Automated Email Threat Analysis with Sublime Security
Monitors emails via IMAP for .eml attachments, analyzes them for threats using Sublime Security, and sends alerts to Slack.
This n8n workflow automates the processing of incoming emails with .eml attachments using IMAP to trigger on new messages. It checks for attachments, extracts binary data, converts it to JSON, and submits it to Sublime Security for threat analysis, splitting results into matched threats and safe items.
The workflow enhances organizational security by proactively scanning email attachments for malware and other risks without manual intervention. It integrates seamlessly with Outlook-like systems
Platform
n8n
Category
HR & Operations
Price
$14.99
Creator
Fred Garcia
security
email
IMAP
Sublime Security
Slack
threat detection
automation
attachments
cybersecurity
IT ops
How to import this workflow into n8n
1Purchase or download the workflow to get the n8n workflow JSON file.
2In your n8n instance, open Workflows and choose "Import from File" (or paste the JSON with Ctrl+V on the canvas).
3Open each node marked with a credential warning and connect your own accounts and API keys.
4Run the workflow once manually to verify the data flow, then toggle it to Active.