Get a Malware Test File (WildFire API)

Get a malware PE, MacOSX, APK, or ELF test file, which you can use to test end-to-end WildFire sample processing. For details on the sample file, see Test a Sample Malware File.
Unlike other WildFire API resources, the /testresources do not require an API key for authentication. It also is not available on the WildFire appliance.

Resource

/test
Code copied to clipboard
Unable to copy due to lack of browser support.

Request Parameters

Use the following form parameters when requesting a sample:
Parameters
Description
Example
pe
Code copied to clipboard
Unable to copy due to lack of browser support.
(Required) Test file type
Example:
https://wildfire.paloaltonetworks.com/publicapi/test/pe
Code copied to clipboard
Unable to copy due to lack of browser support.
macos
Code copied to clipboard
Unable to copy due to lack of browser support.
Example:
https://wildfire.paloaltonetworks.com/publicapi/test/macos
Code copied to clipboard
Unable to copy due to lack of browser support.
apk
Code copied to clipboard
Unable to copy due to lack of browser support.
Example:
https://wildfire.paloaltonetworks.com/publicapi/test/apk
Code copied to clipboard
Unable to copy due to lack of browser support.
elf
Code copied to clipboard
Unable to copy due to lack of browser support.
Example:
https://wildfire.paloaltonetworks.com/publicapi/test/elf
Code copied to clipboard
Unable to copy due to lack of browser support.

Example Request

Make a GET request to the /test resource with the file type you want to retrieve. Use the -JO option to retain the Content-Disposition filename, as shown in the following cURL command example:
curl -JO 'https://wildfire.paloaltonetworks.com/publicapi/test/pe'
Code copied to clipboard
Unable to copy due to lack of browser support.
The response saves the malware test file to your local system. Each time you download the test file, it has a different SHA-256 hash value.

Related Documentation