Use Cases
- Monitor open ports on critical infrastructure to prevent unauthorized access.
- Automate security audits by regularly checking for unexpected services.
- Integrate findings into incident response systems for timely alerts.
How It Works
Fetch a list of monitored IPs and their ports from a designated source. Iterate through each IP address to perform a service scan using Shodan. Filter results to identify any unexpected open ports. Format the findings into a Markdown table for clarity. Post alerts to TheHive for incident management.
Setup Steps
- 1Import the workflow template into your automation platform.
- 2Configure the source for monitored IPs and ports.
- 3Set up Shodan credentials for API access.
- 4Adjust any necessary parameters for the Markdown formatting.
- 5Schedule the workflow to run at desired intervals.
Apps Used
Shodan
TheHive
Categories
Target Roles
Industries
Tags
#process automation
#notifications
#workflow management