Threat & Vulnerability Discussions
cancel
Showing results for 
Search instead for 
Did you mean: 
Threat & Vulnerability Discussions
About Threat & Vulnerability Discussions

Welcome to the Threat and Vulnerability discussion forum. This forum exists as a resource for security professionals to discuss and share information pertaining to the topics of threats and vulnerabilities.
Not a LIVEcommunity member? Simply click here and register!

Discussions

Resolved! File Blocking - .exe vs .exe

I was testing file blocking before implementation and .exe does not get entirely blocked. 2 different exe files, one from microsoft does not get blocked while another from nirsoft gets blocked. Is there a difference to what kind of exe files get bloc

...

raji_toor by L4 Transporter
  • 9046 Views
  • 4 replies
  • 0 Likes

DNSProxy - Resolve-Fail - cpsc.gov

Warning: very new to PANOS.

 

I'm seeing a TON of these messages, to the tune of about 2-300 per second in my system log: Failed to resolve domain name: cpsc.gov after trying all attempts to name server(s): mynameserverinternalip.

 

I've read that this d

...

HavisIT by L0 Member
  • 3364 Views
  • 0 replies
  • 5 Likes

Flurry of Ramnit Detections

Around 04:00-05:00 yesterday my users triggered a series of ramnit detections which were blocked, but when I looked at the logs  it seems a bit unclear.  The threat logs are reporting that the file postprocess.dll carried the malware, but tying the U

...

djr by L3 Networker
  • 2020 Views
  • 0 replies
  • 0 Likes

Tcp flood

Hi,

today from 15.10 to 16.10 I received more than 15600 calls from the same IP. The Windows 2012 server already has a function against SYN ATTACK and TCP FLOOD, and I see it on the tcp-rst-from-server log monitor, but they are very small compared to

...

attacco.jpg
flood.jpg
s_quasar by L3 Networker
  • 6893 Views
  • 2 replies
  • 0 Likes
Top Liked Authors