Can I use Python in a Derived Detection in Panther?
Last updated: September 3, 2024
QUESTION
Can I use Python in a Derived Detection in Panther?
ANSWER
Logic cannot be overridden using Python in Panther. However, Python-defined values can be overridden if the appropriate override key is used. For instance, using DynamicSeverities will override the Python severity() function, but the standard Severity key will not. The limitations section of our documentation provides examples of some fields.
If you are interested in support of this feature, please contact Panther Support to put in a request.