issues
search
panther-labs
/
panther-analysis
Built-in Panther detection rules and policies
https://panther.com/
Apache License 2.0
339
stars
173
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
New Rule: Standard Sign-In from Rogue State
#1332
ben-githubs
closed
5 days ago
5
GCP K8S tuning
#1331
arielkr256
closed
3 months ago
1
traffic mirroring tuning
#1330
arielkr256
closed
3 months ago
1
Okta rate limit tuning
#1329
arielkr256
closed
3 months ago
1
Info Alerts are Signals, Nonrouted
#1328
arielkr256
closed
3 months ago
1
Info Alerts are Signals
#1327
arielkr256
opened
3 months ago
1
tuning Wiz Alert Passthrough rule
#1326
arielkr256
closed
2 months ago
1
Remove deprecated IOC helpers
#1325
arielkr256
closed
3 months ago
3
Improve GitHub Webhook Modified rule
#1324
geoffg-sentry
closed
2 months ago
0
Wiz audit rules
#1323
akozlovets098
closed
2 months ago
1
Missing MITRE ATT&CK tactics
#1322
arielkr256
closed
2 months ago
3
Prepare for `v3.61.0`
#1321
arielkr256
closed
3 months ago
1
CR upload fixes
#1320
arielkr256
closed
3 months ago
1
Prepare for `3.60.0`
#1319
akozlovets098
closed
3 months ago
1
Update again gcp_k8s_cron_job_created_or_modified.yml
#1318
chrisarav
closed
3 months ago
1
build(deps): bump step-security/harden-runner from 2.9.0 to 2.9.1
#1317
dependabot[bot]
closed
3 months ago
1
Update gcp_k8s_cron_job_created_or_modified.yml
#1316
chrisarav
closed
3 months ago
2
AWS Compromised Service Role - CR -> Scheduled Rule
#1315
arielkr256
closed
3 months ago
1
GitHub Advanced Security Change WITHOUT Repo Archived - Sequence to Group CR
#1314
arielkr256
closed
3 months ago
1
added default values to get/deep_get
#1313
arielkr256
closed
3 months ago
2
Minor typo fix in displayname, potentiall -> potentially
#1312
kjihso
closed
3 months ago
1
UDM safe lookups
#1311
nhakmiller
closed
3 months ago
1
Add Github Dependabot Alert Dismissed Rule
#1310
elimgh
closed
3 months ago
0
build(deps): bump docker/setup-buildx-action from 3.5.0 to 3.6.1
#1309
dependabot[bot]
closed
3 months ago
1
Add empty string default to prevent errors when key is missing.
#1308
nickchap
closed
3 months ago
1
New Rules: CS EventStream Audit Events
#1307
ben-githubs
closed
3 months ago
2
Update rule_jsonschema.json
#1306
chrisarav
closed
3 months ago
1
Releasing performance improvements
#1305
nhakmiller
closed
3 months ago
1
Merge pull request #1299 from panther-labs/release
#1304
teedrm
closed
3 months ago
1
Patch Release: 3.58.1
#1303
ben-githubs
closed
3 months ago
1
Bump rate minutes more
#1302
nhakmiller
closed
3 months ago
1
Update rates
#1301
nhakmiller
closed
3 months ago
1
Add entity JSON object to Slack Privilege Escalation tests
#1300
bmbeverst
closed
3 months ago
0
Prepare for 3.58
#1299
ben-githubs
closed
3 months ago
1
build(deps): bump docker/setup-qemu-action from 3.1.0 to 3.2.0
#1298
dependabot[bot]
closed
3 months ago
1
build(deps): bump docker/setup-buildx-action from 3.4.0 to 3.5.0
#1297
dependabot[bot]
closed
3 months ago
1
Fix methodName lookups for Cloud Run rules, add tests
#1296
geoffg-sentry
closed
3 months ago
1
bugfix for base64 encoded arguments
#1295
arielkr256
closed
3 months ago
1
Update default timeouts
#1294
nhakmiller
closed
3 months ago
1
build(deps): bump step-security/harden-runner from 2.8.1 to 2.9.0
#1293
dependabot[bot]
closed
3 months ago
1
Update safe lookup
#1292
nhakmiller
closed
4 months ago
1
3.57.0 Release
#1291
le4ker
closed
4 months ago
1
Formatting: Converting Tabs to Spaces in YAML Files
#1290
ben-githubs
closed
4 months ago
1
more correlation rules from AWS re:inforce
#1289
arielkr256
closed
2 months ago
1
Correct the target and actor in Slack Audit log UserPrivilegeEscalation plus clean up
#1288
bmbeverst
closed
3 months ago
3
WIP: add initial EKS exec rule
#1287
rileydakota
opened
4 months ago
0
CrowdStrike event stream api rules
#1286
JPhenglavong
closed
4 months ago
1
lower severity for sensor update requests
#1285
arielkr256
closed
4 months ago
1
build(deps): bump actions/setup-python from 5.1.0 to 5.1.1
#1284
dependabot[bot]
closed
4 months ago
1
Aws gd ref links
#1283
JPhenglavong
closed
4 months ago
1
Previous
Next