ZeroFox Alerts Connector

Solution: ZeroFoxAlerts

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

↑ Back to Solutions Index

---

Attribute	Value
Publisher	ZeroFox
Support Tier	Partner
Support Link	https://www.zerofox.com/contact-us/
Categories	Security - Threat Protection,Security - Automation (SOAR)
Version	3.0.0
Author	ZeroFox - integration-support@zerofox.com
First Published	2026-04-01
Last Updated	2026-06-10
Solution Folder	ZeroFoxAlerts
Marketplace	Azure Marketplace · Popularity: ⚪ Very Low (0%)

The ZeroFox solution for Microsoft Sentinel enables you to ingest ZeroFox Alerts into Microsoft Sentinel using the ZeroFox API.

Underlying Microsoft Technologies used:

This solution takes a dependency on the following technologies, and some of these dependencies either may be in Preview state or might result in additional ingestion or operational costs:

a. Azure Monitor HTTP Data Collector API.

Data Connectors

This solution provides 1 data connector(s):

• ZeroFox Alerts 🔶

🔶 CLv1: This connector ingests into a table that uses the legacy Custom Log V1 schema format with type-suffixed column names (e.g. _s, _d, _b, _t, _g). Note: identification is based on column name suffixes which are also permitted in CLv2, so this classification may not always be accurate.

Tables Used

This solution uses 1 table(s):

Table	Used By Connectors	Used By Content
ZeroFoxAlertPoller_CL 🔶	ZeroFox Alerts	-

🔶 CLv1: This table uses the legacy Custom Log V1 schema format with type-suffixed column names (e.g. _s, _d, _b, _t, _g). Note: identification is based on column name suffixes which are also permitted in CLv2, so this classification may not always be accurate.

Release Notes

Version	Date Modified (DD-MM-YYYY)	Change History
3.0.0	01-04-2026	Added Data Connectors for ZeroFox's Alerts.

---

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

↑ Back to Solutions Index