings. This proactive threat intelligence workflow maintains an updated global variable for ongoing tracking and is vital for organizations aiming to stay informed about potential security threats.
Optional Triggers
Webhook
Use Cases
Threat Intelligence Enrichment
Workflow Breakdown
Download the latest vulnerabilities from CISA
Compare the data to the last polling interval
Enrich the finding with references from NIST
Notify the Teams channel on any new finding
Update the global variable with the latest data to compare on the next execution
Vendors
Utils, Microsoft Teams Bot, Torq, NIST NVD, CISA
Workflow Output
Teams channel notification of latest vulnerabilities