Skip to content

Slack Integration

Receive BreachSpider CVE alerts in a Slack channel.

Step 1 - Create a Slack Incoming Webhook

  1. Go to api.slack.com/apps
  2. Click Create New App > From scratch
  3. Name it "BreachSpider" and select your workspace
  4. Under Features, click Incoming Webhooks
  5. Toggle Activate Incoming Webhooks to On
  6. Click Add New Webhook to Workspace
  7. Select the channel and click Allow
  8. Copy the webhook URL

The URL looks like:

https://hooks.slack.com/services/T.../B.../...

Step 2 - Add to BreachSpider

  1. Navigate to Integrations > Slack
  2. Click Add Connection
  3. Paste your Slack webhook URL
  4. Select events to receive
  5. Click Test Connection
  6. Click Save

Via API

import requests

api_key = "bs_live_your_key_here"
headers = {
    "Authorization": f"Bearer {api_key}",
    "Content-Type": "application/json"
}

connection = {
    "provider": "slack",
    "name": "Security Team Channel",
    "config": {
        "webhook_url": "https://hooks.slack.com/services/...",
        "events": ["kev.new", "cve.critical", "exploit.confirmed"]
    },
    "enabled": True
}

response = requests.post(
    "https://breachspider.com/api/v1/integrations/connections",
    headers=headers,
    json=connection
)
print(response.json())

Slack Message Format

*CRITICAL* | CVE-2025-32433 | CVSS 10.0
*Erlang/OTP SSH Server Unauthenticated RCE*

:rotating_light: KEV Flagged | :test_tube: PoC Available
*BCS:* 10.0 | *EPSS:* Top 5%
*Affected:* SCADA Middleware Server (Water Plant Alpha)
*Patch:* Available - OTP-27.3.3

<https://breachspider.com/ics-cve/CVE-2025-32433|View in BreachSpider>