Can Panther ingest GCP VPC Flow logs?

QUESTION

Does Panther support ingestion of GCP VPC Flow logs and other Google Cloud/GCP log sources?

ANSWER

• For GCP VPC Flow logs, you can create a custom schema with Panther’s supported Google Cloud PubSub log source and using the field discovery feature.
• Logs from Google Cloud services (Cloud Storage, GKE, Cloud SQL, and Cloud DNS) are all supported via Panther’s GCP Audit log source, as they all generate audit logs.