Opening the Automation Garden: API Request & Webhook Trigger in Infinity Playblocks

Today’s security teams work in complex, multi-tool environments. Alerts flow from SIEMs, tickets are created in ITSM platforms, actions occur in cloud and network controls, and workflows span countless third-party services. To keep pace, automation must be open, flexible, and seamlessly connected across every system that matters.

We’re excited to introduce two powerful new capabilities in Infinity Playblocks that take us one step closer to a truly open automation ecosystem: API Request Step and Webhook Trigger.

Together, they unlock a new open garden approach to security automation – where Infinity Playblocks seamlessly integrates with any system, inbound or outbound, without limitations.

From Closed Workflows to an Open Garden

Infinity Playblocks was built to transform security detections into automated prevention across the enterprise. But as customer environments evolve, so do their integration needs.

Security teams no longer ask: “Does this platform integrate with my tools?”
They ask: “Can it integrate with everything?”

The open garden approach answers that question by removing traditional connector boundaries and allowing Playblocks to communicate freely with the broader ecosystem.

Webhook Trigger: Let External Events Drive Automation

The new Webhook Trigger allows any external system to instantly activate Playblocks automations using a simple HTTP call. This means events from SIEM solutions, CI/CD pipelines, cloud services, or custom applications can trigger security workflows in real time.

What this enables

• Trigger automations directly from third-party alerts and events.
• Replace existing automation triggers with external signals.
• Add webhooks to both custom and out-of-the-box Playblocks automations.
• Secure integrations using authentication and payload mapping.

In practice, this turns Infinity Playblocks into a real-time automation hub – responding immediately when something happens outside the Check Point ecosystem.

API Request Step: Talk to Any System, No Connector Required

While Webhook Trigger brings events into Playblocks, the API Request Step allows Playblocks to act outward.

With this new step, automations can send HTTPS requests to any API-based service, directly from within the workflow.

What this enables

• Integrate with systems that don’t yet have native connectors.
• Create or update tickets in ITSM platforms like Freshdesk.
• Call internal or partner APIs.
• Retrieve data from cloud or SaaS services.
• Push updates to SIEM, SOAR, and operational tools.

If a system exposes an API, Playblocks can now interact with it – securely, dynamically, and without custom development.

End-to-End Automation in Action

To demonstrate the power of these capabilities, we recorded a full end-to-end demo (video embedded below).

In this scenario:

1. Splunk detects a brute-force login attempt.
2. Splunk triggers a Webhook into Playblocks.
3. Playblocks automatically blocks the malicious IP across Quantum Gateways.
4. An API Request Step creates a ticket in the customer’s ticketing system.
5. The SOC team receives a notification with full context and next steps.

All of this happens automatically – across tools owned by the customer – without waiting for manual response.

This is security automation without silos.

Why This Matters for Security Teams

With the introduction of API Request Step and Webhook Trigger, Infinity Playblocks transforms from an automation engine into a foundational integration layer across the security ecosystem.

Key benefits

• Freedom to integrate with any
• Faster response through real-time, event-driven automation.
• Reduced dependency on native connectors.
• Future-proof automation that adapts as environments evolve.

Security teams can now build workflows that reflect how their environments actually work – not how tools are traditionally connected.

The Open Garden Is Just Beginning

API Request Step and Webhook Trigger are important milestones in the evolution of Infinity Playblocks – but they are only the beginning.

As part of our open garden vision, we will continue expanding Playblocks’ ability to integrate, orchestrate, and automate across the entire security and IT ecosystem.

Because in today’s threat landscape, the strongest defense is a connected one.

Learn more about Infinity Playblocks and explore how open automation can transform your security operations.

Ready to see Playblocks in action? Click to schedule a demo and try Playblocks today.