Platform Integrations

This page captures detail step to be follow by Bolster Customer to successfully integrate Microsoft 365 Exchange/Defender with Bolster platform. It allows Bolster created Microsoft Entra registered application to manage your Exchange online for adding/remove bolster identified malicious URLs/domains using tenant allow blocklist Step 1. Prerequisite Steps To be Followed on Customer Microsoft Account 1. Go […]

Use the Slack connector to send Bolster playbook notification directly to Slack channels. This article explains how to generate and reuse a Slack token, connect the Bolster Playbooks app, and test the integration. Learn how to manage multiple connectors and understand how playbooks route results through Slack.

Playbook Connector for APIs The playbook connector for APIs allows you to define custom HTTP requests to deliver your playbook data to any destination system that offers an API for integration. Here are some examples: Alerting: Integrating a playbook with a simple notification API, like Slack or Twilio, can help you monitor when a playbook […]

Setting Up Integration Between XSOAR and Platform Using Generic Webhooks 1. Login to XSOAR 2. Go to Marketplace and Install Generic Webhooks 3. Go to Settings > Integrations > Instances 4. Search for Generic Webhooks and Add Instance 5. Instance Settings 6. Verify Server Configuration 7. Test the Instance 8. Save and Exit 9. Generate […]

Setup New HTTP Event Collector Input in Splunk and Send Data This document provides step-by-step instructions on how to add a new HTTP Event Collector (HEC) input in Splunk and how to send data to it using Postman. Steps to Create HTTP Event Collector in Splunk 1. Login to Splunk 2. Navigate to Data Inputs […]

Steps to Set Up HTTP Source Collection. — ThreatConnect 1. Login to ThreatConnect 2. Navigate to Playbooks 3. Click on “New“ button to create webhook trigger 4. Create a Playbook a. On the top navigation bar, click Playbooks to display the Playbooks screen. b. Create a new Playbook or open an existing one. c. Click […]

Integrating Jira with Bolster Platform In Jira: 1. Login to Jira: 2. Select the Desired Project: 3. Access Project Settings: 4. Set Up Automation: 5. Configure Incoming Webhook: 6. Set Execution Rule: 7. Define Action: 8. Define Issue Details: 9. Finalize Automation Rule: In the Bolster Platform: In the Platform (Bolster Platform): 3. Create New […]

Setup Integration Between Microsoft Sentinel and Platform Microsoft Sentinel is a cloud-native security management solution running in the Microsoft cloud. You can integrate Microsoft Sentinel with the Delinea Platform with webhooks. Prerequisites Ensure you have all required accounts and utilities before starting the integration: Create Log Analytics Workspace Configuring Microsoft Sentinel Microsoft Sentinel configuration requires […]

This document provides step-by-step instructions on how to set up a web hook in Tines. Setting Up a Web Hook in Tines Conclusion Following these steps, you will be able to set up a web hook in Tines. Ensure that you store the web hook URL securely as it is required for integration and triggering […]

Steps to Send Data from Platform to Microsoft Teams In Microsoft Teams: In the Platform (Bolster Platform): 5. Test and Save Connector: By following these steps, you can successfully set up a connection to send data from your platform to a Microsoft Teams channel using webhooks. This integration allows for automated data transfers and notifications […]

Steps to Set Up HTTP Source Collection 3. Setup Wizard 4. Integrate with Sumo Logic 5. Select Data Type 6. Setup Collection 7. Configure Source 8. Copy Generated URL Conclusion Following these steps, you will be able to set up an HTTP source collection in Sumo Logic. Ensure that you store the generated URL securely […]

The Dispute Verdict API allows Bolster customers to dispute the verdict (disposition) of one or more URLs on the Bolster platform. When a URL has been scanned, and you believe the disposition is incorrect, you can use this API to submit a dispute for review. Important Notes Step 1: Locate Your API Key Before using […]

