05-01-2023 09:31 AM - edited 05-02-2023 05:57 AM
Thanks.
05-01-2023 10:05 AM
Antivirus has signatures for known malicious files.
Sandbox mean actually executing file and checking what it does. What kind of disk or registry reads/writes, what network connections it performs etc. So monitoring the behavior and deciding based on it if file is benign or malicious.
If company did not have wildfire then they either did not have budget for additional subscription or their fw admin was not familiar with Palo Alto's capabilities.
Basic WildFire is free. It allows executable file scanning.
WildFire subscription adds also other file types:
05-01-2023 09:49 AM - edited 05-01-2023 09:50 AM
WildFire will run files in sandbox, analyze and monitor their activity to identify zero-day malware that antivirus signatures don't catch.
05-01-2023 10:05 AM
Antivirus has signatures for known malicious files.
Sandbox mean actually executing file and checking what it does. What kind of disk or registry reads/writes, what network connections it performs etc. So monitoring the behavior and deciding based on it if file is benign or malicious.
If company did not have wildfire then they either did not have budget for additional subscription or their fw admin was not familiar with Palo Alto's capabilities.
Basic WildFire is free. It allows executable file scanning.
WildFire subscription adds also other file types:
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
