Integrations Cloudflare

Discover and Monitor Your Cloudflare Assets

Connect Halo Security with Cloudflare to automatically discover and secure your CDN-protected infrastructure. Our platform automatically discovers and monitors DNS zones and records while helping identify origin IPs behind Cloudflare's CDN. This unique capability helps you understand your true external attack surface, even when using Cloudflare's security features.

Key Benefits

  • Complete DNS Asset Discovery: Automatically map your Cloudflare DNS zones and records to identify potential security gaps
  • Origin IP Detection: Discover and monitor origin servers behind Cloudflare's CDN protection
  • Continuous Security Monitoring: Track changes and detect vulnerabilities across your infrastructure
  • Minimal Access Requirements: Operate securely with custom API tokens and precise permissions

Use Cases

  • Map your complete Cloudflare-protected infrastructure to eliminate blind spots
  • Monitor DNS configurations for security gaps and unauthorized changes
  • Verify proper CDN configuration and protection
  • Maintain an accurate inventory of assets behind Cloudflare

Quick Setup Process

  1. Generate a custom API token in Cloudflare
  2. Configure DNS read-only permissions
  3. Add your API token to Halo Security
  4. Start discovering and monitoring your protected assets

Frequently Asked Questions

How do I connect Halo Security to Cloudflare?

Connection is simple using Cloudflare's API tokens. Generate a custom token with DNS read permissions in your Cloudflare dashboard, then enter it in your Halo Security platform. The entire process takes just minutes.

Can Halo Security detect assets behind Cloudflare's CDN?

Yes, Halo Security can discover origin IPs and assets protected by Cloudflare's CDN. This helps you understand your true attack surface and ensure proper security controls are in place for all your infrastructure.

What Cloudflare permissions does Halo Security require?

Halo Security operates with minimal permissions using a custom API token. We only require read access to your DNS zones and records to discover and monitor your assets. Our integration never requires write permissions to your Cloudflare environment.

How does External Attack Surface Management work with CDNs?

EASM for Cloudflare works by discovering both your CDN-protected assets and their origin infrastructure. This provides a complete view of your attack surface, helping ensure both your Cloudflare configuration and underlying infrastructure are secure.

How quickly can I start monitoring my Cloudflare assets?

You can begin monitoring your Cloudflare environment in minutes. The setup process involves creating an API token and connecting to the Halo Security platform. Once connected, asset discovery begins immediately.

Cloudflare

See how Halo Security can strengthen your Cloudflare security posture.

View the Docs Get a Demo

Part of our complete attack surface management solution.

Transform your Cloudflare security monitoring with comprehensive attack surface management. Sign up for a free trial to see how Halo Security can help secure your CDN-protected infrastructure. Our platform starts discovering assets in minutes, providing immediate visibility into your external attack surface.

Request your free 7-day trial

Or get a demo