FlareInspect#
FlareInspect is an open-source Cloudflare security assessment CLI and local web dashboard built by IONSEC.IO. Scan your infrastructure, detect posture drift, ship findings to a SIEM, and let an MCP-aware agent drive the full assess β find β path β plan β apply loop.
Highlights#
π 50+ Security Checks |
34 categories spanning DNS, SSL/TLS, WAF, Zero Trust, Workers, Access, CASB, Magic, and more. |
πΈοΈ Resource Graph (v2.0) |
Typed node/edge view of the account β the single source of truth for the posture map, attack paths, and SIEM enrichment. |
βοΈ Attack-Path Engine (v2.0) |
Five rule-based detectors chain findings into paths that lead to high/critical exposure. |
πΊοΈ Posture Map (v2.0) |
Interactive entity graph in the dashboard β Internet β Account β Zones β services, with severity colours and attack-path highlight. |
π’ SIEM Shipping (v2.0) |
|
π€ MCP Server (v2.0) |
|
π Notifications (v2.0) |
|
π Drift Detection |
Track posture regressions over time with |
π Compliance Mapping |
CIS, SOC 2, PCI-DSS, and NIST CSF controls. |
π Multi-Format Export |
JSON, HTML, OCSF, SARIF, Markdown, CSV, ASFF, ECS, and Splunk HEC. |
π Web Dashboard |
Local UI with assessment history, posture map, score visualization, and downloads. |
βοΈ 1-Click Deploy |
Deploy to Render, Heroku, Railway, or Fly.io in minutes. |
π CI/CD Ready |
Exit codes, threshold gates, and SARIF output for any pipeline. |
π Plugin Support |
Scaffold trusted local extensions for custom checks. |
Contents
- 1. Getting Started
- 2. Quick Start
- 3. Installation
- 4. CLI Reference
- 5. Configuration
- 6. Security Checks
- 7. Export Formats
- 8. Compliance Mapping
- 9. Scoring
- 10. Drift Detection
- 11. Web Dashboard
- 12. Posture Map
- 13. SIEM
- 14. MCP Server
- 15. CI/CD Integration
- 16. Deployment
- 17. Plugins
- 18. Architecture
- 19. Contributing
- 20. Cloudflare API Permissions Guide
- 21. Troubleshooting
- 22. FAQ
- 23. Changelog