Panther was created by the mainstream architect of StreamAlert, a cloud solution for automated analysis log sourced from Airbnb.
Panther is the next step for security teams that need a modern alternative to traditional SIEMs. They designed Panther on a huge scale, with rich and intuitive user experience, Python rules processing in the browser and AWS support.
Its mission is to provide an open platform for effective protection businesses from cyber threats and their security.
Panther is a powerful open source SIEM program with cloud support, designed to be:
- Flexible: Detect and support notifications with base Python for PagerDuty, Slack, MS Teams and more
- With scalability: Built-in server-free technologies for cost and efficiency modes to scale
- Fast: Real-time rule analysis, notification and automatic restoration
- Built-in: Analyze both security logs and cloud resources for absolute visibility
- Automated: Quick and easy solutions with AWS CloudFormation
- Safe: Less privileges and encrypted infrastructure you control
- Log analysis: Collection and analysis of log data with rules for threats and suspicious activity
- Incident response: SQL queries for long-term data, analytics, log correlation, and criminology.
- Cloud Information: Detect cloud infrastructure configuration and apply best practices.
- Automatic recovery: Automatic infrastructure correction where needed
Information on installing and using the program, you will find here.