-
-
Alert in channel
-
Alert in a different channel
-
Issue created in Jira after link is posted in Slack
-
Message details sent by the Slack bot to Jira
Inspiration
Many workplaces use Slack and Jira. There is generally a delay between a malicious resource finding its way into an organization and its detection. This slack bot gives instant visibility to malicious resources shared in Slack channels.
What it does
It checks the posted messages in Slack by using Pangea's URL intel API and posts messages in the slack channel and also creates a Jira issue if the link is found to be malicious.
How we built it
The slack bot is built with Python and Flask. I also used Slack and Jira SDKs. For demo, the bot runs on the local machine with ngrok exposing it to the internet. The ngrok link is used by the bot to subscribe to Slack events.
Challenges we ran into
I discovered this hackathon just a few days before the deadline and had very little time to build this. I was also not familiar with the Flask, Jira and Slack SDKs.
Also, initially, I had Discord in mind. By the time I finished that bot, I realized that the bot can be much more useful if used for Slack with alerts going to Jira. So, I ended up making 2 projects.
Accomplishments that we're proud of
Getting a MVP in limited time while using new frameworks/SDKs.
What we learned
Integrating multiple existing products can enhance security.
What's next for Slack Sentry
Adding capabilities for file checking and redacting credentials in Slack. This bot can be used for Discord as well. Twilio integration can be added too which can text an alert to concerned people. This bot can be hosted in a serverless environment as well on cloud platforms like AWS.
Log in or sign up for Devpost to join the conversation.