WebSecScan: AI-powered website security auditor
WebSecScan: AI-Powered Website Security Auditor This n8n workflow provides comprehensive website security analysis by leveraging OpenAI's models to detect vulnerabilities, configuration issues, and security misconfigurations. The workflow generates a professional HTML security report delivered directly via Gmail. Key Features Dual-Layer Security Analysis: Performs parallel security audits using specialized OpenAI agents: Header Configuration Audit: Analyzes HTTP headers, CORS policies, CSP implementation, and cookie security Vulnerability Assessment: Identifies XSS vectors, information disclosure, and client-side weaknesses Detailed Security Grading: Automatically calculates a security grade (A+ to F) based on findings severity and quantity Professional Report Generation: Creates a comprehensive HTML report with: Security grade visualization Color-coded vulnerability categories Detailed recommendations with example configuration fixes Header presence/absence indicators Implementation guidance for remediation Non-Invasive Testing: Performs analysis without active scanning or exploitation attempts Technical Implementation Multi-Agent Architecture: Utilizes two specialized OpenAI agents with custom prompts tailored for security analysis Advanced Header Analysis: Detects presence and proper implementation of critical security headers: Content-Security-Policy Strict-Transport-Security X-Content-Type-Options X-Frame-Options Referrer-Policy Permissions-Policy Intelligent Issue Detection: Uses JavaScript processing to analyze OpenAI outputs and count critical/warning issues Responsive HTML Report: Dynamically generates a mobile-friendly report with detailed findings and recommendations Setup Requirements OpenAI API Configuration Create an OpenAI API key at platform.openai.com In n8n, go to Settings → Credentials → New → OpenAI API Enter your API key and save Gmail Integration Navigate to Settings → Credentials → New → Gmail OAuth2 API Complete the OAuth authentication flow Configure recipient email in the "Send Security Report" node Workflow Customization (Optional) Modify the form title/description in the Landing Page node Upgrade from gpt-4o-mini to gpt-4o for more comprehensive analysis Add additional recipients to the email report Usage Instructions Activate the workflow and access the form via the generated URL Enter any website URL to analyze (including the http:// or https:// prefix) Receive a detailed security report via email within minutes Share findings with your development team to implement fixes --- This workflow represents a non-invasive security assessment tool. For production environments, complement with professional penetration testing services.
By Dale DunlopWebsite monitoring, scheduling, and email alerts template
🛠 Website Downtime Monitoring with Scheduled Checks and Email Alerts Easily monitor your website uptime and receive instant email alerts when it becomes unreachable — using this no-code template powered by n8n, a free and flexible workflow automation tool. This ready-to-use workflow periodically checks your website’s status and sends an alert email if it’s down. --- ⚙️ How it Works Schedule Website Check Triggers the workflow at regular intervals (e.g., every 8 hours by default). Check Website Status Sends an HTTP GET request to your site. Evaluate Response Determines if the site is reachable (expects HTTP status 200). Send Downtime Alert If the site is down, an alert email is sent to the specified address. --- 🔧 Steps to Customize HTTP Request Node Replace https://yourdomain.com with your actual website URL. Send Email Node Update the To Email and From Email fields with your addresses. Adjust Monitoring Frequency Modify the Schedule Trigger node to run every 5 minutes, hourly, or as needed. --- ✅ SMTP Configuration Instructions Before emails can be sent, you need to configure SMTP credentials in n8n. 📨 Option 1: Gmail SMTP Setup > Note: Gmail requires App Passwords (not your regular Gmail password) and 2FA to be enabled. Steps: Go to Google Account Security Settings. Enable 2-Step Verification. Go to App Passwords. Create a new app password (choose Mail and Other, name it n8n). In n8n: Go to Credentials → Create New → SMTP. Use the following values: Host: smtp.gmail.com Port: 465 (SSL) or 587 (TLS) User: your Gmail address (e.g., you@gmail.com) Password: the App Password you generated ✉️ Option 2: Generic SMTP Setup Use this if you're using your hosting provider's or business email SMTP server. Example Values: Host: smtp.yourdomain.com or provider-specific (e.g., smtp.sendgrid.net) Port: 587 (TLS) or 465 (SSL) User: your email address (e.g., alerts@yourdomain.com) Password: your email/SMTP password Secure: Yes (if using 465 or TLS-enabled 587) Then in the workflow's Send Email node, select the SMTP credentials you created. --- 📌 Requirements A running instance of n8n (self-hosted or n8n.cloud) SMTP credentials configured in n8n for email delivery Basic familiarity with the n8n visual editor --- 🧠 Pro Tips Rename Nodes: Use clear, descriptive names for maintainability. Sticky Notes: Use stickies on the canvas to help explain logic for others. Expand Alerts: Integrate with Slack, Discord, or Telegram for multi-channel alerts.
