- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
10-12-2011 08:48 PM
Botnet Reporting is a threat prevention feature. The PAN collates information from traffic, threat, URL logs to identify botnet-infected hosts. The report generated each day consists a list of infected hosts, description(why we believe the host is infected) and a Confidence level. You can configure the parameters in addition to the query indicating what traffic you'd like to see the botnet report on.
We do a very good job with zero day attacks through the combination of a few key capabilities:
We have a very close partnership with Microsoft via their MAPP program which gives us early access to most MS vulnerabilities, thus having signatures upon vulnerability disclosure. Our Threat Team is always proactively looking in the wild and researching new vulnerabilities. Our signatures are able to detect the attack against a vuln and not just the exploit. App-ID indirectly assists in detecting and prevention of new attacks as most uses high-risk apps as its mode of transportation. This will provide you another prevention method.
Regards,
Renato
10-13-2011 10:46 AM
In addition, you may contact your local Sales SE to see if there's anything on the roadmap related to your inquiry.
Regards,
Renato
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!