Flare for Microsoft Sentinel
Solution: Flare
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | Flare |
| Support Tier | Partner |
| Support Link | https://flare.io/contact/ |
| Categories | domains |
| Version | 3.0.0 |
| Author | Flare - support@flare.io |
| First Published | 2021-10-20 |
| Last Updated | 2026-02-10 |
| Solution Folder | Flare |
| Marketplace | Azure Marketplace · Rating: ★★★★★ 5.0/5 (1 ratings) · Popularity: 🔵 Medium (53%) |
The Flare Systems Firework solution allows you to receive data and intelligence from Firework on Microsoft Sentinel.
Underlying Microsoft Technologies used:
This solution takes a dependency on the following technologies, and some of these dependencies either may be in Preview state or might result in additional ingestion or operational costs.
a .Azure Monitor HTTP Data Collector API
Contents
Data Connectors
This solution provides 1 data connector(s):
Tables Used
This solution uses 1 table(s):
| Table | Used By Connectors | Used By Content |
|---|---|---|
FireworkV2_CL |
Flare Push Connector | Analytics, Workbooks |
Content Items
This solution includes 10 content item(s):
| Content Type | Count |
|---|---|
| Analytic Rules | 8 |
| Workbooks | 1 |
| Playbooks | 1 |
Analytic Rules
| Name | Severity | Tactics | Tables Used |
|---|---|---|---|
| Flare Cloud bucket result | Medium | Reconnaissance | FireworkV2_CL |
| Flare Google Dork result found | Medium | Reconnaissance | FireworkV2_CL |
| Flare Host result | Medium | Reconnaissance | FireworkV2_CL |
| Flare Infected Device | Medium | CredentialAccess | FireworkV2_CL |
| Flare Leaked Credentials | Medium | CredentialAccess | FireworkV2_CL |
| Flare Paste result | Medium | Reconnaissance | FireworkV2_CL |
| Flare SSL Certificate result | Medium | ResourceDevelopment | FireworkV2_CL |
| Flare Source Code found | Medium | Reconnaissance | FireworkV2_CL |
Workbooks
| Name | Tables Used |
|---|---|
| FlareSystemsFireworkOverview | FireworkV2_CL |
Playbooks
| Name | Description | Tables Used |
|---|---|---|
| credential-warning | This playbook monitors all data received from Firework looking for leaked credentials (email:passwor... | - |
Release Notes
Release Notes
Release notes are available starting from version 2.2.0. Earlier versions did not have published release notes.
| Version | Date Modified (DD-MM-YYYY) | Change History |
|---|---|---|
| 3.0.0 | 26-12-2025 | Added new CFF Data Connector for this solution |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