Advanced WildFire Powered by Precision AI™
Advanced WildFire Overview
Table of Contents
Expand All
|
Collapse All
Advanced WildFire
-
-
- Forward Files for Advanced WildFire Analysis
- Manually Upload Files to the WildFire Portal
- Forward Decrypted SSL Traffic for Advanced WildFire Analysis
- Enable Advanced WildFire Inline Cloud Analysis
- Enable Advanced WildFire Inline ML
- Enable Hold Mode for Real-Time Signature Lookup
- Configure the Content Cloud FQDN Settings
- Sample Removal Request
- Firewall File-Forwarding Capacity by Model
-
-
-
- set deviceconfig cluster
- set deviceconfig high-availability
- set deviceconfig setting management
- set deviceconfig setting wildfire
- set deviceconfig system eth2
- set deviceconfig system eth3
- set deviceconfig system panorama local-panorama panorama-server
- set deviceconfig system panorama local-panorama panorama-server-2
- set deviceconfig system update-schedule
- set deviceconfig system vm-interface
-
- clear high-availability
- create wildfire api-key
- delete high-availability-key
- delete wildfire api-key
- delete wildfire-metadata
- disable wildfire
- edit wildfire api-key
- load wildfire api-key
- request cluster decommission
- request cluster reboot-local-node
- request high-availability state
- request high-availability sync-to-remote
- request system raid
- request wildfire sample redistribution
- request system wildfire-vm-image
- request wf-content
- save wildfire api-key
- set wildfire portal-admin
- show cluster all-peers
- show cluster controller
- show cluster data migration status
- show cluster membership
- show cluster task
- show high-availability all
- show high-availability control-link
- show high-availability state
- show high-availability transitions
- show system raid
- submit wildfire local-verdict-change
- show wildfire
- show wildfire global
- show wildfire local
- test wildfire registration
Advanced WildFire Overview
Where Can I Use This? | What Do I Need? |
---|---|
|
|
Advanced WildFire™ provides detection and prevention of zero-day
malware using a combination of dynamic / static analysis and Intelligent Run-time
Memory Analysis to detect highly evasive threats and create protections
to block malware.
The Advanced WildFire Analysis
Environment identifies previously unknown malware and generates
signatures that Palo Alto Networks NGFWs can use to then detect
and block the malware. When a Palo Alto Networks firewall detects
an unknown sample, the firewall automatically
forwards all supported file
types from any application to the WildFire public-cloud service
for Advanced WildFire analysis. Based on the properties, behaviors,
and activities the sample displays when analyzed and executed in
the sandbox, Advanced WildFire determines the sample to be benign,
grayware, phishing, or malicious, and then generates signatures
to recognize the newly-discovered malware, and makes the latest
signatures globally available for retrieval in real-time. All Palo
Alto Networks firewalls can then compare incoming samples against
these signatures to automatically block the malware first detected
by a single firewall.
To learn more about Advanced WildFire, or to get started, see
the following topics:
- Review Advanced WildFire Concepts to learn more about the types of samples you can submit for WildFire analysis, WildFire verdicts, and WildFire signatures.
- Learn more about Advanced WildFire Deployments deployments you can set up with the firewall. You can submit samples you would like to have analyzed to a Palo Alto Networks-hosted WildFire cloud, a locally-hosted WildFire private cloud, or you can use a hybrid cloud, where the firewall submits certain samples to the public cloud and certain samples to a private cloud.
- Get Started with Advanced WildFire to define the samples that you want to submit for analysis, and to begin submitted samples to a WildFire cloud.
- If you are deploying a WildFire appliance, refer to the WildFire Appliance Administration.