v1.28

Feb 3, 2022

New and Noteworthy

Panther's public API, now released in beta, enables customers to use GraphQL queries to interact with the Panther system. Learn more in the documentation.
Added support for Google Cloud Storage as a Data Transport to allow customers to more effectively monitor Google resources.

Features

Panther Analysis Tool now supports the ability to upload Lookup Tables.
You can now create a Lookup Table from an S3 bucket.

Enhancements

Across the entirety of the Panther UI, you can now shift-click to bulk select items.

Bug Fixes

Fixed issues with fields in native Microsoft and CrowdStrike schemas.
Fixed a bug in the Panther UI that prompted users to launch the AWS console when attempting to edit a pre-existing S3 or CloudWatch source.
Fixed an issue with the data schema page that caused it to error out if the schema didn’t match any event from an uploaded sample.

Previous Releases

View All

v1.27 Jan 27, 2022

Lookup Tables allow you to add important context to your detections and alerts for improved investigation workflows. Use Lookup Tables to enhance alerts with metadata and context, such as identity/asset information, vulnerability context, and network maps. (docs)

Pull your audit logs from Atlassian with our new native Atlassian Log Puller integration. (docs)

v1.26 Dec 3, 2021

"Select all in system" option now available in the alert bulk selector to speed up mass alert triaging (docs)

CSV files, in addition to JSON, are now supported when generating or testing schemas in the UI (docs)

v1.25 Nov 9, 2021

Generate a schema in the UI from uploaded sample logs for quicker data onboarding (docs)

New security content that will expand built-in detections, helpers, and data models in Panther (repo)