Skip to main content
Panther Knowledge Base

Can I use Panther Data Model fields in my queries?

  1. Last updated
  2. Save as PDF

QUESTION

Panther supports using Data Models to standardize event fields within detections. Can I use these fields in my data queries as well?

ANSWER

Panther currently doesn't allow Data Model fields to be used in scheduled queries or the Data Explorer. However, we do have a set of standard fields which all log events use, and these are valid for use within queries.

If this is a feature you'd like to see implemented, please contact your CSM or our support team and share your use case!

 

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Page type
    Topic
  2. Tags
    This page has no tags.