Unknown File Reputation
This workflow addresses the scenario where an endpoint security platform reports the execution of a file with unknown reputation—neither known good nor flagged as malicious. In these cases, Fluency triggers an AI-driven investigative workflow to determine file intent, behavior, and impact before deciding on action.
| Capability | Traditional SOAR | Fluency AI Workflow |
|---|---|---|
| Verdict Analysis | Binary (Yes/No) | Soft logic, reasoned output |
| IOC Extraction | Manual or optional | Automated from sandbox |
| Infrastructure Correlation | Rule-based or absent | Built into AI scoping |
| Workflow Flexibility | Fixed playbook | AI-driven modular workflows |
| Human Effort | Required to resolve ambiguity | Reserved for QA/business review |
| Result Explainability | Static outcome | AI reasoning trace + tagging |