Security Lifecycle Review (SLR) Support and Updates

See what’s new, and the issues we’re working on to make Security Lifecycle Review (SLR) even better.
Here’s what’s new in Security Lifecycle Review (SLR), the issues we’re working on to make your reports even better, and contact information for you to provide product feedback.

SLR Support

If you need support or would like to provide general feedback, please contact the SLR team at: slr_support@paloaltonetworks.com.

What’s New

Learn about new SLR features, and how they can give you a view into your organization’s risk exposure.
Release
New Features
May 2020
A new navigation bar gives you easy access to SLR report features and customization options:
  • SLR Help Resources
    —Launch the guided report tour, or access the Security Lifecycle Review Quick Start Guide.
  • Pagination
    —Add or remove pages or page numbers, or skip to a specific page in the report.
  • PDF Report
    —Download the report in PDF format.
  • Send Feedback
    —Report issues directly from the app.
left-nav.png
August 2019
We’ve added a new section to the SLR report! DNS is an often overlooked attack vector—advanced attackers in particular use DNS-based techniques like DNS tunneling and domain generation algorithms (DGAs) to exfiltrate data and set up command-and-control (C2) communication channels. The new DNS Security Analysis section gives you visibility in to threats hidden within DNS traffic. Learn more about what’s in an SLR report or create a new SLR report now.
report-sections-dns.png
April 2019
New Threat Data
The Threats section of an SLR report summarizes your organization’s risk exposure by breaking down the attacks detected in your network. Threat data now shows you:
Keep reading to learn more about each of these features...
Malware That Was First Detected at the Endpoint
Get visibility into the malware on your network that was first found on an endpoint. This shows you malware that might go undetected without an endpoint security solution in place, or without a solution that works consistently with your network security policy.
report-threat-endpoint-samples.png
The availability of information on malware detected on the endpoint is based on the products deployed and the malware found in the network.
Real-World Context for Threats
AutoFocus tags show you when malware indicates a larger threat—like a targeted campaign or the activity of a specific malicious actor. AutoFocus tags in your SLR report give you context for the malicious activity on your network, and can help you to think about where to focus both prevention and remediation efforts.
report-threat-af-intel.png
The Countries Threats Are Targeting
Now you can see the geographic locations that are most targeted by the malware found on your network.
report-threat-dest-country.png

Known Issues

We’re working on the following open issues to improve your SLR experience:
Issue
Description
FIXED on March 5, 2019
SLR does not include summary details for unknown malware detected by WildFire.
As of March 5, 2019, SLR reports include summary details for malware that was unknown before WildFire detection. See the Threats section in an SLR report for details on unknown malware found in your network.

Recommended For You