Perform weekly scans on quarantined objects on ESET

Automated OneDrive & SharePoint Anomaly Detection and Response

External Threat Intelligence Analysis of IOCs using VirusTotal and Google Sheets

Internal Threat Intelligence Databases Analysis in Google Sheets

Automate Deep Gmail Security Analysis: URL & Attachment Threat Detection

Automate Gmail Mailbox Monitoring & Security with Google APIs & Pub/Sub

Azure AD Event Analysis & Anomaly Detection with Microsoft Graph & Teams

Automate Azure Brute Force Alert Detection & Response with Splunk & Microsoft Graph

Automate Office 365 Event Monitoring: Real-Time Security & Compliance for SharePoint, Exchange & AAD

Automate Continuous Email Gateway Testing: Malware & Phishing Simulations

Automate User-Failed Signin Detection & Response with Microsoft Purview & Graph

Automate Office 365 Event Monitoring: Secure, Analyze & Enhance Compliance

Investigate User Actions Performed During a Azure Active Directory Session

Automated reconnaissance to detect public company-linked S3 buckets

Darktrace AI Analyst Incident Review, Notification, and Reporting

Retrieve latest Known Exploited Vulnerabilities catalog from CISA

Continuous Network Vulnerability Monitoring

Automated Cloud Security and User Account Management with Microsoft Teams

Proactive Monitoring and Automated Remediation of Suspicious File Downloads in Google Drive

Automated Phishing Email Analysis and Risk Assessment with Multi-Tool Security Integration

Email attachment threat analysis and triage with Material Security and VirusTotal

Domain MX Records and IP Reputation Analysis with Slack Reporting

Detection and Management of CISA Vulnerabilities Using Tenable, Jira, and Microsoft Teams

Monitor, Enrich, and Remediate Honeytoken Triggers on GitGuardian

Remediate unusual Google Admin login events through Panther alerts

Automate email threat detection and analysis with Slack, VirusTotal, and EmailRep

Automated Malicious Email Detection and Remediation with Threat Exchange

Automated employee offboarding using Google Admin, Okta, Bitwarden, Slack, HubSpot, and GitHub

Unlock Local User Accounts on Devices Managed by Jamf Pro

Create a Microsoft Sentinel Subscription for Every New Alert

Automatically Monitor Employees' Received Emails to Detect Threats

Suspicious Login Detection and Remediation in Google Workspace

Automated Cloud Resources Change Monitoring & Security Alerts

Automate Google User Impersonation with IAM & OAuth

Delete All Access Tokens and Signout a User with Google Admin Directory

Investigate Devices' Current DNS Resolver with Jamf Pro and Slack

Scheduled Subdomains Enumeration and SSL Certificate Scans

Continuous Network Threat Hunting using Darktrace and Remediation in CrowdStrike

Automated Network Mapping & Security Scans with Shodan

Automatically Perform Shodan Queries to Identify Network Misconfigurations

Automated Persistent Software Monitoring with Jamf Pro, Google Sheets & Slack

Automated Google Workspace 2FA Management via Slack

HaveIBeenPwned Scan and Trigger Password Change in Google Admin Directory

Automate Device Locking and Phishing Alerts with AI Agents in CrowdStrike

Automate PII Anonymization and AI Responses in Slack with AWS Comprehend and OpenAI

Ingest notifications from ESET Protect and trigger remediation

Perform weekly scans on quarantined objects on ESET

Automated Threat Detection and Remediation with ESET Protect and Slack Notifications

Automated IOC Management and Response in Slack with Crowdstrike

Automate CSPM Threat Response with Lacework, Jira, and AWS

Enrich & remediate suspicious logins reported in Okta

Streamline Incident Response with VMware Carbon Black, PagerDuty, VirusTotal, and Jira

Streamlined temporary access management in AWS IAM and AWS SSO from Slack

Enhance Email Security: Automated Domain Scanning, Breach Detection & Password Resets

Automate email security with UrlScan, VirusTotal & Slack for threat detection

Streamline Noname Security issue and evidence processing in Splunk

Automating Threat Detection in AWS GuardDuty with URLScan and Jira

AWS Cloud Security Management with Investigation and Remediation of Lacework Alerts

Remediate unusual login alerts from a SIEM system with Slack and Google Admin

Revoke Okta session following a Panther Event

Automate scheduled device compliance evidence reporting with Jamf Pro and Drata

Terminate Active Malicious Processes in CrowdStrike with Slack Notifications

Send an unknown IOC to Recorded Future for Analysis

Monitor and remediate file and media uploads on company cloud storage

Detect & remediate public AWS S3 buckets with JupiterOne

Automated Compliance Reporting with Drata and Slack

Search & update notable status in Splunk Enterprise Security

Automate vulnerability data transfer from CrowdStrike Falcon Spotlight to Drata

Automate background check tracking and evidence upload for compliance in Drata

Automatically analyze and remediate forwarded email attachments using GLIMPS

Automated Web Extension Blocklist Management with JAMF Pro and Slack

Automated Device Containment and Incident Tracking with CrowdStrike Falcon Overwatch and Jira

Analyze and Remediate Files Uploaded on Google Drive with GLIMPS

Comprehensive Email Threat Detection and Response

Automated Real Time Threat Response with CrowdStrike Falcon

Automated Computer Restart and Status Tracking with Check Point Harmony Endpoint

Automated Token Retrieval and API Session Initialization for Check Point Harmony Endpoint

