Tines

Overview

Tines is a no-code automation platform that helps security and IT teams streamline workflows, automate threat detection, and respond to incidents efficiently. It enables users to build custom automation workflows without writing code, integrating seamlessly with various security, IT, and cloud tools. Tines automates repetitive tasks such as alert triage, incident response, and compliance reporting, reducing manual effort and improving operational efficiency. By leveraging automation, organizations can enhance security operations, accelerate threat remediation, and ensure a more proactive defense against cyber threats.

Supported data types

Tines Audit Logs

Table name: tines_audit_logs

Tines audit logs provide a comprehensive record of activities within the platform, including changes to stories (automated workflows), actions taken by the automation, and user interactions with the platform.

Send data to Hunters

Hunters supports the collection of logs from Tines using API.

To connect Tines logs:

1. Retrieve the following information by following this guide by Tines:

   • User Email

   • Token

   • Hostname of your Tines tenant (example - xxxxx.tines.com)

2. Complete the process on the Hunters platform, following this guide.

Expected format

The expected format of the logs is the JSON format as exported by Tines.

Tines Audit Log Sample

{"created_at": "2022-12-19T04:55:21Z", "operation_name": "GlobalResourceCreation", "id": 2894917, "inputs": {"inputs": {"teamId": 32575, "folderId": 5846, "name": "team test resource", "description": "Created for testing", "value": "\"testing resource text\"", "readAccess": "TEAM"}}, "request_ip": "1.1.1.1", "request_user_agent": "Mozilla/5.0 (X11; Linux x86_64) (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36", "tenant_id": 13099, "updated_at": "2022-12-19T04:55:21Z", "user_email": "john@doe.com", "user_id": 18313, "user_name": "John Doe"}