Skip to main content

New automation

This document is for Invicti Platform

Automations define how Invicti Platform interacts with your other systems. This article explains how to create a new automation by specifying a scope and the events within that scope that trigger actions.

important

The following configurations are necessary before creating automations:

  • An established integration with an issue tracker, such as JIRA.
  • Allowed email domains configured under Settings  > email. Automation email notifications can only be configured and sent to domains that have been added to the email settings.

For documentation purposes, this guide demonstrates how to create an automation rule that sends discovered vulnerabilities to an issue tracker.

Step 1: Specify scope and targets

This is where you enter a name for the automation and specify the targets or collections.

  1. While being logged in as an Owner or Administrator, go to Automations from the left-side menu.

  2. Click Add new automation.

Add new automation button

  1. Complete the following fields:

    • Name: Enter a meaningful name for the automation.
    • Description: Briefly describe what the automation is for.
    • Scope: Choose where the automation should apply:
      • All targets - Applies to all targets.
      • Specific collections - Choose from the existing collections.
      • Specific targets - Choose individual targets.
    • Targets / Collections drop-down: This field updates based on your Scope selection. Use it to choose the relevant targets or collections the automation applies to.
Automation basic settings form
  1. Click Create automation to confirm this. You are going to be taken to the automation configuration page. Continue with the following step.

Step 2: Add an event

This is where you add an event (scan completed, scan failed, etc.) to the automation. **This is where you add an event (such as scan completed, scan failed, or vulnerability found) to the automation.

  1. Use the plus button to add an event:
Add event plus button

  1. On the Add event dialog, use the drop-down and choose Vulnerability found. The other options are:

    • Scan completed
    • Scan failed
    • Report generated
Add event dialog with options

  1. Based on the event you selected, configure the additional fields:

    • Vulnerability severity: Send only vulnerabilities that match the selected severity level.
    • Vulnerability confidence: Send only vulnerabilities with the selected confidence level or higher.
    • Target's business criticality: Choose the business criticality of the target to further filter the results.
Event configuration settings
  1. Click Save to confirm the event configuration.

Step 3: Add an action

  1. Use the plus button that appears after the event to enter an action.

  2. Use the drop-down and choose an action. Depending on the event, you may see Send to issue tracker or Send email. For this document, the example uses Send to issue tracker.

  3. Specify the integration.

Add action configuration

  1. Save to confirm the action.

  2. Optionally, repeat previous steps to add additional events and actions to your automation.

  3. Click Save changes to save the entire automation.

Your automation is now configured and automatically enabled.

Need help?

Invicti Support team is ready to provide you with technical help. Go to Help Center

Was this page useful?