About Hunters Workflows

  • Updated on Jun 8, 2025
Prev Next

Overview

Hunters Workflows is a module inside the Hunters platform that allows you to enhance the SOC platform experience by incorporating security orchestration automation and response (SOAR) functionalities to streamline SOC teams' workflows, make informed decisions, reduce redundant operations and mitigate threats.

Use Hunters Workflows to integrate Hunters with 3rd-party systems:

  • Create automated Workflows that trigger in response to security-related activities.
  • Trigger Response Workflows from Hunters alert with descreate set of actions (containtment, communication, enrichment or managment) relevant to the specific lead
  • Bi-directional integration: Accurate status of a security case is maintained in both Hunters and the ITSM/Security tools.
  • Real-time Hunters events will be avaiable to use for automation:
    • New Lead
    • New Alert
    • New Story
    • Lead was Updated
    • Action was taken on Lead/Alert/Story (Status, Assign, Classification)
    • Comment was added

Benefits

  • Accelerated Incident Response: Automate repetitive investigation and remediation tasks to slash mean time to resolution (MTTR), enabling your security team to focus on strategic threat hunting rather than manual workflows.

  • Reduced Manual Operations: Minimize the need for manual intervention across the response lifecycle—saving time, cutting down on toil, and reducing the risk of human error.

  • Synchronization of Tools: Seamlessly orchestrate and synchronize alerts, tickets, and playbooks across Hunters and third-party security tools in real time, so incidents are managed coherently no matter where they’re surfaced.

Features

The Features of Hunters Workflows include:

  • Integration Orchestration - Connect and transform data across applications, move data around with high security, and, centralized monitoring and recipe management
  • No-code or Low-code Integration - Build integrations between Hunters and third-party applications using a no-code or low-code platform
  • Pre-built Connectors - Leverage a rich selection of pre-built integrations to speed time-to-value
  • Intuitive User Interface - Intuitive UI with user-friendly no-code flow builder.

How it works

Hunters Workflows, an embedded service from Workato, provides automation capabilities, in the form of Recipes that interface with Hunters and 3rd-party applications. Recipes are automated workflows comprised of a trigger (a business event that will kick off the recipe) and one or more actions that are carried out when a trigger event occurs. In each recipe, at least one of the steps (trigger or action) must be a Hunters-related action.

You can choose from a variety of triggers and actions from different applications and based on different logic. This list is specified here.

image.png

Recipes run automatically or triggered manually from Hunters alert and run in the background.
When recipes are in a stopped state, they cease to look for trigger events. When a recipe is started again, it picks up all the trigger events that occurred since the recipe was last stopped.