Threat & Vulnerability Discussions
cancel
Showing results for 
Search instead for 
Did you mean: 
Threat & Vulnerability Discussions
About Threat & Vulnerability Discussions

Welcome to the Threat and Vulnerability discussion forum. This forum exists as a resource for security professionals to discuss and share information pertaining to the topics of threats and vulnerabilities.
Not a LIVEcommunity member? Simply click here and register!

Discussions

Vulnerability alerts

There is a web site www.vpnranks.com(35.170.95.4) that is identified as type=THREAT and App=HAS KNOWN VULNERABILITY.  As a result, it is blocked by our PAN firewalls (i.e. this is the info in the logs when I ping 35.175.95.4).  According to the PAN w

...

cottrell by L0 Member
  • 1612 Views
  • 1 replies
  • 0 Likes

unknown threat name

Our firewall detected a spyware "C2-Bitsight-Prirrit" with threat id 15006. But I can't find any information about this spyware on Palo Alto's support site. The id seems non-exist. Could it be a mistake? 

class not found

Hello,

I wrote a prototype from panos class.

then created local prototype in committer-config.yml, restarted minemeld, everything is up and running.

Then I created the prototype in /opt/minemeld/local/prototypes/***.yml, I can see it in Web UI.

I cloned

...

zulaa by L1 Bithead
  • 2297 Views
  • 1 replies
  • 0 Likes

Threat Logs

I believe I have everything configured correctly for threat prevention.  Able to see traffic in every log type except for threat.  Licensed and download/install is up to date.  Been through some generic troubleshooting steps that haven't helped.  Any

...

mcragg by L1 Bithead
  • 3773 Views
  • 3 replies
  • 0 Likes

Zone protection working and logging

Hi dears, 

 

I have a query regarding working of #ZoneProtection.

 

What should be the action for #flood protection ?

 

Does the packet allowed or security policy will be checked?

 

Also, packet capture should work if such flood is detected but i am not gett

...

Blocking Tor with Toro

I recently had to work with local and federal law enforcement to resolve the following.

 

http://www.ktvz.com/news/mtn-view-hs-bomb-threat-traced-to-eugene-14-year-old/653184885

 

Because of this, I've created a small piece of software (MIT Licensed) tha

...

jfolkins by L1 Bithead
  • 8407 Views
  • 8 replies
  • 1 Likes