When a new SecureX orchestration tenant is provisioned, five “out of the box” workflows are automatically imported. These are simple response workflows to help get you started with the product. Because of how these workflows are imported, the process to update them is a little different than our other workflows.
To update an out of the box workflow, you need to get the workflow’s JSON from our GitHub repository. You can either view the raw JSON and copy/paste it into SecureX orchestration OR you can download the raw JSON to a file and import the workflow as a file.
- More information about importing workflows can be found here.
Table of contents
- Host Isolation with Tier 2 Approval
- Move Computer to Triage Group
- Submit URL to Secure Malware Analytics
- Take Forensic Snapshot and Isolate
- Take Orbital Forensic Snapshot