Slack Guardian is a proactive security suite that utilizes Python, Regex and Slack API to safeguard sensitive data posted on Slack Channels, ensuring seamless secure collaboration within Slack.
In today's professional landscape, both small businesses and large enterprises heavily utilize Slack as their primary internal communication tool. Consequently, safeguarding sensitive information within this collaborative platform has become absolutely crucial.
Elevate your team's security posture with Slack Guardian and say goodbye to data breaches and hello to secure collaboration!
Enter the world of Slack Guardian, a Slack Bot designed to safeguard your team's confidential conversations on Slack by using Regex pattern provided in .CSV file that also generates the real-time report of the violations.
-
Real-time Monitoring: Slack Guardian continuously scans messages for sensitive information, such as personal data or financial details.
-
Automated Responses: In case policy violations, Slack Guardian takes immediate action by deleting the message, notifying the user and also keeping the deleted record for audits.
-
Violation Audit Reporting: Gain insights into potential breaches and data leaks with comprehensive customizable audit report that provides
User ID, Channel ID, Thread ID, Message Time, Deleted Messageas output fields. -
Customizable Patterns: Fine tune the detection patterns by adding regex under "Pattern.csv".
-
Threaded Conversations: Slack Guardian seamlessly integrates into threads, ensuring the security of your entire discussion.
- Use manifest.yml file to create the Slack App.
- Host Python Flask App locally.
- Listens to Slack events via Slack API and Flask APP for handling incoming requests.
/slack/eventsroute is the endpoint where Slack events are received and further processing happens. - Detection happens on the incoming
eventsusing detection patterns present inSlack_Guardian_Detections.csv. - Detected violation logs are appended into
violation-audit-report.csvwith Slack fields likeUser IDStarts from 'U',Channel IDStarts from 'C',Thread ID10 digit number,Message TimeEpoch format,Deleted MessageRaw format. User with violation is tagged into Slack message threadand notified on the violation.- Automatic
deletion of violationis performed.
https://medium.com/@ashishsecdev/slack-security-break-it-or-make-it-f8b32abaf9dd
Please create a new branch and raise it as a PR for consideration.
Source code for this project is released under the GNU General Public Licence V3.0.
Slack Guardian is an independent project that doesn't have any affiliations with Slack Technologies or Salesforce.
Ashishsecdev
https://ashishsecdev.medium.com
[email protected]