By Anandkumar CAutomatic media download from WhatsApp Business messages with HTTP storage
This workflow listens for incoming WhatsApp messages that contain media (e.g., images) and automatically downloads the media file using WhatsApp's private media URL. The trigger node activates when a WhatsApp message with media is received. The media ID is extracted from the message payload. A private media URL is retrieved using the media ID. The media file is downloaded using an authenticated HTTP request. Ideal for: Archiving WhatsApp media to external systems. Triggering further automations based on received media. Integrating with cloud storage like Google Drive, Dropbox, or Amazon S3. Set up steps Connect your WhatsApp Business API account. Add HTTP credentials for downloading media via private URL. Set up the webhook in your WhatsApp Business account. Extend the workflow as needed for your use case (e.g., file storage, alerts).
By Usman LiaqatAi email auto-responder system- AI RAG agent for email inbox
AI Email Auto-Responder – Smart Client Reply Automation with RAG This workflow is built for individuals, teams, and businesses that receive regular inquiries via email and want to automate responses in a way that’s intelligent, brand-aligned, and always up to date. Its core purpose is to generate high-quality, professional email replies using internal company data, brand voice, and semantic search — fully automated through Gmail, Pinecone, and OpenAI. The system is divided into three steps. First, it allows you to index your internal knowledge base (Docs, Sheets, PDFs) with embeddings. Second, it injects a consistent brand brief into every interaction to ensure tone and positioning. Finally, the main flow listens for incoming emails, understands the user query, retrieves all needed data, and writes a full HTML reply — sending it directly to the original thread via Gmail. This solution is ideal for support teams, solopreneurs, B2B service providers, or anyone looking to scale high-quality client communication without scaling manual work. It can be extended to handle multilingual queries, intent routing, or CRM logging. How it works When a new email arrives in Gmail, the workflow checks whether it's a valid client inquiry. If so, it: Extracts the subject and message content Sends the message through OpenAI to understand the question Queries a Pinecone vector database (populated via a separate embedding workflow) to find relevant internal knowledge Loads a brand brief from a Google Doc or Notion block Combines retrieved data and brand context to generate a clear, structured HTML reply using OpenAI Sends the reply via Gmail and logs the message This process ensures every reply is relevant, accurate, and consistent with your brand — and takes under 10 seconds. Set up steps Getting started takes about 30–60 minutes. Create three workflows: one for embedding documents (Step 1), one sub-workflow for the brand brief (Step 2), and one main responder flow (Step 3) Connect the following APIs: Gmail (OAuth2), OpenAI, Pinecone, Google Drive, and optionally Notion Replace all placeholders: folder ID in Google Drive, Pinecone index and namespace, your brand brief URL or doc ID, and Gmail credentials Test your embedding workflow by uploading a document and verifying its presence in Pinecone Trigger the responder by sending an email and reviewing the AI’s reply Detailed setup instructions are stored in sticky notes within each workflow to guide you through configuration.
