Palo Alto Networks® is focused on securing your business with a prevention-focused architecture you can easily deploy and operate. NSS Labs® – in its Security Value Map™ (SVM) based on the 2018 “Next Generation Firewall Group Test Report” – has recognized this and given our NGFW a Recommended rating.
Palo Alto Networks® is focused on securing your business with a prevention-focused architecture you can easily deploy and operate. In its 2018 “Next Generation Firewall Group Test Report,” NSS Labs® recognized this and gave our NGFW a Recommended rating.
We are excited to announce that Palo Alto Networks has achieved a “Recommended” rating, and a spot in the upper-right corner of the NSS Labs NGFW Security Value Map, or SVM, indicating high security effectiveness and low total cost of ownership, or TCO.
The Ministry of Energy, Industry, and Mineral Resources implemented Traps™ advanced endpoint protection, part of Palo Alto Networks® Security Operating Platform, which also includes next-generation firewalls and numerous integrated threat intelligence services to help ensure strong security at the endpoint.
Question Can Evident detect if an agent is deployed in an EC2 / VM instance? Answer None of Evident's built-in signatures detect resources within EC2 / VM instances. In general, Evident's built-in signature will only detect and report resources within the infrastructure level. Evident itself cannot detect resources within
I will be installing and using MineMeld on a virtual REHL 7 Server. I was wondering if the community had any advice/lessons learned from the installation, use, and implementation of MineMeld at their organizations. Thank you!
Looks like the Northern Ohio chapter of the Palo Alto Networks Fuel User Group has an eye for rockstars, too! We couldn't agree more with the chapter's recognition of Tom and its warm invitation to have Tom attend a chapter meeting with the Cleveland-based group. Moreover, in keeping with Tom's growing
Symptoms Configured auto-remediation using this guide: http://docs.evident.io/#auto-remediation-via-lambda-walkthrough, but the offending resource is not automatically remediated. Diagnosis Configure an AWS resource that would trigger the signature. Wait for the fail alert to generate. It may take up to 2 scan intervals (by default, 1 scan interval is 15 minutes). Once the alert
Weekly Scheduled Deploy - July 11 2018 The following updates are scheduled to take effect on the Evident service on 7/11/2018: Enhancements New Signature: AWS:EC2-043 - Security Groups With Open Private CIDRs Description: This signature checks all of your EC2 security groups and returns an alert if any inbound rules
RDP access to Citrix via GlobalProtect clientless VPN Enabling RDP access to Citrix environment through GlobalProtect Clientless VPN GlobalProtect Clientless VPN supports access to remote desktops (RDPs), VNC or SSH. Learn how to enable your existing Citrix deployment to provide support for RDP through GlobalProtect Clientless VPN. Read more...
I'm wanting to do some policy work (app-id migraiton) on a firewalls that is basically 100% managed by Panorama. Don't want to mess with all others yet. How do I get the policy set that's managed in Panorama for just one firewall int Expedition?
Caught this in the temporary file for log processing... # There is insufficient memory for the Java Runtime Environment to continue. # Native memory allocation (mmap) failed to map 113700864 bytes for committing reserved memory. # An error report file with more information is saved as: # /tmp/hs_err_pid51410.log
I am attempted to perform an ansible install of Minemeld on RHEL 7. I am receiving the following error. Anyone seen this and have any suggestions for remediation? Thanks I receive the following message when I run the ansible playbook: TASK [minemeld : bower install] ********************************************************************************** fatal: [127.0.0.1]:
For the month of July 2018 the new application release date is set to be the 17th. This time around a couple of important updates will be added to the sharepoint 'portfolio' which you'll want to compare to your existing security policy and user adoption to ensure you are ready
I was able to parquet logs every day for 10 days. After the upgrade, Expedition no longer sees new files. Path and permissions have not changed. A stand-alone firewall has no issue. Should I delete the Pano and managed devices and recreate?
Hello, First, I am not a programmer, so please keep that in mind ;-) I would like to create a miner for the Anomali Limo TAXII feed. The Anomali documentation is not very good: You can also get the benefits of Limo without STAXX. Simply: Configure your TAXII
Question Testing a virus download from different websites using SSL Decryption yields different results. Sometimes you receive a response page indicating Virus/Spyware Download block, and on other sites you don't see a response page. In the first case, you can also see that whenever the response page is triggered, a
Unit 42 investigates how attackers were creating fake versions of some well-known and well-trusted websites, and how they were used in phishing emails to unsuspecting victims. Read the Threat Brief to learn more.
Learn how Kevin Wilson, Corporate Information Security Manager replaced their legacy antivirus solution at all Guess? retail locations with Traps to protect their stores from breaches and cyberthreats. The ease of setup and efficacy catch rate for malware, Traps exceeds all expectations. Having the Palo Alto Networks Security Operating Platform provides Guess? with information they need to evaluate and act on threats to their retail and corporate environment.
Hi, i want to query Mineneld using the API, in order to get indicators or information about the tool, to automate some reports. For example, i need to know how many indicatores we have added in the last X days, or last month..., how many indicators are in some
Hello All, I am using PA-820, i only have cli access to device. I will require to verify traffic from a particular source and destination on the device. Do we have any commands to do that ? May be something like packet tracer to get all the routes / ACL
Question I know an external account exists, but I can't find it. Why? Answer There are many reasons for this, but the most common one is that your user does not have permissions to view this external account. To check, login to Evident platform, go to Control Panel -> Users,