https://live.paloaltonetworks.com/t5/general-topics/pcap-on-threats/m-p/20787#M15179 <HTML><HEAD></HEAD><BODY><P>Can someone explain why PCAPs on threats would be useful or how to download?</P></BODY></HTML> Thu, 07 Mar 2013 20:11:45 GMT amansour 2013-03-07T20:11:45Z https://live.paloaltonetworks.com/t5/general-topics/pcap-on-threats/m-p/20787#M15179 <HTML><HEAD></HEAD><BODY><P>Can someone explain why PCAPs on threats would be useful or how to download?</P></BODY></HTML> Thu, 07 Mar 2013 20:11:45 GMT https://live.paloaltonetworks.com/t5/general-topics/pcap-on-threats/m-p/20787#M15179 amansour 2013-03-07T20:11:45Z https://live.paloaltonetworks.com/t5/general-topics/pcap-on-threats/m-p/20788#M15180 <HTML><HEAD></HEAD><BODY><P>You may want to check out this thread below for helpful answers. As always, searching before posting reduces clutter on forums. <img id="smileywink" class="emoticon emoticon-smileywink" src="https://live.paloaltonetworks.com/i/smilies/16x16_smiley-wink.png" alt="Smiley Wink" title="Smiley Wink" /></P><P></P><P><A href="https://live.paloaltonetworks.com/message/24103">What is the reason for packet capture?</A></P><P></P><P>A.</P><P><EM>(Now shamelessly accepting the next 51 friend requests.)</EM></P></BODY></HTML> Thu, 07 Mar 2013 20:15:49 GMT https://live.paloaltonetworks.com/t5/general-topics/pcap-on-threats/m-p/20788#M15180 Abs 2013-03-07T20:15:49Z https://live.paloaltonetworks.com/t5/general-topics/pcap-on-threats/m-p/20789#M15181 <HTML><HEAD></HEAD><BODY><P>If you are creating custom vulnerability signatures with multiple "or conditions" you like to know which condition triggers the signature.&nbsp; This helps for tuning and refining the signatures.&nbsp; This is in addition to those reasons listed in the thread mentioned above.</P><P></P><P>Phil </P></BODY></HTML> Thu, 07 Mar 2013 23:07:26 GMT https://live.paloaltonetworks.com/t5/general-topics/pcap-on-threats/m-p/20789#M15181 HITSSEC 2013-03-07T23:07:26Z https://live.paloaltonetworks.com/t5/general-topics/pcap-on-threats/m-p/20790#M15182 <HTML><HEAD></HEAD><BODY><P>Pcaps on threats detected can also assist our Content Team determine root cause on possible false positives.</P></BODY></HTML> Fri, 08 Mar 2013 15:12:05 GMT https://live.paloaltonetworks.com/t5/general-topics/pcap-on-threats/m-p/20790#M15182 gswcowboy 2013-03-08T15:12:05Z