Quick Start

Get from zero to correlated incidents in under 30 minutes.

Prerequisites

You'll need a Pilot account (contact us for access), at least one supported security tool with webhook capability, and a publicly accessible URL for your Pilot instance.

Step 1 — Sign in and configure your first integration

1
Sign in at app.verbospilot.com/login
Use the credentials provided during onboarding. The default admin username is admin.
2
Copy your webhook URL
Navigate to Settings → Integrations. Each integration has a unique ingest endpoint in the format /ingest/{source}.
3
Configure your security tool to send webhooks
Paste the Pilot webhook URL into your tool's notification/webhook settings. See the Integrations guide for tool-specific steps.

Step 2 — Test with a curl command

Send a test signal directly to verify connectivity:

curl -X POST https://app.verbospilot.com/ingest/sentinelone \
  -H "Content-Type: application/json" \
  -d '{"event":"THREATS_CHANGE","data":{"threatInfo":{"threatName":"Test Alert","confidenceLevel":"suspicious"},"agentRealtimeInfo":{"agentComputerName":"TEST-01"}}}'

A successful response returns {"status": "ok"}. The signal will appear in your Dashboard signal queue within seconds.

Step 3 — Trigger correlation

On the Dashboard, click Correlate Now to group pending signals into an incident. The auto-correlator runs every 2 minutes by default.

Step 4 — Respond to the incident

Open the incident, review the AI triage summary and MITRE ATT&CK mapping, then use the Approve or Deny buttons to execute or dismiss the recommended response action.

Next steps

Set up additional integrations, configure notification webhooks in Settings, and invite team members via Admin → Users.