CVE-2021-42574

Minemeld alternative

Hello ,

On of our customer is dependent on their partner for Minemeld EDL

The Partner is hosting the Minemeld server and now our customer is planning to build their own Minemeld

As Minemeld is no longer supported by PAN and is purely an open Source s

malware.azjf C2 traffic

Hi,

I am seeing a lot of traffic being identified as malware.azjf C2 traffic over the last couple of days since the last threat update. I have noticed a pattern that users are visiting Wordpress websites that use the owl carousel plugin and checking t

NetBIOS in todays world

Hi Community,

I'm curious about your opinions to NetBIOS traffic.

I'm aware, that you can disable NetBIOS per interface via ncpla.cpl or via DHCP options.

With typical customers and current systems, you still see netbios connection between Windows sys

Content-ID - Hold Client Request

Hi All,

I'm curious to know how many of you have implemented the URL Filtering best practise, Content-ID - 'Hold client request for category lookup' feature? This feature is of particular interest to me because without this feature, the logs of other

Palo Alto Firewall Swap Problem appliance is 100% (fully utilized)

Hello Team, 

we Faced an problem for as the following below :

(active)> show system resources

top - 08:06:55 up 277 days, 16:43, 1 user, load average: 0.21, 0.14, 0.14
Tasks: 124 total, 3 running, 120 sleeping, 0 stopped, 1 zombie
%Cpu(s): 3.4 us, 1.6 sy,

How to block a specific file with hash value?

Hi Guys, I am using a pair of PA820 with TP, URL Scan and WF. I received a list of hash values from my Authority but couldn't find any hits on VirusTotal. Without doubting my big boss, I wanted to manually block it in the firewall but could not find

False positive - Cisco HyperFlex HX Remote Command Execution - ID: 91836

Beginning this morning we are seeing lots of apparent false positives for threat ID: 91836 - Cisco HyperFlex HX RCE, which was added to the threat database last night. The destination server is in Wells Fargo IP space and we have determined that this

01996968

Is there any update ? could not find the case at portal ? Can you navigate ? 

Vulnerability found on Firewall Need to address

Hi Team,

We are getting following vulnerabilities on one of our PA Firewall. Kindly suggest the next PoA regarding mentioned vulnerabilities.

Plugin

Plugin Name

Family

Severity

IP Address

Type

84502

HSTS Missing From HTTPS Server

Web Servers

Medium

x.x.x.x

Pa

Certificate vulnerabilities

I have found several of my network devices are showing up within our vulnerability management scanner with X.509 Certificate Subject CN does not match the entity name as a vulnerability. This is more than likely a DNS issue as I do not have any netwo