-
Welcome to the Palo Alto Networks Custom Signature discussio...
The purpose of this board is to discuss everything related to custom signature creation in PAN-OS devices. Pal...
10-19-2015 Posted by rcole3 Replies4 Likes18139 Views
-
Custom objects signature - DNS query length
HelloI am trying to create a custom object / custom spyware signature based on dns-req-section that would aler...
03-21-2019 Posted by Tim_Bielders1 Replies0 Likes2260 Views
-
Application ID for MS-Edge
Due to the constraints placed on us by management, we don't support Chrome, and early on, I created a custom a...
02-24-2021 Posted by brian.saloum4 Replies0 Likes483 Views
-
Pattern regex less then 7 bytes
Hi all,I have been asked to create a new Application signature to block any access to /abc/*But when adding th...
02-21-2021 Posted by Noam.Rotter4 Replies0 Likes471 Views
-
Custom Snort Signature context operator not found
creating a custom snort signature on Palo alto Firewall but didn’t found the concern context operator for matc...
10-07-2020 Posted by Mohammed_Yasin1 Replies0 Likes877 Views
-
vulnerability signature with payload and negate
Hello.I'm trying to write a custom app and vulnerability signature. Signatures are based on UDP-payload.When I...
02-14-2021 Posted by MCervenka5 Replies0 Likes521 Views
-
Windows Update Delivery Optimization (WUDO) Custom App-ID
Just seeking a Custom App-ID forWindows Update Delivery Optimization (WUDO).
05-06-2019 Posted by DonJarmon4 Replies7 Likes5689 Views
-
Block Pubg and Fortnite
Hi,Is anyone tried to block PUBG and Fortnite? I tried everything its not able to, please suggest the step wou...
10-26-2020 Posted by asifkhandimensiondata0 Replies0 Likes692 Views
-
It's possible to block custom file hash-256 in Palo alto.
It's possible to block custom file hash-256It's possible to block custom file hash-256 in Palo alto.Please let...
09-14-2020 Posted by Mohammed_Yasin4 Replies0 Likes2200 Views
-
Custom threat signature- search full TCP payload of any AppI...
I'm trying to write a custom threat signature. The pattern matches just fine if I send it using netcat, but it...
09-15-2020 Posted by John.Petrucci2 Replies0 Likes1563 Views
-
control URL Filtering bypass by IP
Any way we can achieve this by creating custom signature that allows only valid http requests to URLs and not ...
07-22-2020 Posted by pshah11 Replies0 Likes1668 Views
-
create a custom url/custom application matching the below st...
I have a requirement, where the customer wants to allow only the below url:https://chrome.google.com/webstore/...
07-14-2020 Posted by saprakash0 Replies0 Likes1158 Views
-
Custom AppID for NAT-T traffic
I am looking for a way to identify NAT-T traffic on an IPSEC connection and define a custom app for it. To ide...
07-02-2020 Posted by tbrockmeye1 Replies0 Likes1872 Views
-
Allow iOS Ring doorbell
Hello,I'm looking for a proper way to allow the iOS Ring app to connect back to the video feed from an iOS dev...
04-25-2018 Posted by SethArnoff6 Replies0 Likes9403 Views
-
Virus/Win32.WGeneric.ajbecg(340897548) Need assistance
Hi Team,These are the below sign identified in our network and want to know the reason for this trigger.Please...
05-14-2020 Posted by Veerendra0 Replies0 Likes1400 Views
-
How to stop MortiAgent Malware using the snort rule ?
I want to stop the MortiAgent malware by applying /using snort rule & also using yara rule?How to configur...
05-07-2020 Posted by Mohammed_Yasin0 Replies0 Likes8738 Views
