The cloud-delivered WildFire® malware analysis service uses data and threat intelligence from the industry’s largest global community, and applies advanced analysis to automatically identify unknown threats and stop attackers in their tracks.


Release Highlights

Date Highlights
09 September 2022

Effective February 1, 2023, all submissions from Proofpoint integration will be counted against daily WildFire API limits. This change affects only Proofpoint integration through the WildFire API. It does not affect any WildFire file submissions via other Palo Alto Networks products, such as the NGFW platform, Prisma, or Cortex.

WildFire API file submissions and queries have a default daily limit. To address the needs of customers that require higher usage limits, Palo Alto Networks introduced the WildFire API SKU to allow customers to purchase higher limits on Nov 2, 2021.

Please consult Palo Alto Networks support site to view your organization’s current WildFire API limits and usage to determine if you will need to purchase additional WildFire API capacity for your ongoing Proofpoint integration usage.

Please contact your Palo Alto Networks account team if you have further questions.

01 September 2022 Effective October 1, 2022, the cloud-delivered WildFire malware analysis service will no longer operate a dynamic analysis environment that replicates Microsoft Windows XP 32-bit. WildFire uses a variety of malware detection techniques to provide the same capability and ensure that this change will not affect the detection of Windows XP-based malware. This change does not apply to the WF-500 or WF-500-B appliances.

Please contact your Palo Alto Networks account team if you have further questions.
07 June 2022 New WildFire platform: the WF-500B appliance
15 March 2022 Shell Script Analysis Support For WildFire Inline ML
28 February 2022 Nebula PAN-OS 10.2 is now available. Learn more about the release in the New Features Guide
16 November 2021 Standalone WildFire API Subscription
14 October 2021 WildFire India Cloud
21 September 2021 MSI, IQY, and SLK File Analysis
22 July 2021 MS Office File Analysis Support For WildFire Inline ML
20 July 2021 WildFire Germany Cloud
3 June 2021 WildFire 10.1 is available! For more information, refer to the New Features Guide
23 March 2021 WildFire Australia Cloud
21 January 2021 Executable and Linked Format (ELF) Analysis Support for WildFire Inline ML
15 January 2021 Global URL Analysis (All WildFire Clouds)
30 October 2020 WildFire Canada Cloud
8 July 2020 WildFire UK Cloud
15 July 2020 WildFire 10.0 is available! For more information, refer to the New Features Guide
7 July 2020 URL Analysis (WildFire Global Cloud Only [U.S.])
9 January 2020 HTML Application and Link File Analysis
18 December 2019 WildFire 9.1 is available! For more information, refer to the New Features Guide.
31 October 2019 WildFire 8.0 is now EOL
August 2019 Recursive Analysis
August 2019 Perl Script Analysis
July 2019 WildFire U.S. Government Cloud
July 2019 Real-Time WildFire Verdicts: PDF and APK Files
June 2019 Batch File Analysis
April 2019 Real-Time WildFire Verdicts: PE and ELF Files
Feb 2019

New Firewall Features with PAN-OS 9.0!

Jan 2019 Real-Time WildFire Verdicts: Documents
Looking for more?  See everything we've been working on...


WildFire Cloud Regions

WildFire Best Practices

Latest Wildfire Analysis Features


WildFire® Administrator's Guide

The WildFire™ cloud service analyzes files and email links to detect threats and create protections to block malware. When WildFire identifies a zero-day threat, it globally distributes protection for that threat in under five minutes. The WildFire Administrator's Guide describes how WildFire works, how to start forwarding unknown files to WildFire for analysis, and how to block malware that WildFire identifies. You'll also find everything you need to set up and manage a WildFire appliance and WildFire appliance clusters — the WildFire appliance is an on-premise WildFire solution for organizations that cannot send files out of the network for analysis.

WildFire API Reference

The WildFire™ API extends the malware detection capabilities of WildFire through a RESTful XML-based API. Using the WildFire API, you can automate the submission of files and links to WildFire or a WildFire appliance for analysis, and to query WildFire for verdicts, samples, and reports.

WildFire® What's New Guide

Learn all about the latest features in WildFire, the Palo Alto Networks malware analysis service. Here you'll find everything new that we've been working on for the WildFire cloud, WildFire appliances, and related updates to Palo Alto Networks firewalls. You'll also find a list of open issues that we're working on to improve your WildFire experience.

PAN-OS® Release Notes

Thinking about upgrading your next-gen firewalls and Panorama to PAN-OS 9.1? Before you begin, make sure you review the release notes to learn about known issues, issues we've addressed in the release, and changes in behavior that may impact your existing deployment.

Related Documents

Translated WildFire Documentation

WildFire Acceptable Use Policy


Preventing Successful Attacks With WildFire

Antivirus Profile WildFire Decoder Actions (BPA+)

Check whether you're using the best practice configuration for Antivirus profile WildFire decoder actions and update your configuration.

WildFire and Threat Prevention: How to Stop the Adversary

Best Practice Assessment Plus (BPA+) Tool Demo

View the BPA+ demo, which shows you how to check your PAN-OS best practice configuration and update it if necessary.

Protect Against Phishing and Malicious Sites

BPA+ YouTube Channel

Click "View BPA+ Playlist" to access all of the BPA+ videos, including best practice network security checks and a demo.