Can I use Python in a Derived Detection in Panther?
QUESTION
Can I use Python in a Derived Detection in Panther?
ANSWER
Logic cannot be overridden using Python in Panther. However, Python-defined values can be overridden if the appropriate override key is used. For instance, using DynamicSeverities will override the Python severity() function, but the standard Severity key will not. The limitations section of our documentation provides examples of some fields.
If you are interested in support of this feature, please contact Panther Support to put in a request.