diff --git a/packs/asana.yml b/packs/asana.yml index d346d0f88..14abb221f 100644 --- a/packs/asana.yml +++ b/packs/asana.yml @@ -16,4 +16,5 @@ PackDefinition: # Globals used in these detections - panther_asana_helpers - panther_base_helpers + - panther_config DisplayName: "Panther Asana Pack" diff --git a/packs/atlassian.yml b/packs/atlassian.yml index 28c5c25a4..944b942e0 100644 --- a/packs/atlassian.yml +++ b/packs/atlassian.yml @@ -6,4 +6,5 @@ PackDefinition: - Atlassian.User.LoggedInAsUser # Globals used in these detections - panther_base_helpers + - panther_config DisplayName: "Panther Atlassian Pack" diff --git a/packs/auth0.yml b/packs/auth0.yml index 1bc288ac4..e1495327c 100644 --- a/packs/auth0.yml +++ b/packs/auth0.yml @@ -17,4 +17,5 @@ PackDefinition: - panther_base_helpers - panther_auth0_helpers - global_filter_auth0 + - panther_config DisplayName: "Panther Auth0 Pack" diff --git a/packs/aws.yml b/packs/aws.yml index 62bfae245..ee81bd293 100644 --- a/packs/aws.yml +++ b/packs/aws.yml @@ -145,3 +145,4 @@ PackDefinition: - panther_greynoise_helpers - panther_lookuptable_helpers - panther_oss_helpers + - panther_config diff --git a/packs/aws_cis.yml b/packs/aws_cis.yml index bf0be9ee8..f13fa6325 100644 --- a/packs/aws_cis.yml +++ b/packs/aws_cis.yml @@ -38,4 +38,5 @@ PackDefinition: # Globals used in these detections - panther_base_helpers - panther_oss_helpers + - panther_config DisplayName: "Panther AWS CIS Pack" diff --git a/packs/azure_signin.yml b/packs/azure_signin.yml index d8a165841..fda95493a 100644 --- a/packs/azure_signin.yml +++ b/packs/azure_signin.yml @@ -10,4 +10,5 @@ PackDefinition: - global_filter_azuresignin - panther_azuresignin_helpers - panther_base_helpers + - panther_config DisplayName: "Panther Azure.Audit SignIn Pack" diff --git a/packs/cloudflare.yml b/packs/cloudflare.yml index 05a6f75b6..56731ddf3 100644 --- a/packs/cloudflare.yml +++ b/packs/cloudflare.yml @@ -14,3 +14,4 @@ PackDefinition: - panther_greynoise_helpers - panther_lookuptable_helpers - global_filter_cloudflare + - panther_config diff --git a/packs/credential_security.yml b/packs/credential_security.yml index 23c5c5251..59129ea82 100644 --- a/packs/credential_security.yml +++ b/packs/credential_security.yml @@ -16,6 +16,7 @@ PackDefinition: - panther_base_helpers - panther_default - panther_event_type_helpers + - panther_config # Rules - AWS.CloudTrail.RootPasswordChanged - AWS.IAM.AccessKeyCompromised diff --git a/packs/crowdstrike.yml b/packs/crowdstrike.yml index d3e7a51ed..5c2f6cf4e 100644 --- a/packs/crowdstrike.yml +++ b/packs/crowdstrike.yml @@ -21,6 +21,7 @@ PackDefinition: - Crowdstrike.Macos.Osascript.Administrator # Globals used in these detections - panther_base_helpers + - panther_config # Data models - Standard.Crowdstrike.FDR DisplayName: "Panther Crowdstrike Pack" diff --git a/packs/duo.yml b/packs/duo.yml index bd80f7073..a0e59e8be 100644 --- a/packs/duo.yml +++ b/packs/duo.yml @@ -22,3 +22,4 @@ PackDefinition: # Globals used in these detections - panther_base_helpers - panther_duo_helpers + - panther_config diff --git a/packs/gcp_audit.yml b/packs/gcp_audit.yml index 488b7f00d..cb667d3f3 100644 --- a/packs/gcp_audit.yml +++ b/packs/gcp_audit.yml @@ -39,4 +39,5 @@ PackDefinition: - panther_event_type_helpers - gcp_base_helpers - gcp_environment + - panther_config DisplayName: "Panther GCP Audit Pack" diff --git a/packs/github.yml b/packs/github.yml index 3349e4908..63ab6fa70 100644 --- a/packs/github.yml +++ b/packs/github.yml @@ -30,3 +30,4 @@ PackDefinition: - panther_event_type_helpers - panther_oss_helpers - global_filter_github + - panther_config diff --git a/packs/gravitational_teleport.yml b/packs/gravitational_teleport.yml index 4c9fb8e2b..076815739 100644 --- a/packs/gravitational_teleport.yml +++ b/packs/gravitational_teleport.yml @@ -10,4 +10,5 @@ PackDefinition: - Teleport.SuspiciousCommands # Globals used in these detections - panther_base_helpers + - panther_config DisplayName: "Panther Teleport Pack" diff --git a/packs/greynoise_advanced.yml b/packs/greynoise_advanced.yml index 44f89a12a..09f7971f5 100644 --- a/packs/greynoise_advanced.yml +++ b/packs/greynoise_advanced.yml @@ -8,4 +8,5 @@ PackDefinition: - panther_base_helpers - panther_greynoise_helpers - panther_lookuptable_helpers + - panther_config DisplayName: "GreyNoise Advanced" diff --git a/packs/greynoise_basic.yml b/packs/greynoise_basic.yml index 9eacc1772..eccc80d16 100644 --- a/packs/greynoise_basic.yml +++ b/packs/greynoise_basic.yml @@ -8,4 +8,5 @@ PackDefinition: - panther_base_helpers - panther_greynoise_helpers - panther_lookuptable_helpers + - panther_config DisplayName: "GreyNoise Basic" diff --git a/packs/ipinfo.yml b/packs/ipinfo.yml index 791b2c09f..a54fcb2b1 100644 --- a/packs/ipinfo.yml +++ b/packs/ipinfo.yml @@ -12,4 +12,5 @@ PackDefinition: - panther_base_helpers - panther_ipinfo_helpers - panther_lookuptable_helpers + - panther_config DisplayName: "IPInfo" diff --git a/packs/mongodb.yml b/packs/mongodb.yml index bcd29ddf3..96a34bc5c 100644 --- a/packs/mongodb.yml +++ b/packs/mongodb.yml @@ -8,3 +8,4 @@ PackDefinition: - MongoDB.External.UserInvited # Globals - panther_base_helpers + - panther_config diff --git a/packs/notion.yml b/packs/notion.yml index 4e6b28bfa..3ee9f3cd0 100644 --- a/packs/notion.yml +++ b/packs/notion.yml @@ -20,6 +20,7 @@ PackDefinition: - panther_oss_helpers - panther_notion_helpers - global_filter_notion + - panther_config # Data Model - Standard.Notion.AuditLogs DisplayName: "Panther Notion Pack" diff --git a/packs/okta.yml b/packs/okta.yml index 603d6546b..ac5b33ce7 100644 --- a/packs/okta.yml +++ b/packs/okta.yml @@ -29,6 +29,7 @@ PackDefinition: - panther_base_helpers - panther_oss_helpers - panther_event_type_helpers + - panther_config # Data Model - Standard.Okta.SystemLog DisplayName: "Panther Okta Pack" diff --git a/packs/onelogin.yml b/packs/onelogin.yml index 3555a3da0..e004327df 100644 --- a/packs/onelogin.yml +++ b/packs/onelogin.yml @@ -17,4 +17,5 @@ PackDefinition: # Globals used in these detections - panther_base_helpers - panther_oss_helpers + - panther_config