TrustRadius Insights
Real-time threat monitoring: Users have found the real-time threat monitoring capability of Palo Alto WildFire to be highly valuable. …
Overview
What is Palo Alto Networks WildFire?
Palo Alto Network’s WildFire is a malware prevention service. It specializes in addressing zero-day threats through dynamic and static analysis, machine learning, and advanced sandbox testing environments.
Recent Reviews
Pricing
N/A
Unavailable
What is Palo Alto Networks WildFire?
Palo Alto Network’s WildFire is a malware prevention service. It specializes in addressing zero-day threats through dynamic and static analysis, machine learning, and advanced sandbox testing environments.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
16 people also want pricing
Alternatives Pricing
What is Sumo Logic?
Sumo Logic is a log management offering from the San Francisco based company of the same name.
What is EclecticIQ Platform?
EclecticIQ Platform is an analyst-centric Threat Intelligence Platform (TIP). The vendor says it is optimized for the collection of intelligence data from open sources, commercial suppliers and industry partnerships into a single collaborative analyst workbench. EclecticIQ Platform aims to…
Product Demos
ForeScout 整合 Palo Alto Networks Wildfire Demo
YouTube
Palo Alto Networks Wildfire
YouTube
ForeScout and Palo Alto Networks WildFire Integration Demo
YouTube
Demo Unknown Malware protection with Palo Alto Networks WildFire
YouTube
Product Details
- About
- Tech Details
What is Palo Alto Networks WildFire?
Palo Alto Network’s WildFire is a malware prevention service. It specializes in addressing zero-day exploits and malware. WildFire utilizes a combination of dynamic and static analysis, as well as machine learning, to automate threat prevention. It shares real-time threat intelligence across the user base, and provides advanced sandbox testing environments to reveal zero-day threats before they get to users’ systems.
WildFire can be deployed on-premises, via the cloud, or as a hybrid system. It can integrate with third-party security tools. It is a cloud-based system to enable efficient scaling and optimizes with other Palo Alto product offerings.
Palo Alto Networks WildFire Video
Learn how WildFire offers advanced protection from unknown threats through native integration with our Next-Generation Security Platform. The service brings advanced threat detection and prevention to every security technology deployed throughout the network, endpoint and clou...
Show More Palo Alto Networks WildFire Technical Details
| Operating Systems | Unspecified |
|---|---|
| Mobile Application | No |
Comparisons
Compare with
Reviews and Ratings
(33)Attribute Ratings
Reviews
(1-8 of 8)Companies can't remove reviews or game the system. Here's why
December 19, 2022
A short note about WildFire
Score 8 out of 10
Vetted Review
Verified User
So when we are talking about WildFire, first thing which comes in our mind is Zero Day Attack. Zero Day Attack means when a new type of attack happen and firewall don't have any signature of this. So in this case WildFire comes into picture. Basically firewall sends a copy of file to WildFire where it WildFire runs the file in various environment and analysis the file. If the file is harmful and malicious WildFire update the signature in all the firewall. So in this way it prevents future attack .
- It prevents Zero Day Attack
- It updates the signature base of all firewall when new attack is found.
- It run the file in virtual environment so that local pc isn't affect .
- It is use to analyse the file before any false decision.
- The main pain is that we have to purchase the WildFire Licence separately. I think it should be by default available in Palo Alto Firewall.
- Sometimes it takes much time to analyse the file.
- It provides result after attack is happened.
WildFire, from Palo Alto Networks, is a cloud-based threat intelligence and sandboxing solution. We use it on our edge networks to protect against internet threats and dangers from our shared services environment or other customers who have been allowed to communicate. We protected our network in many layers, and we use wildfire to keep our cloud services secure across the company. Malware and evasive attacks on sensitive data were detected and prevented. To protect against malicious attacks, it employs an endpoint scanner that works in tandem with WildFire.
- It can detect potentially dangerous files of various kinds and operating system executable files as well. Integration of AutoFocus with Palo Alto solutions is one click.
- Ensuring that you're protected against the newest dangers, including zero-day attacks. This is called zero-day monitoring.
- By using Palo Alto's threat protection capabilities, the tool helps to alleviate compliance issues by enabling on-site sandboxing of files.
