Vulnerability Response AI agent collection for the Assess vulnerability exposure agentic workflow
The tools and AI agents for the Assess vulnerability exposure agentic workflow.
Agentic workflow overview
The following agentic workflows are included with the Now Assist for Vulnerability Response application:
- Assess vulnerability exposure agentic workflow
- Analyze vulnerability remediation status workflow
If you want to modify this agentic workflow, you can duplicate it, adjust the settings to suit your specific needs, and activate the duplicated version of the agentic workflow.
Assess vulnerability exposure agentic workflow agentic workflow overview
Use the Assess vulnerability exposure agentic workflow from the Now Assist panel to help you:
- Determine if your configuration items (CIs) and business services are exposed to known vulnerabilities.
- Determine the potential impact a specific vulnerability might have throughout your environment.
- Check CIs for any new Cybersecurity and Infrastructure Security Agency (CISA) exploitable (zero-day) vulnerabilities.
- Create watch topics in the Vulnerability Manager workspace to remediate vulnerable items.
- Adjust content in natural language.
Agents used in the Assess vulnerability exposure agentic workflow
- Vulnerability Response Action Executor
- CISA Known Exploited Vulnerabilities Analyzer
- Vulnerability Exposure Assessment Advisor
Tools mapped to the Vulnerability Response: Impact and Exposure Assessment agentic workflow
The following tools are mapped to AI agents used in the Vulnerability Response: Impact and Exposure Assessment agentic workflow.
| Tool type | Execution mode | Name | Description |
|---|---|---|---|
| Scripts | Autonomous | Get more information about a vulnerability | Tool for CISA Known Exploited Vulnerabilities Analyzer agent gets more information about a vulnerability using id vulnerability ID. |
| Scripts | Autonomous | Check for recent CISA KEVs | Tool for CISA Known Exploited Vulnerabilities Analyzer agent checks for recent CISA vulnerabilities and Known Exploited Vulnerabilities (KEV)s catalog based on the number of days you enter. |
| Scripts | Autonomous | Business Service Vulnerability Summarization | Tool for Vulnerability Exposure Assessment Advisor agent identifies the affected configuration items (CI)s and their respective vulnerabilities. It also identifies the active vulnerable items (VIT)s and the VIT categorizations. |
| Scripts | Autonomous | CI Vulnerability Analysis | Tool for Vulnerability Exposure Assessment Advisor agent identifies vulnerabilities that impact a configuration item. |
| Scripts | Autonomous | CVE Impact Analysis | Tool for Vulnerability Exposure Assessment Advisor agent analyzes the impact of a Common Vulnerability Exposure's ID (CVE) by considering the number of VITs and Business services it impacts as well as their respective criticality. |
| Scripts | Autonomous | Create Watch Topic | Tool for Vulnerability Response Action Executor agent that creates a watch topic based on gathered vulnerability and configuration item information. |
Triggers for the Vulnerability Response: Impact and Exposure Assessment agentic workflow
There are no triggers for this agentic workflow. If required, you can add a trigger to invoke the agentic workflow automatically.