Tools & Integrations

Tools & Integrations
Okta Configuration
Overview This document outlines the procedure on how to configure Okta for Uptycs SAML integration Prodedure Pre-requisite(s) Admin access to Okta Enabling and Adding new Application in Okta for Uptycs Following procedure outlines steps with sample ...
Bucket policy requirements for destination s3 (for Alerts, Scheduled Queries, CSV and JSON data forwarding)
Following are the bucket policy requirements for destination s3 (for Alerts, Scheduled Queries, CSV and JSON data forwarding) Uptycs expects the following permissions on the destination bucket Versioning: We allow both enabled and disabled ...
Demisto - Security Orchestration
Integrate Uptycs into your Security Orchestration, Automation, and Response architecture using Demisto. Access a full repertoire of Uptycs "actions" directly from within Demisto, and integrate Uptycs actions into your playbooks with simple drag and ...
OneLogin Integration
Overview This document outlines all the information needed / provisioned for Uptycs to configure OneLogin authentication Setup on the your side 1. ACS (Consumer) URL Validator* : https://<domain>.uptycs.io/saml/callback 2. ACS (Consumer) URL* : ...
Uptycs alert integration with Rocket Chat
Following is a step by step ReadMe for integration of Uptycs alert with Rocket Chat https://github.com/Uptycs/toolsreadme/blob/master/rocketchat.md
Auth0 Integration
Overview This document outlines steps / information needed to configure Auth0 authentication Procedure Create Uptycs Application Provision "Allowed Callback URLs", "Allowed Web Origins" Note : Replace <domain> with the actual domain. Enable SAML2 ...
Create Jira Tickets from Uptycs Alerts
This python module allows you to create Jira tickets from Uptycs alerts. Usage: ./uptjira.py <uptycs_apikey_file> [--domainsuffix <uptycs_domain>] The --domainsuffix flag is only required for uptycs domains other than '.uptycs.io' This python script ...
AWS Tag Creation From Uptycs Saved Queries
aws_tag_from_query.py This script applies AWS tags to resources based on an Uptycs saved query. It uses the AWS Python SDK (boto3). Usage: python3 aws_tag_from_query.py <uptycs_apikey_file> [-q <"query name"> | --all] -k <key> [-v <value>] -ec2 ...
SAML Configuration
Uptycs supports SAML 2.0 authentication and is configured on the back-end by Uptycs Customer Success Team. Before generating metadata file on your side, request Uptycs to provide the config xml with contains Uptycs public cert. Here are the other ...
usql
usql is a command line SQL client for Uptycs with auto-complete and syntax highlighting features. Pre-requisites for installation Python 2.7 or higher For complete details, refer to the article below ...
Export/Import Event,Alert Rules or Saved Queries
The attached python3 code can be used to export one, several, or all event rules, alert rules, or saved queries. 1. Download the attached zip, unzip it 2. Install requirements: python3 -m pip install requirements.txt 3. Export desired objects to ...
Redash - Custom Dashboards
Build customized dashboards in minutes using the built-in integration with Redash. Power any Redash widget with a powerful SQL query to Uptycs, and create customized insights to drive your SecOps and DevOps strategies. The Uptycs connector comes ...
LDAP Integration
Overview This document outlines all the information needed from the customer for Uptycs to configure LDAP authentication Required Information Parameter Example URL "ldaps://ldap.testcloud.com:636" BindDN . ...

Announcements
Release notes-Release 106069
June 2, 2022 XDR New Feature Global Threat Intelligence (GTI) Uptycs GTI feature for the Security/SOC analyst to identify threat indicators such as bad IP addresses or suspicious domains, along with evidential data and insightful information from various
Release notes-Release 105051
May 15, 2022 XDR Enhancements Support to attach global rule exceptions to event rules and alert rules automatically based on matching table name. For more information, see Global Rule Exceptions. Kubernetes Security Posture Management (KSPM) Enhancements
Release notes-Release 104065
April 29, 2022 SaaS New Feature Zero Trust Score Capability to specify severity for a compliance check per OS. When a compliance check runs on an endpoint, a zero trust score is calculated by the pass/fail status of the compliance check and the specified
Release notes-Release 103055
April 10, 2022 SaaS New Feature Exploit Tracker New dashboards to monitor Spring Shell and Spring Cloud vulnerabilities. For more information, see Exploit Tracker. Enhancements Bulk enable, disable, or delete Global Rule Exceptions. For more information,
Release notes-Release 102039
March 27, 2022 SaaS New Feature Managed Anti-virus (AV) Dashboard - Beta Managed AV dashboards to monitor Windows defender status and threat history of Windows endpoints. For more information, see Managed AV Dashboards. New Feature Disk Scans - Beta

Tools & Integrations | Knowledge Base

Okta Configuration

Bucket policy requirements for destination s3 (for Alerts, Scheduled Queries, CSV and JSON data forwarding)

Demisto - Security Orchestration

OneLogin Integration

Uptycs alert integration with Rocket Chat

Auth0 Integration

Create Jira Tickets from Uptycs Alerts

AWS Tag Creation From Uptycs Saved Queries

SAML Configuration

usql

Export/Import Event,Alert Rules or Saved Queries

Redash - Custom Dashboards

LDAP Integration

Announcements

Release notes-Release 106069

Release notes-Release 105051

Release notes-Release 104065

Release notes-Release 103055

Release notes-Release 102039