The purpose of this board is to discuss everything related to custom signature creation in PAN-OS devices. Palo Alto Networks delivers a large quantity of coverage in our weekly content updates; however, we know that our customers are staffed by dedi
...
I am looking for the APP-ID based on the signatures that support NATO STANAG 4609 (Motion Imagery Standards Profile)
Hi team,
We have the (Cisco & Ruckus) Wireless controllers forwarding SYSLOGS to the User-ID agent running on Windows 2012 server.
We want to use these syslog messages to create user-ip mappings. We tried with several different regex patterns but not
...
Hi Team
I have a user who has a requirement to add a custom Data Pattern to identify a specific string
Example: 1234/09/4578
(Note the second identifier is a numeric value between [1-9])
I set up the data pattern under " Custom Objects --->Data Pa
...
I'm looking to submit a FQDN block where I don't ever block the IP.
I've reviewed this article on blocking FQDN's but can't seem to figure out how to ignore the IP. We assign fake ip addresses to known malicius sites, and need the HTTP, HTTPS, SSH, e
...
Today we built a custom vulnerability signature to block excessive request from one IP to wp-login.php.
wp-login.php thread-id 42106wp-login.php thread-id 42106wp-login.php thread-id 42106wp-login.php flood threat-id 42107wp-login.php flood threat-
...
nikoolayy1
on:
Frebniis Malware Hijacks Microsoft IIS Function to Deploy Backdoor
nikoolayy1
on:
Vulnerabilities
nikoolayy1
on:
SMTP Brute Force - different source IPs
nikoolayy1
on:
Has anyone done a custom APP to block recursive DNS queries?
nikoolayy1
on:
Minimal configuration for Custom Apps
nikoolayy1
on:
Custom signature for catch specific query
nikoolayy1
on:
Cortex XDR block file execution based on ico\file name
