Spyderbat
Book a DemoStart FreeContact Us
  • Spyderbat Product Docs
  • Getting Started
    • Create an Organization
    • Install the Nano Agent
    • Three Things to Try with Spyderbat Community Edition
    • Manage Users and Roles
  • Installation
    • Spyderbat Nano Agent
      • Kubernetes
        • Pre Deployment Environment Data Collection Script
      • Linux Standalone
      • AWS Unattended Install
        • Secure your Registration Code with AWS Secrets Manager
      • Create a Golden Image with the Nano Agent Pre-Installed
    • Spyderbat AWS Agent
      • AWS Linux VM
      • Kubernetes
      • Configuration Guide - AWS Linux VM
      • Configuration Guide - Kubernetes
    • Install Spyctl CLI
      • Initial Configuration
    • Install Spydertop CLI
    • Install the Spyderbat Event Forwarder
      • Helm Chart
      • Traditional Installer
  • Concepts
    • Guardian & Interceptor
      • Ruleset Policies
      • Workload Policies
    • Flashback (Go Back In Time)
      • Investigations
    • Search
      • Saved Searches
    • Summarize
      • Spydertrace Summarize
    • Dashboards
      • Dashboard Categories
    • Reports
    • Notifications
      • Notification Targets
      • Notification Templates
    • Actions
    • Integrations
      • AWS Integration
      • Spyderbat Event Forwarder
    • Suppression & Tuning
    • Scout (Detections)
      • Custom Flags
  • Tutorials
    • Flashback
      • How to Use the Investigations Feature in Spyderbat
    • Guardian
      • How to Lock Down Your Workloads With Guardian Policies Using Spyctl
      • How to Put Guardrails Around Your K8s Clusters Using Spyctl
    • Integrations
      • How to Configure Event Forwarder Webhook for Panther
      • How to Set Up Spyderbat to Ingest Falco Alerts
      • How to Create and Use a Spyderbat API Key
    • Notifications
      • How to Set Up Notifications Using Spyctl
      • How to Set up Agent-Health Notifications Using Spyctl
    • Dashboards
    • Miscellaneous
      • How to Set Up Spyderbat to Monitor Systems From vulnhub.com
    • Scout (Detections)
      • How to Set Up Custom Flags Using Spyctl CLI
  • Reference
    • Policies
      • Response Actions
    • Rulesets
    • Selectors
    • Notifications
    • Spyctl CLI
      • Spyctl Commands
      • Guardian Policy Management using Spyctl
      • Notification Template Management using Spyctl
      • Notification Target Management using Spyctl
    • Search
      • All Operators
      • All Fields
      • All Related Objects
  • Quick Links
    • Contact Us
    • Try Spyderbat for Free
    • Book a Demo
Powered by GitBook

© SPYDERBAT, Inc., All Rights Reserved

On this page
  • Notifiable Objects:
  • Quick Start Tutorial

Was this helpful?

Export as PDF
  1. Concepts

Notifications

Get notified when Spyderbat detects operations issues or suspicious behavior at runtime in your environment.

Last updated 2 months ago

Was this helpful?

Spyderbat's notification system has 3 main components:

  • : Named destinations to where notifications can be sent.

  • : Templates that define the structure and content of notifications, simplifying the setup process.

Notifiable Objects:

Spyderbat allows users to set up Notifications for the below to stay informed about important events in their Spyderbat Organization.

Here are 3 types of notifiable objects:

1. Saved Queries

What it is: Predefined searches to track specific patterns or behaviors in your data.

Why it’s useful: Automates monitoring by notifying you when new activity matches the query.

Example: Get notified when there’s unusual inbound connection.

2. Custom Flags

What it is: Custom flags enable users to create tailored detection rules to monitor activities or behaviors specific to their environment.

Why it’s useful: Helps focus on what matters to you, like unusual commands or risky actions.

Example: Flag and alert when someone runs a command that requires high privileges.

3. Agent Health Notifications

What it is: Alerts about the health and status of Spyderbat agents.

Why it’s useful: Ensures agents are functioning properly and sending data.

Example: Get notified if an agent goes "Offline" or to "Critical" state.

Quick Start Tutorial

To quickly get started using using Spyderbat Notifications follow our tutorial using spyctl.

Note: To Learn How to Configure Notifications for Agent Health using Spyctl

Notification Targets
Notification Templates
Refer here
How to setup Spyderbat Notifications (Spyctl CLI)