See our SolarStorm response
WildFire
Beyond Traditional Sandboxing
Contact a Representative
WildFire
Beyond Traditional Sandboxing

In an industry first, WildFire powers inline machine learning modules on our NGFW to instantly prevent new unknown file-based threats without any productivity delay.


Request a demo

Take a UTD
Block Malware Instantly
USE CASES

Prevent the Unknown

Go beyond traditional analysis to detect unknown threats
Get the datasheet
Analytics

Power of the Cloud

Leverages cloud scale for industry firsts in inline prevention and delivers real-time protections.

Zero-Day Protection

Dynamic analysis enables zero-day malware prevention and exploits using hundreds of behavioral characteristics.

Machine Learning

Machine learning extracts thousands of unique features from each file, providing detailed reporting and adapting prevention to stop new malware.

Focus on what matters most

Adopt a prevention-first posture that automatically detects and prevents unknown threats
Download Report
  • Active Customers
    35K +
  • Unique Malware Samples
    16B +
  • Inline-ML
    Prevention
    95%

Native Integration. Increased Security.

Integration regardless of the form factor

Hardware

  • PA-Series physical firewalls

Software

  • VM-Series virtual firewalls
  • CN-Series container firewalls

Cloud Service

  • Prisma Access
Case Study
FNTS

Advancing KPIT technologies with automation at scale

Problem

FNTS needed to align information security with a micro-segmented, software defined data center to extend consistent network and endpoint security capabilities seamlessly across multi-cloud environments.

Solution

The Palo Alto Networks platform approach provided unified next-generation security capabilities and integrated global threat intelligence with WildFire, Threat Prevention and URL Filtering.

  • WildFire
  • Prisma Cloud
  • Threat Prevention
  • URL Filtering
  • Panorama
  • AutoFocus
  • Traps
  • GlobalProtect
Read full case study

    Additional services and partners

    Threat Prevention

    Threat Prevention leverages WildFire’s inline-ML capabilities and goes beyond traditional IPS to prevent every known threat across all traffic in a single pass.

    Learn more

    Unit 42

    Unit 42 collects and analyzes data globally, feeding threat intelligence into an automation engine for rapid and consistent protection.

    Learn more

    QuickStart Services

    Confidently deploy QuickStart Services to leverage day-one protection that matches your technology capabilities and needs.

    Get started
    LEARN MORE

    Explore our latest resources

    WHITE PAPER

    5 Major Security Threats

    This new white paper will help you make sure you’ve got the information you need to identify and stop common cybersecurity attacks...
    SOLUTION BRIEF

    Inline Machine Learning Solution Brief

    Palo Alto Networks delivers inline machine learning to instantly prevent up to 95% of never-before-seen file and web-based threats...
    INFOGRAPHIC

    WildFire Interactive

    WildFire is the industry's most advanced analysis and prevention engine for highly evasive zero-day exploits and malware…
    VIDEO

    Prevention Successful Attacks Using WildFire

    This video covers how WildFire goes beyond traditional sandboxing and legacy technology to successfully prevent advanced attacks…
    PERSPECTIVES

    When Scripts Attack, WildFire Protects

    This blog on the LIVE community details how WildFire protects against script-based attacks…
    TECH DOCS

    WildFire Features and Updates

    Here you'll find everything new that we've been working on for the WildFire cloud, WildFire appliances, and firewall related updates...

    Get started with SOC Transformation

    Download your toolkit to get curated articles, case studies, demos and reports to help you transform your SOC.

    Popular Resources

    Legal Notices

    Popular Links

    Report a Vulnerability

    Cortex XDR tiers


    Cortex XDR Prevent
    Cortex XDR Pro

    Data sources

    Get extended visibility

    Endpoint

    Data sources

    Get extended visibility

    Endpoint, network, cloud and third-party products

    Endpoint protection

    Stop malware, exploits and fileless attacks

    Endpoint protection

    Stop malware, exploits and fileless attacks

    Device control

    Prevent data loss and USB-based malware infections

    Device control

    Prevent data loss and USB-based malware infections

    Disk encryption

    Manage BitLocker or FileVault from the Cortex XDR console

    Disk encryption

    Manage BitLocker or FileVault from the Cortex XDR console

    Host firewall

    Reduce the attack surface on Windows and macOS endpoints

    Host firewall

    Reduce the attack surface on Windows and macOS endpoints

    Managed Threat Hunting

    Uncover the most complex threats across endpoint and network with Unit 42 experts

    Managed Threat Hunting

    Uncover the most complex threats across endpoint and network with Unit 42 experts

    Optional

    Host Insights

    Monitor host inventory, find vulnerabilities and sweep across endpoints to eradicate threats

    Host Insights

    Monitor host inventory, find vulnerabilities and sweep across endpoints to eradicate threats

    Optional

    Behavioral analytics

    Detect emerging attacks with patented analytics and machine learning

    Behavioral analytics

    Detect emerging attacks with patented analytics and machine learning

    Rule-based detection

    Find threats with out-of-the-box and custom rules

    Rule-based detection

    Find threats with out-of-the-box and custom rules

    Incident management

    Reduce alert fatigue 98% by intelligently grouping alerts

    Endpoint alerts

    Incident management

    Reduce alert fatigue 98% by intelligently grouping alerts

    All alert sources

    Integrated response

    Contain threats with multiple, flexible response options

    Endpoint only

    Integrated response

    Contain threats with multiple, flexible response options

    Endpoint, network & cloud

    Threat intelligence feed

    Enrich investigations with rich context from tens of thousands of customers

    Optional

    Threat intelligence feed

    Enrich investigations with rich context from tens of thousands of customers

    Optional

    Alert retention

    30 days

    Alert retention

    30 days

    XDR data retention

    XDR data retention

    Endpoint and network, 30 days

    Extended data retention

    Optional

    Extended data retention

    Optional