M5 - 自动回复器
中级
这是一个SecOps领域的自动化工作流,包含 8 个节点。主要使用 If, Aggregate, EmailSend, HttpRequest, GoogleSheets 等节点。 自动化安全事件响应:Google Sheets、邮件警报和EDR隔离
前置要求
- •可能需要目标 API 的认证凭证
- •Google Sheets API 凭证
分类
工作流预览
可视化展示节点连接关系,支持缩放和平移
导出工作流
复制以下 JSON 配置到 n8n 导入,即可使用此工作流
{
"id": "TnwffwDzH9RBOYrl",
"meta": {
"instanceId": "6feff41aadeb8409737e26476f9d0a45f95eec6a9c16afff8ef87a662455b6df"
},
"name": "M5 - 自动回复器",
"tags": [],
"nodes": [
{
"id": "cb6ec5c4-564a-46ab-ae8d-d6afa03afdad",
"name": "计划触发器",
"type": "n8n-nodes-base.scheduleTrigger",
"position": [
-940,
260
],
"parameters": {},
"typeVersion": 1.2
},
{
"id": "7806a940-9fbd-4b08-a1cf-78d32a5efda4",
"name": "📧 发送邮件提醒",
"type": "n8n-nodes-base.emailSend",
"position": [
40,
260
],
"parameters": {},
"typeVersion": 1
},
{
"id": "10565b12-171a-4cd2-9601-dae128d66bd9",
"name": "HTTP 请求",
"type": "n8n-nodes-base.httpRequest",
"disabled": true,
"position": [
0,
0
],
"parameters": {},
"typeVersion": 4.2
},
{
"id": "a1821764-8318-4db9-9d5c-04a338f32460",
"name": "Google Sheets",
"type": "n8n-nodes-base.googleSheets",
"position": [
320,
260
],
"parameters": {},
"typeVersion": 4.5
},
{
"id": "aaab98dd-af7f-436f-8bb1-4fb8e4683788",
"name": "📄 读取威胁数据",
"type": "n8n-nodes-base.googleSheets",
"position": [
-700,
260
],
"parameters": {},
"typeVersion": 3
},
{
"id": "9ba1f731-4b78-43c3-8f13-305ba42aa6e2",
"name": "分类关键警报",
"type": "n8n-nodes-base.if",
"position": [
-500,
260
],
"parameters": {},
"typeVersion": 1
},
{
"id": "609f13d2-80ff-4aca-9e7f-251c95695b63",
"name": "聚合",
"type": "n8n-nodes-base.aggregate",
"position": [
-240,
240
],
"parameters": {},
"typeVersion": 1
},
{
"id": "6f967833-b2be-45a8-bc1a-2e3f272208e7",
"name": "便签",
"type": "n8n-nodes-base.stickyNote",
"position": [
-880,
-80
],
"parameters": {
"content": ""
},
"typeVersion": 1
}
],
"active": false,
"pinData": {},
"settings": {
"executionOrder": "v1"
},
"versionId": "562b5bff-d41a-4662-af83-5f19f0a95bc6",
"connections": {
"Aggregate": {
"main": [
[
{
"node": "📧 Send Email Alert",
"type": "main",
"index": 0
}
]
]
},
"Schedule Trigger": {
"main": [
[
{
"node": "📄 Read Threat Data",
"type": "main",
"index": 0
}
]
]
},
"📄 Read Threat Data": {
"main": [
[
{
"node": "Classify Critical Alerts",
"type": "main",
"index": 0
}
]
]
},
"📧 Send Email Alert": {
"main": [
[
{
"node": "Google Sheets",
"type": "main",
"index": 0
}
]
]
},
"Classify Critical Alerts": {
"main": [
[
{
"node": "Aggregate",
"type": "main",
"index": 0
}
]
]
}
}
}常见问题
如何使用这个工作流?
复制上方的 JSON 配置代码,在您的 n8n 实例中创建新工作流并选择「从 JSON 导入」,粘贴配置后根据需要修改凭证设置即可。
这个工作流适合什么场景?
中级 - 安全运维
需要付费吗?
本工作流完全免费,您可以直接导入使用。但请注意,工作流中使用的第三方服务(如 OpenAI API)可能需要您自行付费。
相关工作流推荐
CyberScan Github 副本
基于 Nessus、风险分级和 Google Sheets 报告的 AI 漏洞扫描器
If
Set
Code
+8
39 节点Adnan Tariq
安全运维
CYBERPULSEBlueOps_模块1 客户端副本1
自动CVE和IOC数据源摄取,含OpenAI风险评估和邮件警报
If
Code
Merge
+7
21 节点Adnan Tariq
安全运维
M6 - 仪表盘和报告
Google表格、AI风险分析和邮件警报的实时安全威胁仪表盘
If
Code
Merge
+7
21 节点Adnan Tariq
安全运维
M4 - 事件分类器
使用GPT-4和Google Sheets为SOC团队自动分类安全事件
Set
Http Request
Google Sheets
+2
6 节点Adnan Tariq
安全运维
GRC模块2:风险处理自动化器
使用Google Sheets为GRC合规自动化风险处理任务
If
Set
Switch
+3
12 节点Adnan Tariq
安全运维
SSL监控
使用Google表格和邮件警报监控SSL证书到期
If
Code
Email Send
+5
16 节点Agus Narestha
安全运维
工作流信息
难度等级
中级
节点数量8
分类1
节点类型7
作者
Adnan Tariq
@adnantariqFounder of CYBERPULSE AI — helping security teams and SMEs eliminate repetitive tasks through modular n8n automations. I build workflows for vulnerability triage, compliance reporting, threat intel, and Red/Blue/GRC ops. Book a session if you'd like custom automation for your use case. https://linkedin.com/in/adnan-tariq-4b2a1a47
外部链接
在 n8n.io 查看 →
分享此工作流