General Topics
cancel
Showing results for 
Search instead for 
Did you mean: 
General Topics

Discussions

Join Us for a Tech Deep Dive Miniseries!

 

Stop Zero-Day Threats in Zero Time with Nebula PAN-OS 10.2.

 

Join us live for an in-depth look at the latest advancements in cybersecurity, best practices, tips and tricks, demos and
more to protect your business and defend against threats in real

...

nebula-on-demand-tech-deep-dive-miniseries-live-community-banner-2600x600.jpg
jforsythe by Community Team Member
  • 451 Views
  • 3 replies
  • 1 Likes

Threat email alert throttling

We're setup to email threat alerts, and are getting an email for every alert generated.

Is there a way to throuttle the emails? Particularly for a single threat that is blocked, we don't need 60 emails/min for all the blocks. It would suffice for the

...

CHKlomp by L2 Linker
  • 1291 Views
  • 2 replies
  • 0 Likes

Demisto and Minemeld Integration

I was looking at Demisto and one of the supported integration was Minemeld. I tried adding our Dev Minemeld instance and was having an error saying : TypeError: HTTPError() is not JSON serializable.

I was wondeinrg if anyone was succesfully able to i

...

How to filter O365 API feed?

I would like to filter for indicators with the category "allow" or "optimize" only. How would you define the filter for that? I cannot find that much information regarding filtering using a processor. I hope my steps are correct? 

  1. create a new protot
...

mfepan by L1 Bithead
  • 6814 Views
  • 14 replies
  • 1 Likes

Resolved! Office 365 MineMeld Miner Will Need Updating

Microsoft has announced a change to their Office 365 address and url documentation that I believe will need to be taken into account on the O365 miner in MM.

 

https://myitforum.com/microsoft-phasing-out-office-365-urls-and-ip-address-ranges-resource

...

Resolved! Polling JSON Format for Okta

I am trying to create a prototype for a Miner that pulls IP's from a JSON formatted file. I have looked at the documentation for setting up a JSON miner (https://live.paloaltonetworks.com/t5/MineMeld-Articles/Using-MineMeld-to-extract-indicators-from

...

doliver1 by L0 Member
  • 9456 Views
  • 7 replies
  • 0 Likes

Diffie-Hellman-Groups: Why no brainpool curves?

While setting up a VPN with a Cisco ASA, I stumbled accross the quite small list of DH Groups implemented in PA firewalls.

So I wonder what the rationale was for choosing the implemented groups. As a German engineer working for goverment and other pub

...

mringel by L0 Member
  • 1060 Views
  • 0 replies
  • 1 Likes

Dynamically extract Autofocus tags

I would like to dynamically extract Autofocus tags with all of it's definitions(HTTP Activity, File Activity, Mutex Activity, Registry Activity, Digital Signer,...) to a csv file, or as a feed using Minemeld.

Nonsense configuration changes from "preview changes"

Hello everybody,

 

  from time to time, whenever I commit small changes to my PAN firewalls, if I click on the "Preview changes" button I see (beside my changes) a list of items and configuration partials that are moved around, ie custom report configu

...

grenzi by L3 Networker
  • 1596 Views
  • 2 replies
  • 0 Likes

Global Protect user id and machines

Hi ,

 

Is there anywhere that I can restrict that client vpn user "BOB "using the global protect that can connect only once and not many times the same time from different systems like I have users connecting from the mobiles , tablet and computer the

...

Top Liked Authors