diff --git a/packs/cloudflare.yml b/packs/cloudflare.yml
new file mode 100644
index 000000000..eb80226b9
--- /dev/null
+++ b/packs/cloudflare.yml
@@ -0,0 +1,15 @@
+AnalysisType: pack
+PackID: PantherManaged.Cloudflare
+DisplayName: Panther Cloudflare Pack
+Description: Group of all Cloudflare detections
+PackDefinition:
+  IDs:
+    - Cloudflare.Firewall.L7DDoS
+    - Cloudflare.Firewall.HighVolumeEventsBlocked
+    - Cloudflare.Firewall.HighVolumeEventsBlockedGreyNoise
+    - Cloudflare.Firewall.SuspiciousEventGreyNoise
+    - Cloudflare.HttpRequest.BotHighVolume
+    - Cloudflare.HttpRequest.BotHighVolumeGreyNoise
+    # Globals used in these rules/policies
+    - panther_cloudflare_helpers
+    - panther_greynoise_helpers
diff --git a/packs/slack.yml b/packs/slack.yml
new file mode 100644
index 000000000..26c2ccbb5
--- /dev/null
+++ b/packs/slack.yml
@@ -0,0 +1,30 @@
+AnalysisType: pack
+PackID: PantherManaged.Slack
+DisplayName: Panther Slack Pack
+Description: Group of all Slack detections
+PackDefinition:
+  IDs:
+    - Slack.AuditLogs.AppAccessExpanded
+    - Slack.AuditLogs.AppAdded
+    - Slack.AuditLogs.AppRemoved
+    - Slack.AuditLogs.ApplicationDoS
+    - Slack.AuditLogs.DLPModified
+    - Slack.AuditLogs.EKMConfigChanged
+    - Slack.AuditLogs.EKMSlackbotUnenrolled
+    - Slack.AuditLogs.EKMUnenrolled
+    - Slack.AuditLogs.IDPConfigurationChanged
+    - Slack.AuditLogs.InformationBarrierModified
+    - Slack.AuditLogs.IntuneMDMDisabled
+    - Slack.AuditLogs.LegalHoldPolicyModified
+    - Slack.AuditLogs.MFASettingsChanged
+    - Slack.AuditLogs.OrgCreated
+    - Slack.AuditLogs.OrgDeleted
+    - Slack.AuditLogs.PassthroughAnomaly
+    - Slack.AuditLogs.PotentiallyMaliciousFileShared
+    - Slack.AuditLogs.PrivateChannelMadePublic
+    - Slack.AuditLogs.ServiceOwnerTransferred
+    - Slack.AuditLogs.SSOSettingsChanged
+    - Slack.AuditLogs.UserPrivilegeEscalation
+    # Globals used in these rules/policies
+    - panther_base_helpers
+    - panther_oss_helpers