D3Security Sentinel Solution
Solution: D3SmartSOAR
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | D3 Security |
| Support Tier | Partner |
| Support Link | https://d3security.com/company/contact/ |
| Categories | domains |
| Version | 3.3.0 |
| Author | D3 Security - support@d3security.com |
| First Published | 2026-02-18 |
| Last Updated | 2026-04-17 |
| Solution Folder | D3SmartSOAR |
| Marketplace | Azure Marketplace · Popularity: ⚪ Very Low (0%) |
The D3 Smart SOAR solution for Microsoft Sentinel enables ingestion of D3 Smart SOAR alerts and events into Microsoft Sentinel via a codeless connector.
Contents
Data Connectors
This solution provides 1 data connector(s):
Tables Used
This solution uses 1 table(s):
| Table | Used By Connectors | Used By Content |
|---|---|---|
D3SOARIncidents_CL |
D3 Smart SOAR Incidents | Analytics |
Content Items
This solution includes 1 content item(s):
| Content Type | Count |
|---|---|
| Analytic Rules | 1 |
Analytic Rules
| Name | Severity | Tactics | Tables Used |
|---|---|---|---|
| D3 Smart SOAR - High or critical severity incident detected | High | Impact | D3SOARIncidents_CL |
Additional Documentation
📄 Source: D3SmartSOAR/README.md
D3 Smart SOAR — Microsoft Sentinel Connector
Prerequisites
Before connecting, configure the Time Zone of your D3 Smart SOAR site:
- In D3 Smart SOAR, go to Organization Management → Sites.
- Select the site you are connecting to Microsoft Sentinel.
- Set the Time Zone to (UTC+00:00) Coordinated Universal Time.
This ensures incident timestamps align correctly with Microsoft Sentinel's polling window.
Resources
- Privacy Policy: https://d3security.com/privacy-policy/
- Support: https://d3security.com/company/contact/
Release Notes
| Version | Date Modified (DD-MM-YYYY) | Change History |
|---|---|---|
| 3.3.0 | 13-04-2026 | Added analytics rule for High and Critical severity incident detection. |
| 3.2.0 | 01-04-2026 | Changed to Solution Template plan type. Updated offer ID to azure-sentinel-solution-d3smartsoar. |
| 3.1.0 | 26-03-2026 | Fixed pagination using CountBasedPaging with nested JSON path paging ($.CommandParams.PageIndex). Updated publisher ID to match Partner Center registration. Updated branding to Microsoft Sentinel. |
| 3.0.0 | 27-02-2026 | Initial release of D3 Smart SOAR data connector. Polls incidents every 5 minutes into D3SOARIncidents_CL with IncidentRawData and EventRawData dynamic fields via PollFromSentinel parameter. |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