1. Home
    2. Threat Prevention

    Threat Prevention defends your network against both commodity threats—which are pervasive but not sophisticated—and targeted, advanced threats perpetuated by organized cyber adversaries. Threat Prevention includes comprehensive exploit, malware, and command-and-control protection, and Palo Alto Networks frequently publishes updates that equip the firewall with the very latest threat intelligence. You can use the Threat Vault to research the latest threats that Palo Alto Networks next-generation firewalls can detect and prevent. 

    Latest Features

    Date Highlights
    28 February 2022 Palo Alto Networks Advanced Threat Prevention subscription—a new flagship intrusion prevention service—detects and prevents the latest advanced threats from infiltrating your network by leveraging deep learning models.
    This inline cloud-based threat detection and prevention engine defends your network from evasive and unknown command-and-control (C2) threats by inspecting all network traffic.
    12 February 2019

    The DNS Security subscription service applies predictive analytics to disrupt attacks that use DNS for command-and-control (C2) or data theft.
    12 February 2019 Attackers often use bulletproof hosting providers to distribute malicious, illegal, and unethical material—now you can block these services with a new, built-in external dynamic list.
    12 February 2019 PAN-OS 9.0 introduces better external dynamic lists (EDLs): now you have more capacity and the flexibility to prioritize important feeds.

    Getting Started

    1. Activate Threat Prevention License
    2. Configure Threat Prevention
    3. Schedule Threat Updates
    4. Get Threat Reports

    Featured Content

    Identify C2 Infected Hosts On Your Network

    Use DNS sinkholing to identify and quarantine hosts on your network that are attempting to communicate with malicious domains.

    Choose Version

    Prevent Layer 4 and Layer 7 Evasions

    Follow our best practices to monitor and protect your network from Layer 4 and Layer 7 attacks.

    Choose Version

    Threat Prevention FAQs

    Learn more about Threat Prevention works, and the many ways it can help you to defend against cyberattacks.

    Go Now

    Documentation for the PAN-OS Version You're Using

    Enhanced Authentication for Dedicated Log Collectors and WildFire Appliances

    Improve Authentication

    Threat Prevention with PAN-OS 10.0

    Threat Prevention with PAN-OS 10.0

    Threat Prevention with PAN-OS 9.1

    Threat Prevention with PAN-OS 9.1

    Threat Prevention with PAN-OS 10.1

    Threat Prevention with PAN-OS 10.1

    Threat Prevention with PAN-OS 9.0

    Threat Prevention with PAN-OS 9.0

    Threat Prevention with PAN-OS 10.2

    Threat Prevention with PAN-OS 10.2

    Threat Prevention with PAN-OS 8.1

    Threat Prevention with PAN-OS 8.1

    Videos

    Antivirus Profile Decoder Actions

    Check whether you're using the best practice configuration for Antivirus profile decoder actions and update your configuration.

    Best Practice Assessment Plus (BPA+) Tool Demo

    View the BPA+ demo, which shows you how to check your PAN-OS best practice configuration and update it if necessary.

    Antivirus Profile WildFire Decoder Action

    Check whether you're using the best practice configuration for Antivirus profile WildFire decoder actions and update your configuration.

    BPA+ YouTube Channel

    Click "View BPA+ Playlist" to access all of the BPA+ videos, including best practice network security checks and a demo.

    View BPA+ Playlist

    DNS Sinkhole in the Antivirus Profile

    Automatically quarantine compromised or infected hosts that access malicious domains.

    © 2022 Palo Alto Networks, Inc. All rights reserved.

    Techdocs Logo