213 Followers
·
Follow

TheHive webhook automation made easy
TheHive webhook automation made easy

Automation is useful to everyone — especially in Cyber security. Leadership wants their KPIs and graphs. How do you produce them? Automation. Managers want to know how their team is performing. How can you make this easier for them? Automation. Analysts don’t want to see the same old alerts. How do you manage fatigue? Automation.

All these are solvable tasks with a few clicks in Shuffle. How? Read on.

This is the fourth part of a series about Shuffle and automation. Previous posts have focused on understanding and using Shuffle in a general sense of the word, with this iteration being about real use-cases for IT and infosec practitioners. …


Image for post
Image for post

Misalignment between practitioners and leadership in Infosec is normal. Leadership may decide to buy a product or service the practitioners are not fond of, but demand an implementation. That means you need to integrate it fully into your processes and procedures. How do you do that however? It’s a hard issue and usually takes a lot of time and effort. But what if it doesn’t have to?

Shuffle gives you options to explore the platform from a programmatic point of view, whether you’re technical or not, and gives access to open standards to build implementations in minutes rather than months or years. …


Getting started with any new and shiny tool is hard, but exciting. My job is to demystify and make it fun and easy. SOAR and Open Source tools can be complicated messes if done wrong, but we’re avoiding that like the plague with Shuffle. This post will bring some much needed light to installation, user creation and workflow editing. It’s aimed at analysts, developers and anyone wanting to learn about automation, and makes you proficient at creating and running basic workflows.

Image for post
Image for post
The end result from this blogpost

This post is the second part in a series of blog posts about Shuffle. We’ve previously delved into what SOAR is (and isn’t) and an introductory overview to apps, workflows, triggers, actions and more. This post will build upon that with examples of these terms, with next post focusing on on practical implementations with Virustotal and TheHive. …

About

Frikky

Building cool things with great people: https://frikky.com

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store