New automation
Automations define how Invicti Platform interacts with your other systems. This article explains how to create a new automation by specifying a scope and the events within that scope that will trigger actions.
IMPORTANT The following configurations are necessary before creating automations:
|
For documentation purposes, we will demonstrate how to create an automation rule that sends discovered vulnerabilities to an issue tracker.
Adding an automation is a 3-step process:
Step 1: Specify scope and targets
This is where you enter a name for the automation and specify the targets or collections.
- Whilst being logged in as an Owner or Administrator, select Automations from the left-side menu.
- Click Add new automation.
- Complete the following fields:
- Name: Enter a meaningful name for the automation.
- Description: Briefly describe what the automation is for.
- Scope: Choose where the automation should apply:
- All targets - Applies to all targets.
- Specific collections - Select from existing collections.
- Specific targets - Choose individual targets.
- Targets / Collections drop-down: This field updates based on your Scope selection. Use it to choose the relevant target(s) or collection(s) the automation will apply to.
- Click Create automation to confirm this. You are taken to the automation configuration page. Continue with step 2 below.
Step 2: Add an event
This is where you add an event (scan completed, scan failed, etc) to the automation.
- Use the plus button to add an event:
- On the Add event dialog, use the drop-down to select Vulnerability found. The other options are:
- Scan completed
- Scan failed
- Report generated
- Based on the event you selected, configure the additional fields:
- Vulnerability severity: Send only vulnerabilities that match the selected severity level.
- Vulnerability confidence: Send only vulnerabilities with the selected confidence level or higher.
- Target’s business criticality: Select the business criticality of the target to further filter the results.
- Click Save to confirm the event configuration.
Step 3: Add an action
- Use the plus button below the event to enter an action.
- Use the drop-down to select an action. Depending on the event, you may see Send to issue tracker or Send email. For this document, we will use Send to issue tracker.
- Specify the integration.
- Save to confirm the action.
- Optionally, repeat previous steps to add additional events and actions to your automation.
- Click Save changes to save the entire automation.
Your automation is now configured and automatically enabled.