AI Agents Case Management Extension introduces Hero AI-powered analysis capabilities to the SOC Solutions Bundle, providing automated threat analysis, verdict classification, and actionable recommendations to accelerate SOC analyst workflows.

The extension includes three specialized Hero AI agents:

Provides immediate visual verdict, severity, and actionable recommended actions (Containment, Eradication, Recovery) for every security case

Visual severity rating and verdict (Malicious, Suspicious, or Benign) for quick prioritization

NIST-aligned action recommendations and validation checks

AI confidence score (0-100) with data correlation from Knowledge Base, historical learning, and current case details

Automated case title generation and affected entities visualization

Verdict and Threat Intelligence Analysis Agent

Delivers investigation case summary and final threat classification with quantifiable AI confidence score (0-100)

Correlates data from knowledge articles, historical outcomes, and analyst notes/verdicts

Integrates threat intelligence from multiple sources (VirusTotal, Recorded Future, Mandiant, AbuseIPDB, URLHaus, and other third-party feeds)

User-defined weighting for providers, observable types, and threat formula weights

Maps and enriches associated TTPs (Tactics, Techniques, and Procedures) to enhance threat context

Automatically maps MITRE ATT&CK TTPs (T-Codes) using pre-existing data from security alerts

Contextual enrichment using intelligence from other security cases, threat feeds, and knowledge base articles

Automatically includes MITRE D3FEND recommendations in output and security reports

Install the extension from the Swimlane Content Library: Navigate to 

: Install the SOC Solution in Swimlane Turbine before installing the extension.

For detailed installation and configuration instructions, see the 

AI Agents Case Management Extension Documentation

Releases Prior to 24.2.0

AI Agents Case Management Extension Release 1.0.0

test12

sdfdssdfsdfsdfsdfdsfsdf

edfsad

dsfsdfsdf

test

specific

var_miha

new_var_2

new_mih_var

mih_var

testheight

available

testulet

testvar

This is a plain text that will be inserted in an expandable heading for using this raw as an exampl

altscenario

This is a plain text that will be inserted in an expandable heading for using this raw as an example

scenario

exemplu

variabila

Archbee

text

refresh_token

YourBank

MyBank

variable_test_video

variable123

silviu

Bogdan_test

ferwhethgte

target1

google

support

product_name

productName1

companyLegalName

programName

customerName1

productName

Product_Name

Test

SEFAS

uptempo

customerName

testName

name1

customername

apilink1-getallmethod

variable_one

capitalize

company_name_adobe

jama_2

jama_1

domain

email

product

Glossary lets you define every tricky term, then gives them a sneak peek explanation on hover... Just like I'm doing with this text right here!

Glossary_feature

Google

aaaa

insitutionAdress

dasdas666

aa112

asdasdas

asdasd

What

New_reusable

test_var2

test_var

SOC Solution Release 25.2.0

Turbine Release Notes

About These Release Notes

What's New in this Release

Addressed Issues

Known Issues

Turbine Cloud 25.4.0 Release

What's New in This Release

Turbine Cloud 25.3.6 Release

Turbine Cloud 25.3.5 Release

Turbine Cloud 25.3.4 Release

Turbine Cloud 25.3.3 Release

Turbine Cloud 25.3.2 Release

Turbine Cloud 25.3.1 Release

Turbine Cloud 25.3.0 Release

Turbine Cloud 25.2.1 Release

Turbine Cloud 25.2.0 Release

Deprecation Notice: Turbine Record Actions

Turbine Cloud 25.1.10 Release

Turbine Cloud 25.1.9 Release

Turbine Cloud 25.1.8 Release

Turbine Cloud 25.1.7 Release

Turbine Cloud 25.1.6 Release

Turbine Cloud 25.1.5 Release

Turbine Cloud 25.1.4 Release

Turbine Cloud 25.1.3 Release

Turbine Cloud 25.1.2 Release

Turbine Cloud 25.1.1 Release

Turbine Cloud 25.1.0 Release

What is New in This Release

Turbine Cloud 25.0.8 Release

Turbine Cloud 25.0.7 Release

Turbine Cloud 25.0.6 Release

Turbine Cloud 25.0.3 Release

Turbine Cloud 25.0.0 Release

Known Issues and Workarounds

Turbine Cloud 24.3.6 Release

Turbine Cloud 24.3.5 Release

Turbine Cloud 24.3.4 Release

Turbine Cloud 24.3.2 Release

Turbine Cloud 24.3.1 Release

Turbine Cloud 24.3.0 Release

Turbine Cloud 24.2.0 Release

Releases Prior to 24.2.0

Prior releases

Turbine Cloud Release Notes

Turbine On-Prem 25.3.4 Release

Turbine On-Prem 25.3.2 Release

Turbine On-Prem 25.3.1 Release Notes

Turbine On-Prem 25.2.1 Release

Turbine On-Prem 25.1.9 Release

Turbine On-Prem 25.1.6 Release

Turbine On-Prem 25.1.5 Release

Turbine On-Prem 25.1.4 Release

Turbine On-Prem 25.1.3 Release

Turbine On-Prem 25.1.2 Release

Turbine On-Prem 25.0.8 Release

Turbine On-Prem 25.0.7 Release

Turbine On-Prem 25.0.6 Release

Turbine On-Prem 25.0.5 Release

Turbine On-Prem 25.0.4 Release

Turbine On-Prem 2024 Release 3 Drop 6

Turbine On-Prem 2024 Release 3 Drop 5

Turbine On-Prem 2024 Release 3 Drop 4

Turbine On-Prem 24.3.0 Release

Turbine On-Prem 24.2.0 Release

Turbine On-Prem Release Notes

SOC Solution

Swimlane Business Continuity Management

Swimlane Business Continuity Management Solution

Swimlane Compliance Audit Readiness Release 25.2.0

Swimlane Compliance Audit Readiness Release 25.1.0

Swimlane Compliance Audit Readines

Swimlane Vulnerability Response Management Release 25.2.0

Swimlane Vulnerability Response Management Release 25.1.0

Swimlane Vulnerability Response Management Release 25.0.0

Swimlane Vulnerability Response Management

Collaboration Extension Release 25.2.1

Collaboration Extension

Swimlane Content Release 2024.3.0

Swimlane Content Release 2024.2.0

Prior Releases

Swimlane Content Release Notes

Turbine 11.x Release Notes

Turbine Platform Installer Release Notes