URL钓鱼与威胁自动分析
中级
这是一个SecOps, AI Summarization领域的自动化工作流,包含 8 个节点。主要使用 Set, Slack, Webhook, ExecuteWorkflow 等节点。 使用NixGuard AI自动进行URL钓鱼和威胁分析
前置要求
- •Slack Bot Token 或 Webhook URL
- •HTTP Webhook 端点(n8n 会自动生成)
工作流预览
可视化展示节点连接关系,支持缩放和平移
导出工作流
复制以下 JSON 配置到 n8n 导入,即可使用此工作流
{
"meta": {
"instanceId": "558d88703fb65b2d0e44613bc35916258b0f0bf983c5d4730c00c424b77ca36a",
"templateCredsSetupCompleted": true
},
"nodes": [
{
"id": "6f7ace63-a7d6-498e-9805-3de8f00b4275",
"name": "执行 NixGuard & Wazuh 工作流",
"type": "n8n-nodes-base.executeWorkflow",
"position": [
-420,
-1220
],
"parameters": {
"options": {},
"workflowId": {
"__rl": true,
"mode": "list",
"value": "I0nUORqYTwDFZa51",
"cachedResultName": "Get Real-Time Security Insights with NixGuard RAG and Wazuh Integration"
},
"workflowInputs": {
"value": {},
"schema": [],
"mappingMode": "passThrough",
"matchingColumns": [],
"attemptToConvertTypes": false,
"convertFieldsToString": true
}
},
"typeVersion": 1.2
},
{
"id": "da86d2fb-89ab-4431-a6a9-6ccbd0f66121",
"name": "格式化 NixGuard AI 摘要 & Wazuh 洞察",
"type": "n8n-nodes-base.set",
"position": [
-200,
-1220
],
"parameters": {
"values": {
"string": [
{
"name": "ai_summary",
"value": "={{ $json.output }}"
}
]
},
"options": {}
},
"typeVersion": 2
},
{
"id": "c0ac70b6-0545-4681-af88-e3baae9d658e",
"name": "(可选)发送 Slack 高风险事件警报",
"type": "n8n-nodes-base.slack",
"disabled": true,
"position": [
40,
-1220
],
"webhookId": "292c465e-1f1e-4c22-9947-ccffafbf45e2",
"parameters": {
"text": "=🚨 *NixGuard IP Analysis* 🚨\n\n*AI Summary:*\n{{ $json.ai_summary }}",
"otherOptions": {},
"authentication": "oAuth2"
},
"typeVersion": 2
},
{
"id": "64dfc08c-5b6c-4982-b779-ab368cfabc73",
"name": "Webhook 触发器",
"type": "n8n-nodes-base.webhook",
"active": false,
"position": [
-640,
-980
],
"webhookId": "e74aeb1a-0659-4a89-8ede-17bb9fdbe317",
"parameters": {
"path": "e74aeb1a-0659-4a89-8ede-17bb9fdbe317",
"options": {}
},
"typeVersion": 1
},
{
"id": "2b8da30e-22d6-4900-bc3d-37c5a4cfb3c4",
"name": "设置 API 密钥和初始提示",
"type": "n8n-nodes-base.set",
"position": [
-640,
-1220
],
"parameters": {
"values": {
"string": [
{
"name": "apiKey",
"value": "PASTE_YOUR_NIXGUARD_API_KEY_HERE"
},
{
"name": "chatInput",
"value": "Scan this url for me: https://thenex.world"
}
]
},
"options": {}
},
"typeVersion": 2
},
{
"id": "c22b6b46-ee9a-4ed5-82ef-d693f7e1b7b3",
"name": "下一步:自动化响应2",
"type": "n8n-nodes-base.stickyNote",
"position": [
-200,
-1000
],
"parameters": {
"color": 7,
"width": 520,
"height": 380,
"content": "### ⚡️ 下一步:自动化您的 SOC/IR 流程"
},
"typeVersion": 1
},
{
"id": "5794f296-fa9a-4b6e-a6fa-eef14f78b225",
"name": "工作流概述2",
"type": "n8n-nodes-base.stickyNote",
"position": [
-1280,
-1220
],
"parameters": {
"color": 7,
"width": 540,
"height": 440,
"content": "### 🎯 工作流概述:调度器"
},
"typeVersion": 1
},
{
"id": "a8687553-569a-41cf-8ab3-175a031ad6db",
"name": "设置说明2",
"type": "n8n-nodes-base.stickyNote",
"position": [
-640,
-1740
],
"parameters": {
"color": 7,
"width": 560,
"height": 440,
"content": "### ⚙️ 关键设置:2 步上线"
},
"typeVersion": 1
}
],
"pinData": {},
"connections": {
"Set API Key & Initial Prompt": {
"main": [
[
{
"node": "Execute NixGuard & Wazuh Workflow",
"type": "main",
"index": 0
}
]
]
},
"Execute NixGuard & Wazuh Workflow": {
"main": [
[
{
"node": "Format NixGuard AI Summary & Wazuh Insights",
"type": "main",
"index": 0
}
]
]
},
"Format NixGuard AI Summary & Wazuh Insights": {
"main": [
[
{
"node": "(Optional) Send Slack Alert for High-Risk Events",
"type": "main",
"index": 0
}
]
]
}
}
}常见问题
如何使用这个工作流?
复制上方的 JSON 配置代码,在您的 n8n 实例中创建新工作流并选择「从 JSON 导入」,粘贴配置后根据需要修改凭证设置即可。
这个工作流适合什么场景?
中级 - 安全运维, AI 摘要总结
需要付费吗?
本工作流完全免费,您可以直接导入使用。但请注意,工作流中使用的第三方服务(如 OpenAI API)可能需要您自行付费。
相关工作流推荐
自动化免费IP分析
自动化免费IP分析:NixGuard AI摘要与Wazuh集成
Set
Slack
Webhook
+2
8 节点Jonathan | NEX
安全运维
自动化安全警报分类:NixGuard AI并路由到Slack或Jira
自动化安全警报分类:NixGuard AI并路由到Slack或Jira
If
Set
Code
+6
19 节点Jonathan | NEX
安全运维
使用NixGuard AI和Wazuh警报创建高管安全简报
使用NixGuard AI和Wazuh警报创建高管安全简报
If
Set
Code
+4
13 节点Jonathan | NEX
安全运维
Venafi Cloud Slack 证书机器人
Venafi Cloud Slack 证书机器人
If
Set
Merge
+10
38 节点Angel Menendez
人工智能
欺诈预订检测器:使用AI识别可疑旅行交易
欺诈预订检测器:使用Google Gemini识别可疑旅行交易
If
Set
Code
+8
20 节点Oneclick AI Squad
安全运维
通过NixGuard RAG和Wazuh集成获取实时安全洞察
通过NixGuard RAG和Wazuh集成获取实时安全洞察
Set
Code
Merge
+5
15 节点Jonathan | NEX
安全运维
