Support

Company

Request a demo

Support

Company

Request a demo

pen

Blog

Analyze Internal Security Data with Custom Log Parsers

Sugandha

Lahoti

Nov 7, 2020

3 min read

linkedin

x-twitter

facebook

Quickly onboard all of your critical security data to power detection and response with Panther Enterprise.

What

To quickly help you build a robust and scalable security data pipeline, Panther ships with pre-built log parsers for several high-value data sources like G Suite, Crowdstrike, Okta, Osquery, and more. With the new Custom Log Parsers feature in Panther Enterprise, you can onboard even more critical security data by defining YAML schemas to transform your raw logs into structured JSON data with extracted indicators for fields like IP Addresses and Domain Names.

Preparing a Custom Log Parser in Panther

Preparing a Custom Log Parser in Panther

Why

The number of systems that security teams need visibility into is proliferating rapidly. By offering a fast and easy way to onboard custom data sources, Panther Enterprise helps security teams turn raw and unstructured logs into real-time alerts that provide actionable security insights. With clean log data from across cloud and on-premise environments, security teams can detect threats faster, correlate suspicious activity across systems, and investigate security incidents at scale to identify and remediate root cause vulnerabilities.

How it works

Custom Parsers can be written for any application that produces JSON, text, or CSV logs. Once your parser is defined and added to your instance of Panther, send your log data to AWS S3 and onboard the bucket as a data source in Panther to begin utilizing this data to power detection and response.

How does this impact you

With Custom Log Parsers in Panther, you can bootstrap your security data lake with large quantities of structured log data from across your internal environment. Use this data to improve security posture, achieve complete visibility into systems and activity, and remediate vulnerabilities before they escalate into costly breaches.

TL;DR

Onboard even more critical security data to achieve complete visibility into systems and activity with Custom Log Parsers in Panther Enterprise.

Get started

  • If you’re an existing Panther Enterprise customer, read the docs to learn how to write your first Custom Parser.

  • If you’d like to learn more about Panther Enterprise, request a demo

TABLE OF CONTENTS

Recommended Resources

Detection-as-Code

Escape Cloud Noise. Detect Security Signal.

Request a Demo

Escape Cloud Noise. Detect Security Signal.

Request a Demo

Escape Cloud Noise. Detect Security Signal.

Request a Demo

Escape Cloud Noise. Detect Security Signal.

Request a Demo

Product

Product Overview

Solutions

Integrations

Pricing

Detection Coverage

Resources

Case Studies

Blog

Podcasts

Webinars

Solution Briefs

Events

Workshops

Support

Documentation

Knowledge Base

Release Notes

Status

Community

Company

About Us

Careers

Partners

News

Trust

linkedin

x-twitter

youtube

mastodon

© 2024 Panther Labs

|

Terms of Service

|

Privacy Policy

|

Sitemap

linkedin

x-twitter

youtube

mastodon

© 2024 Panther Labs

|

Terms of Service

Privacy Policy

|

Sitemap

Product
Resources
Support
Company
Product

Product Overview

Solutions

Integrations

Pricing

Detection Coverage

Resources

Case Studies

Blog

Podcasts

Webinars

Solution Briefs

Events

Workshops

Support

Documentation

Knowledge Base

Release Notes

Status

Community

Company

About Us

Careers

Partners

News

Trust

linkedin

x-twitter

youtube

mastodon

© 2024 Panther Labs

|

Terms of Service

|

Privacy Policy

|

Sitemap