Testing WildFire

Showing results for 
Show  only  | Search instead for 
Did you mean: 

Testing WildFire

L1 Bithead

I did some test on WildFire. I've created backdoors, link backdoor with a legitimate file, and playing around with malware, and obscure malware with the goal to bypass.

The result and scenarios can be found on my website.

Any comments or remarks are welcome


Not applicable

You mean this website? http://www.accessdenied.be

yes, on my site I store all the documents I've tested using my box

I guess you agree with me that Wildfire conclusion of what is benign and what is malware is a bit off?

Could perhaps someone from PaloAlto put some light on this matter?

L3 Networker

Nice work man. Busy reading. Saw something in your file blocking profile that can be configured differently to ensure that only the correct file types are forwarded to Wildfire - I believe the correct file type for Wildfire is "PE". This of course includes .exe and .dll.Filetype should be set to PE.png

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!