WildFire

WildFire: Sandbox analysis to identify and block unknown threats.

Attacks on your network are increasingly driven by sophisticated malware designed to avoid traditional antivirus controls. WildFire extends the capabilities of our next-generation firewalls to identify and block targeted and unknown malware by actively analysing it in a safe, cloud-based virtual environment. In our ‘sandbox,’ we directly observe the behavior of malicious malware, then through WildFire we automatically generate and distribute protections globally for the newly discovered malware. A subscription to WildFire allows you to better protect your network.

Learn more about the APT Prevention Feature.

WildFire Datasheet

Turning the Power of the Cloud Against Malware

WildFire is built on a revolutionary architecture. It takes the full visibility and in-line enforcement of our next-generation firewall, and weds it to a centralised cloud-based virtual environment where new and unknown files can be actively executed and observed for malicious behaviors. The WildFire cloud can be delivered either as a public cloud (default) or as a private cloud (deployed locally on a WF-500 appliance).

Whether deployed as a public or private cloud, the WildFire architecture is uniquely designed to meet the demands of safely analysing large numbers of potentially malicious files. With WildFire, the virtual malware environment is shared across all firewalls, as opposed to deploying single-use hardware at every ingress/egress point and network point of presence. This approach ensures maximum sharing of malware information, while minimising the hardware requirements of the task.

Automatically Protect Users and Stop Outbreaks

Detecting a threat is always the first step, but the real value of WildFire lies in protecting your users and network. When WildFire identifies new malware, within an hour it automatically generates and delivers protections to all WildFire subscribers worldwide. This allows subscribers to quickly share in the intelligence we gather from all WildFire users, and stop malware outbreaks before they spread.

WildFire also analyses command-and-control behaviors, URLs, and DNS patterns to identify and block traffic from any users who may already be infected. In addition, as a true inline firewall, Palo Alto Networks always retains the ability to directly drop malicious traffic instead of relying solely on TCP resets, which can easily be filtered or ignored by malicious endpoints.

Correlation and Reporting

WildFire provides you with a wealth of analysis and forensics on all malicious files seen on your network. The WildFire portal is available to all WildFire users. The information gives you a window into malware behavior including:

  • Malicious actions
  • Domains the sample visited
  • Files that were created
  • Affected registry entries

Customers with a WildFire subscription also get access to fully integrated WildFire logs and reports via the standard Palo Alto Networks user interface or through Panorama. This log integration makes it really easy to quickly tie malware to users, applications, URLs, files or other threats for fast incident response, and for modifying your policies to reduce future attack vectors.


Resources

Palo Alto Networks Firewall Overview

Palo Alto Networks Next Generation Firewall Overview

Palo Alto Networks Panorama

Panorama provides centralised policy and device management over a network of Palo Alto Networks™ next-generation firewalls.

Palo Alto Networks VM-Series Datasheet

The Palo Alto Networks™ VM-Series extends secure application enablement into virtualised environments while addressing key virtualisation security challenges: tracking security policies to virtual machine movement with dynamic address objects and integration with orchestration systems using a powerful XML management API.

Palo Alto Networks Wildfire

WildFire automatically protects your networks from new and customised malware across a wide range of applications, including malware hidden within SSL-encrypted traffic. WildFire easily extends the threat prevention capabilities of the next-generation firewall to tackle some of the most challenging threats in the world today, and does so with full visibility and enforcement at up to 10Gbps.

Quotation Configuration

Your Name (required)

Company (required)

Your Email (required)

Telephone (required)

Number of Users (required)

Number of Connections

Size of each connection:
Connection 1:
Connection 2:
Connection 3:
Connection 4:
Connection 5:

Security Subscriptions

WildfireGlobal ProtectURL FilteringThreat Prevention

Standard Support & Maintenance:
Premium Support & Maintenance:

Additional Comments

Please leave this field empty.

Please leave this field empty.

Book Your Palo Alto Networks Demo:

Krome Technologies can provide you with an online or onsite demonstration specifically showing you the fundamentals of Palo Alto Networks solutions, these demonstrations can be tailored to show you whatever you want to review, our consultants can give you a brief overview demonstration or deep dive technically depending on your interest, requirement or specific requests.

Alternatively we can organise for an evaluation unit to be sent to you for an agreed period to run on your own network.

Please note that required fields are highlighted with an asterisks*

Your Name*

Company Name*

Job Title*

Telephone Number*

Email Address*

Mobile Number

Company Address:

Approximate amount of users*:

Additional information or demo specific requests, please indicate if you would like an online demo, or evaluation unit for example:

Once we have received the request, we will endeavor to contact you within 24hours to discuss your demo requirements and schedule a convenient time for your Palo Alto Networks demo or evaluation to take place.


{embed_post:post_title}

Products

Products

Next-generation firewalls enforce network security policies based on applications, users, and content