May 18, 2020 Kumar Saurabh
4 months ago we started on a journey to make security automation so easy that a 6 year old can do it. That was inspired watching my 6 year old son build apps on his ipad using an app called Tynker (https://www.tynker.com/- if you have young kids - highly recommended way to get them hooked on coding)
We wanted to build the security automation platform so that it was as easy as putting together legos to do whatever it is that you would want to automate.
I will walk you through a process that we have adopted with several of our customers to help them realize the benefits of Security Automation.
The first step always is to just document the playbook in simple english - as if you were trying to train a junior analyst on how to perform a repetitive task. It's almost drawing a rough sketch of the painting you plan to draw before you fill in all the minor details.
For example, here is a very simple phishing triage playbook:
The first step in the playbook requires an integration with the imap server. And, then you just want it to point it to the folder from where you want to read the emails.
To make this step super easy, all you have to do is look for a step
And, then you look for an automation that does that..here are the top options that come up when I hit “Search & Add Automation” -
Great. Let’s use IMAP to read emails. Once you select that automation - this one requires a connection to the IMAP server. Here is what the configuration screen looks like:
Once you configure the connection, we tell it which folder to fetch the emails from, and whether to fetch all the emails or just the unread ones:
And, that’s it - we are done adding this step.
We repeat the same pattern a bunch of times to build out the playbook.
Watch me build this simple phishing flow in under 5 minutes from scratch here:
Are you ready to start automating? We do office hours every week to help you get started automating your playbooks. Book a demo here and ask to schedule a working session if you are ready to start automating some playbooks.
May 20, 2022 Willy Leichter
Demystifying the technology with case studies of AI security in action Many automation tools, such...
Learn MoreMay 17, 2022 Willy Leichter
While we’ve been talking about and imagining artificial intelligence for years, it only has...
Learn MoreMay 15, 2022 Tessa Mishoe
Hello, and welcome to the latest edition of the LogicHub Monthly Update! Each month we’ll be...
Learn MoreMay 9, 2022 Tessa Mishoe
Blackcat Ransomware On April 19th of 2022, the FBI Cyber Division released a flash bulletin...
Learn MoreMay 6, 2022 Kumar Saurabh
LogicHub’s unique decision automation technology can build clients the ultimate security playbook...
Learn MoreMay 3, 2022 Kumar Saurabh
Automating a threat-hunting playbook with the help of AI Many threat-hunting playbooks we build for...
Learn MoreApril 29, 2022 Tessa Mishoe
Introduction Within the realm of security, there are many different toolsets and opinions on what...
Learn MoreApril 27, 2022 Willy Leichter
SOAR Playbooks Outside of football, the term “playbook” is well understood by a relatively small...
Learn MoreApril 21, 2022 Willy Leichter
When updating your systems from a pure Security Information Event Management (SIEM), choosing the...
Learn MoreApril 15, 2022 Tessa Mishoe
Hello, and welcome to the latest edition of the LogicHub Monthly Update! Each month we’ll be...
Learn More© 2017-2022 LogicHub®
All Rights Reserved
Privacy Policy
Terms of Use
Sitemap
© 2017-2022 LogicHub®
All Rights Reserved
Privacy Policy
Terms of Use
Sitemap