Threat & Vulnerability Discussions

About Threat & Vulnerability Discussions

Welcome to the Threat and Vulnerability discussion forum. This forum exists as a resource for security professionals to discuss and share information pertaining to the topics of threats and vulnerabilities.
Not a Live Community member? Simply click here and register for free!

Disclaimer:
Please use the information from this forum at your own risk and make sure to verify any information presented. For information on contacting Palo Alto Networks support, click here.

To report a vulnerability, click here.

Start a topic
  • Virus/Win32.WGeneric.ajqxax

    Starting yesterday I have seen virus alerts on my firewall relating to the above virus. The file names in ques...

    05-14-2020 Posted by hhiggins
    1 Replies
    184 Views
  • How to detect zip bomb file?

    Hi,I got following new malicious nature.https://fossbytes.com/zipbomb-unzips-46mb-file-into-4-5-petabytes/http...

    07-17-2019 Posted by Mt_103
    1 Replies
    2044 Views
  • DNS sinkhole v9.0.1

    Have 2 HA VMs with 9.0.1Following this article:https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/threa...

    04-11-2019 Posted by ash83
    8 Replies
    3492 Views
  • HIP Report information

    Hi,Is possible to extract the parameters showed after click the "magnifiying glass" button in Monitor --> H...

    10-10-2019 Posted by RicardoNeira
    4 Replies
    2428 Views
  • SkyVPN - Really a C2 threat?

    Hi, I have just spotted a treat alert of SkyVPN C2 traffic (ID 18871) in my logs and looked at the entry on th...

    03-31-2020 Posted by djr
    0 Replies
    320 Views
  • VPP Block IP and URL Filtering

    I have two questions, one of vulnerability protection and the other on URL FilteringFor Vulnerability Protecti...

    03-23-2020 Posted by ce1028
    9 Replies
    2072 Views
  • URL Filtering

    http://shodan.io/ URL is categorized as hacking website.Can someone advise as internal users want access to it...

    02-06-2020 Posted by FIDELE
    8 Replies
    2202 Views
  • ProxyGate.net

    Tips appreciated on how to identity and potentially block proxygate.net clients on a campus network. Proxygate...

    02-19-2020 Posted by groundLoop
    2 Replies
    855 Views
  • EDL - Talos block list

    I have various EDLs setup on various different PA models. Some work, and populate the list with IP's and effec...

    09-18-2017 Posted by solarstone
    8 Replies
    7867 Views
  • DNS Tunneling

    Im trrying to detect dns tunneling with custom signatures.i have some snort rules to begin.some of you have an...

    02-05-2020 Posted by Torito
    1 Replies
    707 Views
  • MineMeld sweet32/upgrade?

    Getting sweet32 detected on mindmeld server. Trying and failing to update.What is update process for Ubuntu 16...

    02-06-2020 Posted by craymer
    0 Replies
    651 Views
COVID-19 Response Center
Ask Questions Get Answers Join the Live Community
Top Liked Authors
Top Solution Authors