Panther is a modern SIEM built for security operations at scale. Teams can define detections as code and programmatically upload them to their Panther deployment. This repository contains detections developed by the Panther Team and the Community, welcoming contributions. The repo structure includes folders with rules for analyzing logs, policies for secure resource states, and scheduled rules for SQL query outputs. Python environment setup instructions are provided for installation and running.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A dynamic GUI for advanced log analysis, allowing users to execute SQL queries on structured log data.
A logging proxy tool created in response to the 'MongoDB Apocalypse', with Docker support.
Elastic is a search-powered AI company that enables users to find answers from all data in real-time at scale.
HonnyPotter is a WordPress plugin that logs all failed login attempts, with a caution to use it at your own risk.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.