AutoFocus™ allows you to export artifacts that WildFire™ has frequently detected with malware, such as IP addresses, URLs, or domains. To export artifacts, you must first add artifacts found in AutoFocus to an export list. Then, select some or all of the artifacts in the export list to include them in a comma-separated value (CSV) file, which you can then import into a security information and event management (SIEM) solution. You can also use the file to dynamically enforce policy on a Palo Alto Networks® firewall.