Analyzes files and email links across the network, endpoint and cloud

WildFire™ cloud-based malware analysis environment provides granular and coordinated threat analysis for all traffic and attack vectors across thousands of applications, including web traffic, email protocols (i.e., SMTP, IMAP, POP) and FTP, regardless of location in the organization, ports, or deception technics, such as hiding behind encryption (SSL). WildFire automatically creates protections against new threats and delivers them to all subscribers in as little as 5 minutes. 

Multiversion application analysis

WildFire analyzes exploitive documents across multiple versions of the operating system (e.g., Mac® OS, Windows®) and the application simultaneously, providing comprehensive file analysis and reducing the need for sandbox customization.


Hybrid Deployment – Cloud and On-Premise

WildFire hybrid cloud enables you to maintain privacy or regulatory concerns, select between cloud or local analysis based on security rules, content sensitivity, and regulatory requirements utilizing the WF-500, for certain file types, and benefit from the comprehensive analysis capabilities of the WildFire global cloud for all other file types. 

WildFire offers advanced protection from unknown threats. Through native integration with our Next-Generation Security Platform, the service brings advanced threat detection and prevention to every security appliance deployed throughout the network, endpoint and cloud, automatically sharing protections with all subscribers globally in as little as 5 minutes.

WildFire simplifies and expedites an organization’s response to the most dangerous threats by automatically detecting unknown malware and generating and distributing protections back to the security products, eliminating what used to be a manual process, reducing the attack volumes, and freeing the security team to focus on what matters the most.  

While known threats are blocked at the next-generation firewall, endpoint and cloud, never-before-seen malicious files and email links are sent to WildFire for further analysis.

Once WildFire uncovers a new threat, it automatically generates protections across the attack lifecycle, blocking malicious files, access to malicious URLs, and command and control traffic, and then delivers those protections to all WildFire-subscribed customers in as little as 5 minutes.

WildFire’s protections and indicators of compromise reports are shared with all of the next-generation security platforms around the globe as well as our technology partners. What this means is that all WildFire customers benefit almost immediately from the proactive, automatic prevention of advanced and targeted attacks. 

Native integration with all Palo Alto Networks® products allows WildFire to inform and update subscribers with new protective capabilities for the network, cloud and endpoint in real time.

Detailed behavioral analysis helps you to understand how newly discovered malware operates, and WildFire’s integrated logs enable you to quickly identify infected users and investigate potential breaches with detailed analysis of and visibility into unknown threat events.


Fisher-Titus Medical Center

Dylan Border from Fisher-Titus Medical Center, a nonprofit community hospital located in North Central Ohio, discusses how the Palo Alto Networks Next-Generation Security Platform helps detect and prevent unknown cyberthreats. WildFire's proactive and automatic prevention of advanced and targeted attacks, helps give Fisher-Titus the insight and analytics to prevent future attacks.

  • 0
  • 218

WildFire named a leader for Automated Malware Analysis

The Forrester Wave™: Automated Malware Analysis, Q2 2016 ranks WildFire as a leader in this space, through evaluation of its current offering, its market presence, and strategy.

  • 0
  • 2721


WildFire automatically protects your networks from new and customized malware across a wide range of applications, including malware hidden within SSL-encrypted traffic. This datasheet is available in Chinese (Simple), French, ItalianJapanese, and Spanish.

  • 5
  • 8345

Lightboard Series: Advanced Prevention

Enable your platform to begin sending malware to a centralized cloud-based virtual environment where new and unknown files can be actively executed and observed for malicious behaviors.

  • 0
  • 3808

WildFire: Automatically Detect and Prevent Unknown Threats

Protect your organization against known threats, zero-day exploits, unknown malware, and the complete spectrum of APTs. This online demonstration will walk you through how to deploy and get started with Threat Prevention, URL Filtering, WildFire, and next-generation firewall policy to reduce the attack surface on your network.

  • 5
  • 3251