By LukaszBAnalyze contract risk from Google Drive with OpenAI and log to Gmail & Sheets
How it works This workflow automates end-to-end contract analysis when a new file is uploaded to Google Drive. It downloads the contract, extracts its content, and uses AI to analyze legal terms, obligations, and risks. Based on the assessed risk level, it notifies stakeholders and logs structured results into Google Sheets for audit and compliance. Step-by-step Step 1: Contract ingestion and AI analysis Google Drive Trigger – Monitors a specific folder for newly uploaded contract files. Download file – Downloads the uploaded contract from Google Drive. Extract Text From Downloaded File – Extracts readable text or prepares raw content for complex files. AI Contract Analysis – Analyzes legal, commercial, and financial clauses using AI. Format AI Output – Parses and structures the AI response into clean, usable fields. Step 2: Risk alerts and audit logging Alert Teams Automatically – Evaluates risk level and checks for significant risks. Send a message (Risk Alert) – Sends a detailed alert email for medium-risk contracts. Send a message (Info Only) – Sends an informational email when no action is required. Get The Data To Save In Google Sheet (Alert Path) – Prepares alert-related contract data. Get The Data To Save In Google Sheet (Info Path) – Prepares non-alert contract data. Append row in sheet – Stores contract details, risks, and timestamps in Google Sheets. Why use this? Eliminates manual contract screening and repetitive reviews. Detects explicit and inferred risks consistently using AI. Automatically alerts teams only when attention is required. Creates a centralized audit log for compliance and reporting. Scales contract analysis without increasing legal workload.
By Avkash KakdiyaDigitize business cards to Notion database with Gemini Vision OCR
🧩 Summary Easily digitize and organize your business cards! This workflow allows you to upload a business card image, automatically extract contact information using Google Gemini’s OCR & vision model, and save the structured data into a Notion database — no manual typing required. Perfect for teams or individuals who want to centralize client contact info in Notion after networking events or meetings. --- ⚙️ How it works Form Submission Upload a business card image (.jpg, .png, or .jpeg) through an n8n form. Optionally select a category (e.g., Partner, Client, Vendor). AI-Powered OCR (Google Gemini) The uploaded image is sent to Google Gemini Vision for intelligent text recognition and entity extraction. Gemini returns structured text data such as: json { "Name": "Jung Hyun Park", "Position": "Head of Development", "Phone": "021231234", "Mobile": "0101231234", "Email": "abc@dc.com", "Company": "TOV", "Address": "6F, Donga Building, 212, Yeoksam-ro, Gangnam-gu, Seoul", "Website": "www.tov.com" } JSON Parsing & Cleanup The text response from Gemini is cleaned and parsed into a valid JSON object using a Code node. Save to Notion The parsed data is automatically inserted into your Notion database (Customer Business Cards). Fields such as Name, Email, Phone, Address, and Company are mapped to Notion properties. --- 🧠 Used Nodes Form Trigger – Captures uploaded business card and category input Google Gemini (Vision) – Extracts contact details from the image Code – Parses Gemini’s output into structured JSON Notion – Saves extracted contact info to your Notion database --- 📦 Integrations | Service | Purpose | Node Type | |----------|----------|-----------| | Google Gemini (PaLM) | Image-to-text extraction (OCR + structured entity parsing) | @n8n/n8n-nodes-langchain.googleGemini | | Notion | Contact data storage | n8n-nodes-base.notion | --- 🧰 Requirements A connected Google Gemini (PaLM) API credential A Notion integration with edit access to your database --- 🚀 Example Use Cases Digitize stacks of collected business cards after a conference Auto-save new partner contacts to your CRM database in Notion Build a searchable Notion-based contact directory Combine with Notion filters or rollups to manage client relationships --- 💡 Tips You can easily extend this workflow by adding an email notification node to confirm successful uploads. For multilingual cards, Gemini Vision handles mixed-language text recognition well. Adjust Gemini model (gemini-1.5-flash or gemini-1.5-pro) based on your accuracy vs. speed needs. --- 🧾 Template Metadata | Field | Value | |-------|--------| | Category | AI + Notion + OCR | | Difficulty | Beginner–Intermediate | | Trigger Type | Form Submission | | Use Case | Automate business card digitization | | Works with | Google Gemini, Notion |
By JinPark