Skip to main content
Panther Knowledge Base

Can I convert detections from third-party tools into Panther detections?

  1. Last updated
  2. Save as PDF

QUESTION

Another SIEM-like tool uses detections in a manner similar to Panther. Can I import or convert their detections directly into Panther? 

ANSWER

Panther does not offer a conversion tool for creating rules and policies from other products, so detections like this must be converted into Python manually. 

All of our detections can be found under Panther-provided packs, and more can be found on our repository.

You can also use this third-party tool to find more examples of detections for threat techniques. Paste the identifier you want to create detections for in the search field and it will show repos of other companies that have detections for that technique. Some of these detections will come in different formats, so you will need to manually translate them to Python if you use them in your Panther Console. Please note that this tool is not maintained by or affiliated with Panther.

 

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Page type
    Topic
  2. Tags
    This page has no tags.