Superna Zero Trust

Overview

The Superna Zero Trust pack integrates Cortex XSOAR with Superna's Zero Trust ransomware detection and containment platform. It enables automated ransomware response by triggering critical path snapshots and enforcing NAS user lockout/unlock actions through the Superna SERA API.

Use Cases

Ransomware Containment: Immediately lock out a suspected compromised user from all NAS storage access to stop lateral spread
Data Preservation: Trigger a critical path snapshot at the moment ransomware is detected to preserve a clean recovery point
Automated Recovery: Unlock users after investigation or remediation is complete

What's in This Pack

Integrations

Superna Zero Trust — Connects to the Superna SERA API to execute containment and recovery commands

Playbooks

Playbook	Description
Superna Zero Trust Snapshot	Creates a critical path snapshot for ransomware rapid recovery
Superna Zero Trust User Lockout	Locks a user out of NAS storage access
Superna Zero Trust Request User Storage Lockout	Requests and confirms NAS storage lockout for a user
Superna Zero Trust Request User Storage UnLockout	Requests and confirms NAS storage unlock for a user

Configuration

To use this pack, configure the Superna Zero Trust integration instance with:

API URL: The base URL of your Superna Zero Trust / SERA server
API Key: An API key generated from the Superna management interface

See the integration README for full setup instructions.

Support

For support, contact support@superna.io or visit https://www.superna.io.

Pack Contributors:

Superna

Contributions are welcome and appreciated. For more info, visit our Contribution Guide.

Pack Name	Pack By
Base	By: Cortex XSOAR
Common Scripts	By: Cortex XSOAR
Filters And Transformers	By: Cortex XSOAR

Pack Name	Pack By
Cortex REST API	By: Cortex XSOAR
Aggregated Scripts	By: Cortex XSOAR
Base	By: Cortex XSOAR
Filters And Transformers	By: Cortex XSOAR
Common Scripts	By: Cortex XSOAR

Certification	Certified	Read more
Supported By	Partner
Created	April 14, 2026
Last Release	April 14, 2026

Superna Zero Trust

Superna Zero Trust

Overview

Use Cases

What's in This Pack

Integrations

Playbooks

Configuration

Support

Pack Contributors:

PUBLISHER

PLATFORMS

INFO

WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER

Name	Description
Superna Zero Trust User Lockout	Locks out a user from NAS storage access in response to Zero Trust incidents. Extracts the source username from the incident and executes lockout via Superna Zero Trust integration.
Superna Zero Trust Snapshot	Creates a snapshot of Superna critical paths for ransomware rapid recovery. This playbook should be triggered immediately upon detection of potential ransomware activity to preserve data state for recovery purposes.
Superna Zero Trust Request User Storage UnLockout	Offers an input question to accept the userID that should be unlocked out of storage. This playbook can be run by any Secops workflow to unlock a user that was previous locked out.
Superna Zero Trust Request User Storage Lockout	Offers an input question to accept the userID that should be locked out of storage. This playbook can be run by any Secops workflow where the threat to data is increased and a proactive step to ensure no data can be destroyed or it can be used as step in a workflow when employees are leaving the company or have been terminated.