The GetAssets API allows developers to get assets (domains) from the platform. You can get all the assets in a single request using this API. There are two sections on the Assets page of the Platform where assets are visible: The section where the assets are fetched is determined by the “isAffiliated” flag in the […]

The AddAssets API allows developers to add assets (domains) to the platform. You can add multiple assets in a single request using this API. There are two sections on the Assets page of the Platform where assets can be added: The section where the assets are added is determined by the “isAffiliated” flag in the […]

The DeleteAssets API allows developers to delete assets (domains) from the platform. You can delete multiple assets in a single request using this API. There are two sections on the Assets page of the Platform from where assets can be deleted: Managed by Brand Managed by Affiliates These sections are visible on the platform, but […]

This API allows you to test whether a domain/URL is already in the system.  It will return whether it is in the Bolster system and the disposition.   For example, some Bolster customers have service desks where they interface with their customers.  Those customers may submit a malicious URL they have found.  The action would […]

This API command will return a list of all the Domains/URLs that are/were live during a particular time period. For instance, if the time period was Sept 1, 2023 to Sept 31, 2023, it would return all the sites that were live during that time despite their current status.   Step 1: Locate your API key […]

This API call will return all the Domains/URLs that were detected and/or takedown during a specified time period. Not every detection will be taken down in the specified time period and not every takedown will have been detected in the specified time period. Obviously, this will depend on the time period selected.   The API call […]

Cortex XSOAR provides security orchestration and automation features that align with the automation provided with Bolster playbooks. You can integrate Bolster playbooks with XSOAR playbooks by configuring access to the Bolster Latest-Results API. Prerequisites Integration Steps in XSOAR 2. Click the Upload Integration button. 3. Select the file identified in the Prerequisites section above. Once […]

What Are Bolster Playbook APIs? Bolster Playbook APIs are the API translations of the output of a Bolster Playbook. Every time a configured Bolster Playbook runs and has results, the results are published in Bolster’s cloud temporarily for 72 hours (as well as sent to any connector destinations the customer has configured for the playbook). […]

The Bolster Scan API can detect the following scams and threat categories in real-time: Use the Scan API to submit the URLs you would like to have scanned. You can submit for a quick scan or full scan. Your Bolster enterprise license determines the limit on the number of scan requests you can submit. Before […]

You can use Ping Identity to implement single sign-on functions (SSO) for Bolster. Before You Start You will need the following items before starting the PingOne integration: Contact Bolster support to obtain the URLs. Step 1: Create the PingOne App for Bolster 5. Choose Manually Enter Application Metadata and enter the following values: 6. Click […]

1- Login OneLogin as administrator 2- Switch to ‘Administration’ mode 3- Choose ‘Applications’ from menu 4- Click on ‘Add App’ button 5- Search ‘SAML Custom’ in the search box and choose ‘SAML Custom Connector (Advanced)’ from search result 6- In the ‘Add SAML Custom Connector (Advanced)’ UI, enter ‘Bolster Platform’ or anything preferred as display […]

This document describes the sequence of steps to enable Single-Sign On for the Bolster Platform. We currently support the following SSO integration Option: Step 1: Create Okta App for Bolster Platform Task 1: Launch the Wizard Task 2: Configure initial settings Step 2: Download and Share Metadata Download the metadata file by right click on […]

The Bolster platform supports Security Assertion Markup Language (SAML) 2.0 to enable Single Sign On (SSO) for user access. The steps below are meant to highlight how to perform this type of integration with Azure Active Directory (AD). Step 1: Create Active Directory SAML App following this tutorial Perform basic SAML Configuration with the following values: […]

This document describes the sequence of steps to enable Single-Sign On for the Bolster Platform. We currently support the following SSO integration Option: Step 1: Create Okta App for Bolster Platform Task 1: Launch the Wizard Task 2: Configure initial settings Task 3: Configure OIDC settings Step 2: Collect information Please send a screen-shot of […]