DisplayName: "Panther OneLogin Pack" diff --git a/packs/onepassword.yml b/packs/onepassword.yml index f4b418a9d..ecdff0ca0 100644 --- a/packs/onepassword.yml +++ b/packs/onepassword.yml @@ -11,3 +11,4 @@ PackDefinition: # Supporting Global Helpers - panther_base_helpers - panther_event_type_helpers + - panther_config diff --git a/packs/osquery.yml b/packs/osquery.yml index 41a8ad3e4..193bc32d8 100644 --- a/packs/osquery.yml +++ b/packs/osquery.yml @@ -16,4 +16,5 @@ PackDefinition: - Osquery.SuspiciousCron # Globals used in these detections - panther_base_helpers + - panther_config DisplayName: "Panther OSQuery Pack" diff --git a/packs/panther.yml b/packs/panther.yml index 1d5ffabc4..a2801b129 100644 --- a/packs/panther.yml +++ b/packs/panther.yml @@ -12,4 +12,5 @@ PackDefinition: # Helpers - panther_base_helpers - panther_event_type_helpers + - panther_config DisplayName: "Panther Audit Logs Pack" diff --git a/packs/sentinelone.yml b/packs/sentinelone.yml index 77eb5b998..f851060cd 100644 --- a/packs/sentinelone.yml +++ b/packs/sentinelone.yml @@ -7,4 +7,5 @@ PackDefinition: - SentinelOne.Threats # Globals used in these detections - panther_base_helpers + - panther_config DisplayName: "Panther SentinelOne Pack" diff --git a/packs/slack.yml b/packs/slack.yml index b7af19334..1d0235f98 100644 --- a/packs/slack.yml +++ b/packs/slack.yml @@ -29,3 +29,4 @@ PackDefinition: # Globals used in these rules/policies - panther_base_helpers - panther_oss_helpers + - panther_config diff --git a/packs/snyk.yml b/packs/snyk.yml index d1cc27337..a0484d41e 100644 --- a/packs/snyk.yml +++ b/packs/snyk.yml @@ -18,3 +18,4 @@ PackDefinition: - global_filter_snyk - panther_base_helpers - panther_snyk_helpers + - panther_config diff --git a/packs/tailscale.yml b/packs/tailscale.yml index be101abab..8a7c4bba5 100644 --- a/packs/tailscale.yml +++ b/packs/tailscale.yml @@ -10,4 +10,5 @@ PackDefinition: - panther_base_helpers - panther_tailscale_helpers - global_filter_tailscale + - panther_config DisplayName: "Panther Tailscale Pack" diff --git a/packs/tines.yml b/packs/tines.yml index 08a815560..239486be7 100644 --- a/packs/tines.yml +++ b/packs/tines.yml @@ -16,3 +16,4 @@ PackDefinition: - global_filter_tines - panther_base_helpers - panther_tines_helpers + - panther_config diff --git a/packs/tor.yml b/packs/tor.yml index 5c9b444c2..4cf2397aa 100644 --- a/packs/tor.yml +++ b/packs/tor.yml @@ -7,4 +7,5 @@ PackDefinition: - panther_base_helpers - panther_lookuptable_helpers - panther_tor_helpers + - panther_config DisplayName: "Tor Lookup Tables" diff --git a/packs/zendesk.yml b/packs/zendesk.yml index efcb1ecfa..3abba045e 100644 --- a/packs/zendesk.yml +++ b/packs/zendesk.yml @@ -16,3 +16,4 @@ PackDefinition: # Globals - panther_base_helpers - panther_event_type_helpers + - panther_config diff --git a/packs/zoom.yml b/packs/zoom.yml index 35857ceee..4ae78d44b 100644 --- a/packs/zoom.yml +++ b/packs/zoom.yml @@ -18,3 +18,4 @@ PackDefinition: - panther_base_helpers - panther_oss_helpers - panther_zoom_helpers + - panther_config