Rapid7 InsightVM: New CCF Connector Expands Vulnerability Management Data Ingestion Options

Rapid7InsightVM solution adds CCF-based data connector for cloud-native ingestion alongside legacy Function App connector, enhancing deployment flexibility for vulnerability management visibility. Read More →

Solution Analyzer v9.0: Enhanced Table Schema Discovery and Documentation Source Prioritization

Major enhancement adds comprehensive table schema extraction from DCR configs and Azure Monitor docs, plus improved discovery source hierarchy for better data source visibility. Read More →

CyberArk Audit: New CCF Connector Alternative Replaces Function App Dependency

CyberArk adds CCF-based connector to eliminate Azure Functions dependency for audit data ingestion. Read More →

New Trellix Endpoint Security: CCF Connector Unlocks ePO Threat Visibility in Sentinel

New solution delivers Trellix ePO endpoint security events via CCF with OAuth2 authentication and comprehensive threat intelligence data. Read More →

Gigamon AMX Connector: Migration to CCF Push Restores Network Visibility After Deprecation

Gigamon connector migrated from deprecated Log Analytics method to CCF push architecture, preventing complete loss of network traffic and threat visibility. Read More →

IONIX: Migration to CCF RestApiPoller with Enhanced Data Deduplication

Major migration from HTTP Data Collector API to CCF RestApiPoller enabling automatic polling with query-time deduplication for IONIX attack surface management data. Read More →

DataBahn Platform: New CCF Connector for Real-Time Security Telemetry Ingestion

New CCF push connector enables direct ingestion of DataBahn audit logs, alerts, and device inventory into Microsoft Sentinel. Read More →

Solutions Analyzer Tools: Kusto Upload, CCF Legacy Support, and Parser Analysis Enhancements

Major tooling update adds Kusto integration, improves CCF connector classification, and fixes ASIM parser documentation generation. Read More →

New CCF Template: Azure Storage Blob Data Connector

New Codeless Connector Framework template enables ingestion from Azure Storage blob containers via event-driven data flows. Read More →

Cyren Threat Intelligence: Critical Fix for 1,535:1 Duplicate Data Ingestion

Configuration updates eliminate massive duplicate indicator ingestion caused by small page sizes and frequent polling intervals. Read More →

Zscaler Internet Access: Major Platform Modernization with CloudNSS CCP Connectors

Complete solution overhaul replaces legacy connectors with 15 CloudNSS CCP connectors and 12 OAuth2 playbooks for enhanced Zscaler integration. Read More →

MailRisk CCF Connector: Critical Parameter Syntax Fix for Deployment Failures

Fixed CCF deployment blocking issue in MailRisk connector caused by incorrect ARM template parameter extraction syntax. Read More →

New Solution: meshStack Platform Event Logs Integration for Cloud Governance

meshStack event logging connector enables cloud platform governance monitoring by ingesting developer platform events into Microsoft Sentinel. Read More →

OAuth Data Connectors: Dynamic Redirect URI Support Simplifies Authentication Setup

Four OAuth-based data connectors now support dynamic redirect URIs, eliminating manual Azure portal configuration requirements. Read More →

GitHub Enterprise Cloud Connector: Audit Log Data Ingestion Now Generally Available

GitHub Enterprise audit log connector and 11 accompanying detection rules promoted from Preview to GA status. Read More →

Check Point Cyberint IOC Connector: Critical Data Ingestion Restoration

Cyberint threat intelligence connector restored from complete ingestion failure caused by malformed API endpoint and duplicate schema nesting blocking IOC data collection. Read More →

SAP BTP: 10 New Enterprise Security Detections for Cloud Integration and Identity Service

New threat detection coverage for SAP BTP Cloud Integration tampering, identity service compromise, and audit service availability. Read More →

Snowflake Connector: Data Ingestion Timing Fix and Parser Field Corrections

Snowflake connector updated with 120-minute ingestion delay and corrected timestamp parsing to address customer-reported data gaps. Read More →

Major Solution Release: Cyble Vision and Tropico Solutions Added Plus Multi-Solution Updates

Large release adds two new threat intelligence solutions (Cyble Vision, Tropico) and updates to 15+ existing solutions across the repository. Read More →

Miro Solution: New Enterprise Collaboration Security and Compliance Monitoring

New Miro solution added with CCF connectors for audit logs and content logs to enable collaboration platform security monitoring. Read More →