kate-gibson
Hunters Actions
Last Updated: September 22, 2025Actions for Hunters Send Data. Sends a custom set of Lucidum data to Hunters. Use Cases Below are the possible use cases for the Send Data action: If you want to run Lucidum “headless”, you can send relevant data to Hunters on a regular schedule. You can send data to Hunters for storage, analysis, and...
Microsoft Defender Actions
Last Updated: September 23, 2025Actions for Microsoft Defender Isolate Machine. Disconnects one or more devices from the network while retaining connectivity to the Defender for Endpoint service, which continues to monitor the device. Unisolate Machine. Reconnects one or more devices to the network. Devices that are behind a full VPN tunnel won’t be able to reach the Microsoft Defender...
Microsoft Sentinel Actions
Last Updated: September 23, 2025Actions for Microsoft Sentinel Send Data. Sends a custom set of Lucidum data to Microsoft Sentinel. Use Cases Below are the possible use cases for the Send Data action: If you want to run Lucidum “headless”, you can send relevant data to Microsoft Sentinel on a regular schedule. You can send data to Microsoft Sentinel...
Microsoft Teams Actions
Last Updated: September 23, 2025Actions for Microsoft Teams Post on Teams. Sends a custom set of Lucidum data to Microsoft Teams. Use Cases Below are the possible use cases for the Post on Teams action: You can send messages about high-risk alerts or incidents to specific Teams groups. For example, you could send a list of assets with a...
Opsgenie Actions
Last Updated: September 24, 2025Actions for Opsgenie Create Alert. Send an alert from Lucidum to Opsgenie. Opsgenie will deliver the alert according to its policies. Use Cases Below are the possible use cases for the Create Alert action: You can create an alert from Lucidum to Opsgenie when you find zombie users (users who are using applications in your...
Rapid7 Actions
Last Updated: September 24, 2025Actions for Rapid7 Create a New List of IPs/Hosts for Scanning. Send a list of IPs/host names to Rapid7 for scanning. Use Cases Below are the possible use cases for the Rapid7 action: Add previously unknown assets to your Rapid7 system. Scan for a specific vulnerability. Ensure you comply with regulations. Prerequisites To execute Rapid7...
ServiceNow Actions
Last Updated: September 24, 2025Actions for ServiceNow Create ServiceNow Assets (IRE API). Creates one or more new configuration items (CIs) in ServiceNow. Create/Update ServiceNow Assets (IRE API). Creates one or more new configuration items (CIs) in ServiceNow. If the one or more of the CIs already exist, this action updates the existing CIs. Use Cases Below are the possible...
Slack Actions
Last Updated: September 24, 2025Actions for Slack Post on Slack. Sends data (output fields) from the specified records (selected with a query) to a Slack channel. Use Cases Below are the possible use cases for the Post on Slack action: You can send messages about high-risk alerts or incidents to specific Slack channels. For example, you could send a...
Splunk Actions
Last Updated: September 24, 2025Actions for Splunk Send Webhook. Sends a custom set of Lucidum data to Splunk. Use Cases Below are the possible use cases for the Send Data action: If you want to run Lucidum “headless”, you can send relevant data to Splunk on a regular schedule. You can send data to Splunk for storage, analysis, and...
Sumo Logic Actions
Last Updated: September 24, 2025Actions for Sumo Logic Send Webhook. Sends a custom set of Lucidum data to Sumo Logic. Use Cases Below are the possible use cases for the Send Data action: If you want to run Lucidum “headless”, you can send relevant data to Sumo Logic on a regular schedule. You can send data to Sumo Logic...