IN a post dated 10 March 2026, Cloudflare explains how Log Explorer helps security teams investigate multi-vector attacks by delivering 360-degree visibility through the integration of 14 new datasets across Cloudflare’s products. The piece describes how correlating telemetry from HTTP requests, network logs, and Zero Trust events enables analysts to spot multi-layered attacks and reduce Mean Time to Detect (MTTD).
It emphasises that Log Explorer acts as a “flight recorder” for an application, centralising logs into a unified interface logged at the edge before requests reach infrastructure. The article also outlines the range of log types supported, including Zone-Scoped and Account-Scoped Logs, such as HTTP Requests, Firewall Events, DNS Logs, Access Requests, Audit Logs, and DNS Firewall Logs.
Furthermore, it notes architectural upgrades that reduced ingestion latency—by approximately 55% for P99 and 25% for P50—to speed up data availability for SQL queries. The guidance closes by highlighting cross-dataset correlation and new features like multiple concurrent searches and forthcoming scheduled queries to deepen forensics capabilities.