Automate 2FA Compliance Checks, Enforcement, and Reporting for Users in Acronis

Monitor, notify, and remediate secret incidents on GitGuardian

Check leaked password with Digital Shadows

Automated Analysis of Phishing Emails, URLs, and Attachments Using VirusTotal, URLScan.io, and emailrep.io

Automated Scanning and Reporting of Open Ports Using Shodan and Slack

Automated URL Threat Analysis and Incident Ticket Creation Using VirusTotal and Freshservice

Correlate and Alert on Multiple Failed Okta Logins via Slack for Enhanced Security Monitoring

Automated IP Address Verification and Remediation Using Google Sheets, VirusTotal, Jamf, and Slack

WordPress admin unknown IP address alert

Weekly Automatic Signout and Cookie Reset for All Google Workspace Users

Force Password Reset in Azure Active Directory Upon Detection of Compromised Credentials

Automated File Sharing Monitoring and Notification for Access Changes in Google Drive

Automated Domain Blocking in FireEye Endpoint Security for Enhanced Threat Response

Comprehensive Multi-Platform Identity Enrichment and Risk Analysis

Role creation or suspension in CrowdStrike

Delete inactive mobile devices from Google Workspace

Handle False Positive Alerts in AWS IAM with an AI Agent

Automated URLBlockList Updates by JAMF Pro

Retrieve overly permissive Google Cloud firewall rules with Wiz

Real-Time Email Anomaly Monitoring and Alerting with Google Pub/Sub and Slack Integration

Monitor Google Drive Activities for Access Changes, Downloads, and Deletions

Automated Spam Detection and Removal in Office 365 Mailboxes

Discovery and Reporting of New Threats from MITRE TAXII Server to Slack

Monitor Sent Emails in Google Workspace Using Admin Directory and Gmail

Verify Hashicorp Vault cluster health

Query Shodan for findings and alert on them using Slack and Jira

Crowdstrike Detection Analysis with VirusTotal and Incident Reporting in Jira and Microsoft Teams

Analyze Email Headers for IP Reputation and Spoofing Detection

Fetch Microsoft Defender alerts and create a ticket in Jira

Automated external email in-depth analysis with VirusTotal, Urlscan and AbuseIPDB

Automate PaloAlto FireWall upgrade

Detection and Remediation of Malware in Network Environments Using Wiz, SentinelOne, and Jira

Monitoring and Management of Security Advisories Using Palo Alto ATP and Jira

Detection and Management of Inactive Google Cloud Service Accounts Using Wiz and Jira

Triage of Email Attachments for Enhanced Security Using Material Security and VirusTotal

Continuous Security Monitoring for BitWarden Using Mindflow AI Agent

Enrich CrowdStrike incidents with VirusTotal & send to TheHive

Automated Jira Ticket Creation and Alert Assignment with Notifications via Microsoft Teams

Respond to a CrowdStrike detection in ServiceNow

Find & remediate publicly exposed S3 buckets with Wiz

Monitor large downloads by employees in Netskope and create Jira issues

Email Header and Body Analysis for Phishing Attempt

Ticket enrichment from a Sekoia Alert

Analyze email attachments with VirusTotal

Onboard employees & grant specialized access to specific tools

Streamline Okta Sign-In Monitoring and Slack-PagerDuty Response Mechanism

Crowdstrike Alert Analysis and Jira Ticketing for Enhanced Security Incident Response

Create a security incident in Airtable

Investigate unresolved SentinelOne threats

Automated Security Alert and Vulnerability Information Management with Qualys

AWS GuardDuty Analysis and Automated Jira Alert Management with IAM & EC2

Logz.io Event Capture and Jira Ticketing Integration for Efficient Monitoring

Enrich WAF Alerts with GreyNoise

Security Alert Management in GitHub from Elastic SIEM Notifications

Add a domain to a blocklist in Zscaler

Isolate & remediate AWS EC2 instance based on IOC

Create an IP enrichment API

Automated PagerDuty Incident Management with ServiceNow

Automated Remediation of PagerDuty Incident Alerts

Investigate Suspicious Office 365 Logins and Ticketing with ElasticSearch and Zendesk

Filter Hunters.ai alerts by risk level and create Jira ticket via slack

Automated Notification of Open Tickets in TheHive to Users

Security Alert Analysis with Crowdstrike, Lacework, and ChatGPT

Query Log Analytics for Azure Sentinel alerts using KQL statements

Analyze IP via Slack with VirusTotal and IPInfo

Automating Azure User Session Expiry and Password Resets via Microsoft Graph

Send an MFA push challenge to an Okta user on-demand

Automating Log Transfer from Google Workspace to Elastic

Discover leaked email passwords and personal information with Recorded Future

URLhaus URLs auto-update to Cisco Umbrella Deny List

Automating Monitoring and Dynamic Blocking of IOCs from US-CERT Feed

Discover and monitor unmanaged devices using Axonius

Automated ServiceNow Incident Resolution Sync with CrowdStrike Detections

Automated Jamf Device Compliance Checks with CrowdStrike

Bulk Geo-lookup of IP Addresses Using Really Free Geo IP and Integration for Reporting

Automated IP Reputation Analysis in Snowflake with AbuseIPDB and VirusTotal

Automating IP Threat Detection and Notification with VirusTotal

Automated IP Analysis and Reporting with GreyNoise and Jira

Enrich IPs with VirusTotal Enterprise

Automated OCR Fraud Analysis and Zendesk Ticketing

Automated Domain Security Analysis with URLScan, VirusTotal, and URLhaus

Automated domain breach detection with HaveIBeenPwned in Google Admin Directory

Automating URL Allowlisting with Urlscan.io and Zscaler

Analyze files in Hybrid Analysis