Skip to content

Add Flowtriq DDoS detection and mitigation app#450

Open
jacob-masse wants to merge 1 commit into
Shuffle:masterfrom
jacob-masse:add-flowtriq-app
Open

Add Flowtriq DDoS detection and mitigation app#450
jacob-masse wants to merge 1 commit into
Shuffle:masterfrom
jacob-masse:add-flowtriq-app

Conversation

@jacob-masse

Copy link
Copy Markdown

Summary

Adds a Shuffle app for Flowtriq, a DDoS detection and mitigation platform. The app enables SOAR playbook automation for DDoS incident response workflows (e.g. "When DDoS detected, create ticket, notify Slack, enable scrubbing").

Actions:

  • list_incidents - Query active DDoS incidents with optional status filter
  • get_incident - Get detailed incident info (attack type, source IPs, target, volume)
  • list_nodes - List monitored nodes and their health status
  • create_mitigation_rule - Trigger block/rate-limit/scrub rules against attack traffic

Auth: Bearer token + configurable base URL (supports self-hosted instances), with optional TLS verification toggle.

Category: Network

Files

  • flowtriq/1.0.0/api.yaml - Action definitions, auth config, parameter schemas with examples
  • flowtriq/1.0.0/src/app.py - App class extending shuffle_sdk.AppBase
  • flowtriq/1.0.0/Dockerfile - Standard Shuffle app container build
  • flowtriq/1.0.0/requirements.txt - Dependencies (requests, shuffle_sdk)

Adds a new Shuffle app for the Flowtriq DDoS detection and mitigation
platform with four actions: list_incidents, get_incident, list_nodes,
and create_mitigation_rule. Supports Bearer token auth and configurable
base URL for self-hosted instances.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant