π€ Next-gen Security Hyperautomation Platform
Disclaimer: Admyral is still in public alpha. If you'd like to use it within your company or try it out, reach out to us via [email protected] or directly on Discord.
Admyral is an open-source, drag-and-drop security workflow builder with integrated case management (Think Torq but open-source). Through the combination of case management, workflow automation, and AI, Admyral seeks to enable:
This is what we call a next-gen Hyperautomation Platform. It is engineered to provide a new and more effective and scalable approach for tackling alert fatigue and automating security workflows.
Here is a sneek-peak into the workflow builder:
// A demo is coming at the end of April 2024
// coming at the end of April 2024
We value your feedback and contributions! If you have suggestions, questions, or would like to discuss anything related to Admyral, just text us on Discord.
You can best support us and this project by:
Challenges of Staffing in Security Automation Implementation: Security automation platforms promised to reduce the burden on security teams. However, they still require a dedicated team for building and managing automations, not addressing the ongoing issue of a skilled worker shortage.
Automation Builders & Requesters vs. Automation Users: Security Engineers are tasked with building automations while Managers drive their development based on input from the end users, aka Security Analysts. To complicate this, there's a lack of a feedback loop among these groups.
Inflexibility of Static Workflows in a Dynamic Threat Environment: Existing security automation platforms originated from generic workflow builders and are designed for static environments and pre-GenAI era. In cybersecurity, where threats evolve rapidly, static workflows are inadequate. It is impossible to constantly maintain and update static and predefined workflows.
Overall, creating workflows should be made easier, more accessible, and faster. This enables automation users, e.g. Security Analysts, to effortlessly create workflows during their regular processes without creating additional overhead. To achieve this, we have to rethink the creation and overall concept of security automation. We believe that workflows is a dynamic concept that should welcome easy case-by-case adjustments during the incident investigation stage and beyond.
Security automation and case management are two sides of the same coin. Security automation is the process of automating security tasks, while case management is the process of managing security incidents. Combining the two allows for a more streamlined and efficient incident response process. By automating repetitive tasks and integrating automations into the case management process, security teams can respond to incidents more quickly and effectively. This integration also allows for better tracking and reporting of incidents, which can help organizations identify trends and improve their overall security posture.
Visit SECURITY.md for more details.
As Admyral is still in its public alpha phase, we have not finalized a specific pricing structure yet. We invite interested organizations to reach out directly via email at [email protected] or Discord to discuss potential use cases and explore custom pricing options based on their needs and the scale of implementation.
We are open-source for the following reasons:
We love open-source. Therfore, Admyral stays committed to keep all open-sourced features freely available under the same open-source terms and maintain them. However, future premium features may only be part of our enterprise version. For specific requirements, please reach out to us via [email protected].
As of now, our project does not have a dedicated Enterprise version. If you represent an MSSP or an Enterprise and would like to discuss potential collaborations with Admyral, please do not hesitate to reach out directly at [email protected] to start a conversation. We are excited about the possibility of working together to meet your specific business needs and to expand the capabilities of our project in a way that benefits your organization.
This repository is licensed under Apache License 2.0. See LICENSE for more details.