Who is this workflow for? The “Save Qualys Reports to TheHive” workflow leverages n8n to automate the retrieval and storage of Qualys vulnerability reports in TheHive. This integration streamlines your vulnerability management process by ensuring that reports are consistently updated and properly archived without manual intervention..

What does this workflow do?

  • Set Global Variables: Initializes essential global variables such as base_url and newtimestamp to configure the workflow with the correct settings and current timestamps. Users must update these variables to match their specific environment.
  • Fetch Reports from Qualys: Executes a GET request to the Qualys API to retrieve all finished reports. This ensures that the workflow always accesses the most recent data.
  • Convert XML to JSON: Transforms the XML response from Qualys into JSON format, making it easier to process and integrate with other systems.
  • Filter Reports: Identifies and excludes reports that have already been processed by checking their creation timestamps, ensuring only new reports are handled.
  • Process Each Report: Iterates through the list of new reports, processing each one individually to maintain accuracy and reliability.
  • Create Case in TheHive: Generates a new case in TheHive for each new report, organizing the data for effective incident management and tracking.
  • Download and Attach Report: Retrieves the report from Qualys and attaches it to the corresponding case in TheHive, ensuring all relevant data is stored together for easy access and review.

🤖 Why Use This Automation Workflow?

  • Efficiency: Eliminates the need for manual downloading and uploading of reports, saving valuable time.
  • Consistency: Ensures that the latest vulnerability data is always available in TheHive for analysis and action.
  • Scalability: Automatically handles new reports as they become available, supporting growing security operations without additional effort.
  • Error Reduction: Minimizes the risk of human error in report management, ensuring reliable data handling.

👨‍💻 Who is This Workflow For?

This workflow is ideal for Security Operations Centers (SOCs), vulnerability management teams, and IT security professionals who utilize Qualys for vulnerability scanning and TheHive for incident response and case management.

🎯 Use Cases

  1. Automated Report Management: Automatically fetch and store Qualys reports in TheHive, ensuring that all vulnerability data is centralized and up-to-date.
  2. Continuous Monitoring: Run the workflow hourly to maintain real-time visibility into new vulnerabilities, enabling faster response times.
  3. Incident Case Creation: Automatically generate cases in TheHive for each new report, facilitating organized and efficient incident management.

TL;DR

The “Save Qualys Reports to TheHive” workflow automates the end-to-end process of fetching, filtering, and storing Qualys vulnerability reports in TheHive. By deploying this workflow, security teams can enhance their vulnerability management processes, improve response times, and ensure that all pertinent data is efficiently organized and readily accessible within TheHive.

Get started with n8n
Need help with n8n?

Related

Automate ISS Location Updates to Google BigQuery Every Minute

Automate sending ISS location to BigQuery every minute, ensuring real-time data updates with easy integration using this n8n template. 

  • 671
  • 20

Building Your First n8n Workflow: A Comprehensive Guide

Discover how to automate processes efficiently with n8n. Explore key features like drag-and-drop design and integration capabilities. 

  • 701
  • 11

Telegram Bot Setup Guide with n8n: Starter Template

Discover how to automate tasks using a Telegram bot with n8n. Enjoy seamless integration and easy setup with this comprehensive guide. 

  • 722
  • 18

Help us find the best n8n templates

About

A curated directory of the best n8n templates for workflow automations.

Navigation

Submit