Panther acquires Datable to power the next generation of AI-driven security. Learn More
close
Panther acquires Datable to power the next generation of AI-driven security. Learn More
close
Panther acquires Datable to power the next generation of AI-driven security. Learn More
close
Enrichment
Anomali ThreatStream API SIEM Integration
Correlate log data with threat intelligence.
Integration Overview
Anomali ThreatStream allows you to centralize dozens of open-source and premium intelligence feeds into one shared repository. Data from Anomali ThreatStream can be filtered according to your criteria and fed into Panther for real-time, intelligence-driven defense. ThreatStream users can prioritize threat intelligence by severity and confidence, which is automatically correlated with indicators in your environment.
How It Works
Panther constructs a lookup table for efficient enrichment using your ThreatStream API key and a search query.
Incoming events are enriched if they match an indicator field such as IP address.
Enrichment data is available in detection logic, stored in the data lake for future investigation, and can be passed along as additional context in alerts.
Learn more about configuring Anomali ThreatStream in Panther.
Seamless integration with your security stack
Unlock the full power of Panther by integrating with the tools your team already uses.
Ready for less noise
and more control?
See Panther in action. Book a demo today.
Get product updates, webinars, and news
By submitting this form, you acknowledge and agree that Panther will process your personal information in accordance with the Privacy Policy.
Get product updates, webinars, and news
By submitting this form, you acknowledge and agree that Panther will process your personal information in accordance with the Privacy Policy.
Product
Resources
Support
Company
Get product updates, webinars, and news
By submitting this form, you acknowledge and agree that Panther will process your personal information in accordance with the Privacy Policy.