Is it possible to include nested fields in my Panther detection filters?
QUESTION
Is it possible to include nested fields in my Panther detection filters?
ANSWER
Yes, it is possible to use a nested field in the detection filters. For instance, if you want to use CommandLine, which is nested under the field event, you can add event.CommandLine.
