Categories

Product updates
Tutorials
Press

Platforms

CanaryTools
Snyk
HaveIBeenPwned (HIBP)
PagerDuty
Amazon Web Services (AWS)
Datadog
SentinelOne
Microsoft
Slack
VirusTotal
G Suite

Authors

Guest
John Tuckner
Donal O Duibhir
Thomas Kinsella
Eoin Hinchy
Alert Automation and Response with Auth0
Tutorials

Alert Automation and Response with Auth0

Detection & Response Manager, Brandon Maxwell, describes how Auth0 use Tines to respond accurately at scale to security alerts.

Guest
Guest
Tines Blog Guest
Announcing the Tines Community Edition
Product updates

Announcing the Tines Community Edition

The Tines community edition is a fully-featured cloud instance of Tines. It’s free to use, requires no up-front commitment and includes a generous automation capacity. Sign-up and within minutes begin leveraging all the enterprise-grade features of a paid plan.

Eoin Hinchy
Eoin Hinchy
Founder, Tines
AWS Security Response with Tines
Tutorials

AWS Security Response with Tines

Learn how to automate response to AWS Security Alerts using AWS Cloudwatch and SNS together with the Tines Security Automation platform

John Tuckner
John Tuckner
Security Automation Architect
ELK Stack Automation and the Elasticsearch API
Tutorials

ELK Stack Automation and the Elasticsearch API

Today, we’re going to automate the Elasticsearch Search API to rapidly create canned and shareable threat hunting tools for you and your team. We will use the Packetbeat data shipper for easy setup and access to network data such as low-level DNS packet attributes and IP flow data.

Donal O Duibhir
Donal O Duibhir
Security Engineering, Tines
How to Subscribe to GSuite and Google Workplace Notifications
Tutorials

How to Subscribe to GSuite and Google Workplace Notifications

Let’s take a look at how to subscribe to a G Suite endpoint and receive webhooks for important user account events. This will let us build custom workflows and tailored security responses for a range of scenarios.

Donal O Duibhir
Donal O Duibhir
Security Engineering, Tines
Getting Connected to the CrowdStrike API
Tutorials

Getting Connected to the CrowdStrike API

Today, we’re going to take a brief look at how to get connected (and authenticated) to the CrowdStrike API. This will enable us to avail of many of the below aspects of the CrowdStrike Falcon platform.

Donal O Duibhir
Donal O Duibhir
Security Engineering, Tines
Splunk Automation Guide
Tutorials

Splunk Automation Guide

We will explore and then automate search operations for a simple Threat Hunting example. We will then turn our learnings into a fully-fledged self-service internal tool for use by colleagues (or perhaps other teams in your organization).

Donal O Duibhir
Donal O Duibhir
Security Engineering, Tines
Qualys Vulnerability Management Automation Guide
Tutorials

Qualys Vulnerability Management Automation Guide

Let’s start by familiarizing ourselves with the Qualys VM/PC REST API. We will combine some simple steps into a more complex (but not complicated) outcome.

Donal O Duibhir
Donal O Duibhir
Security Engineering, Tines
Deception Tech and Automated Incident Response
Tutorials

Deception Tech and Automated Incident Response

In the digital realm, we, as defenders, are too often on the back foot. We hunt for and react to an attacker’s movements, but what if we could direct them for a change and automate what happens next?

Donal O Duibhir
Donal O Duibhir
Security Engineering, Tines
Continuous Security with Snyk
Tutorials

Continuous Security with Snyk

Continuous Improvement should imply 'Continuous Security', but is this really achievable? From a security operations perspective, the question then becomes, how do we automatically track, record, and address risk in near-real or Internet time?

Donal O Duibhir
Donal O Duibhir
Security Engineering, Tines