This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
Testing WildFire
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- Discussions
- General Topics
- Re: Testing WildFire
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
Testing WildFire
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
03-12-2013 03:34 AM
I did some test on WildFire. I've created backdoors, link backdoor with a legitimate file, and playing around with malware, and obscure malware with the goal to bypass.
The result and scenarios can be found on my website.
Any comments or remarks are welcome
10 REPLIES 10
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
03-12-2013 06:42 AM
You mean this website? http://www.accessdenied.be
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
03-12-2013 06:53 AM
yes, on my site I store all the documents I've tested using my box
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
03-12-2013 01:19 PM
I guess you agree with me that Wildfire conclusion of what is benign and what is malware is a bit off?
Could perhaps someone from PaloAlto put some light on this matter?
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
03-13-2013 12:51 PM
Nice work man. Busy reading. Saw something in your file blocking profile that can be configured differently to ensure that only the correct file types are forwarded to Wildfire - I believe the correct file type for Wildfire is "PE". This of course includes .exe and .dll.
Related Content
- AIOps FREE displays no data in AIOps for NGFW Discussions
- Will ADEM ever come for Local Networks? in General Topics
- FW stops forwarding files to WF 500 in Next-Generation Firewall Discussions
- How to Test a Vulnerability Protection Rule in Next-Generation Firewall Discussions
- POC - To validate everything associated with Machine-Learning/Deep Learning PAN-OS - Features of URL Filtering, Wildfire, Threat Prevention Test in General Topics
Like what you see?
Show your appreciation!
Click Like if a post is helpful to you or if you just want to show your support.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks