Panther Labs integration

Enable cybersecurity mesh architecture by visualizing your existing SIEM and other network and security services

Panther Labs powers security monitoring for many of the world’s premier brands. We provide a fast, flexible and scalable platform for threat detection and incident response, capable of analyzing terabytes of data per day in real-time. By adopting a serverless architecture and detection-as-code, Panther frees security teams from the slow performance, heavy operational overhead, and high cost of traditional SIEM. Panther was founded by a team of veteran security practitioners and is trusted by customers like Dropbox, Zapier, Snowflake, and more.

Supported integrations

  • Panther

appNovi retrieves logs in Panther and aggregates them with the rest of your logs to provide complete network-wide data visualization and analysis of IT assets. Consequently, you can search across all network IT assets through a general free-text search (free of proprietary query languages) or structure queries based on Boolean logic. With integrated triggers for SOAR products and ITSM solutions, you automate the handoff for the resolution of gaps in security controls, such as agent deployments on unmonitored assets.

Log data is retrieved via API from Panther and aggregated with other traffic and telemetry data sources to provide an understanding of network-wide connectivity. This single interface of network connections is ideal for understanding which connections are necessary for business continuity, and mapping out application resources, dependencies, and indirect dependencies on shared resources. Moreover, this immediate level of visibility and insight is critical for enabling non-disruptive incident response decisions.

Security events in Panther are aggregated in appNovi for inclusion in searches and visualization. Understanding highly probable threats enables effective prioritization of risk to improve vulnerability management, effective incident response through accurate analysis of data, and more effective attack surface identification and mapping.

Related Integrations

Splunk

ExtraHop

Rapid7

Panther

Fortinet

SentinelOne

Case Studies
Solution Briefs

appNovi Solution Brief

Learn about the appNovi cybersecurity mesh platform for attack surface identification and mapping, vulnerability management, and incident response enablement.

Resources

Explore how appNovi can help you align to CIS controls to mature vulnerability management, attack surface mapping, incident response, and data center migration processes.