- Cost-wise, it's competitive with other comparable solutions on the market, and it integrated well with current Palo Alto systems. Scalability and management simplicity are also significant advantages.
- WildFire, like other sandboxes, has to stay up with malware sandbox evasion techniques, which necessitates larger file size limits.
- More file formats should be able to be submitted and scanned by WildFire, which needs improved initial administration and setup.
- It's quite pricey, and there's no warning choice for performance on the cloud.
It's been used as an APT and zero day. It's leveraging the current Palo Alto deployment where they're located at perimeter, data center and cloud.
Main usage is for the perimeter defense for the whole organization.
Without WildFire, static analysis and file checks do not give the up-to-date protection level for current infrastructure. That's also assisting the SOC for threat detection and hunting. Autofocus integration is a plus for file trajectory. API integrations with different solutions enrich the product usability.
- Integration with Palo Alto solutions (very easy and one-click).
- Zero day detection.
- AutoFocus integration.
- Leveraging the Palo Alto threat prevention features.
- API integration with different solutions (many of them already built-in configurations).
- Unit 42 threat research team behind the WildFire.
- Integration with 3rd-party feeds.
- Upcoming solutions and acquisitions of Palo Alto are integrated and built-in capability of WF usage.
- Local WF appliance is lacking in term of functionality like no bare metal analysis in local solution.
- No new features coming to local WF appliances.
- No built-in integration with GlobalProtect Agent.
- Cloud WF does not have the option for specific regions to be used (compliance).
- Cloud side does not have alarming option for [degraded] performance.
- Lack of forensics (needs additional product or integration).
We currently have a Palo Alto Networks WildFire subscription across all our Palo Alto Firewalls. It adds an extra layer of protection from addressing zero-day exploits and malware. It can be deployed on-prem or in the cloud. It is a relatively expensive license considering all Palo Alto customers get WildFire, but only the paid version get updates within one hour vs 24 hours. Overall it seems worth it.
- Helps block zero-day exploits
- You get the combined power of other users' Palo Alto Networks WildFire file scanning signatures as well
- Seamless install and very little to manage
- Need larger file size limits
- They need to be able to submit and scan more file types
- Rather expensive
December 12, 2018
Working in Healthcare this has been a literal lifesaver.
We are using Wildfire to protect our network at several layers, we're using it on our edge networks to protect from threats on the internet as well as protecting our internal client networks from threats that may exist in our shared services environment or each other in the case of a few specific clients who are allowed to talk to each other. Additionally we use it to protect our corporate presence from the internet as well as our remote hosting environment. Wildfire has proven to be a lifesaver through several zero-day events including wanna-cry.
- Detecting malware
- Zero-day threat prevention
- Keeping you up to date with the latest threats
- Cost
- I would personally like to see more JSON support in the API rather than XML, but that's being very nitpicky
December 14, 2017
WildFire burning through the wire
WildFire is a good product for sandboxing unknown files. Any exe, pdf, doc, etc file that originates from the interwebs is sent to the WF cloud. Internal info is sent to a WF appliance for internal assessment. Hashes from internal analysis is shared with the cloud but not the file.
- WF helps identify potentially malicious files across a large range of types and operating system executable files.
- WF + Traps helps catch things from a client that may traverse encrypted channels or that don't pass through a firewall.
- WF Appliance helps address compliance concerns allowing sandboxing of files on site.
- As all sand boxes, WF needs to stay on top of malware sandbox evasion techniques.
- The initial management and setup of WF could be better.
- Have had some bugs with WF code.
March 30, 2017
Controlled Chaos = WildFire
Currently it is being used at our collocation. It helps identify and more importantly prevents malware and evasive attacks to high confidential and production data. It takes our existing Palo Alto devices and works with WildFire becoming end point sensor to help prevent malicious attacks. This helps resolve any foreseeable threat as well as provides potential clients with reports showing the security procedures taken by our company. This helps project our confidence that data stored is protected and secure.
- This is could base and easily manageable for our collocation. While working within the could can review in live time potential treats that it has reported from other devices.
- Worked very well with existing Palo Alto devices.
- Another huge plus is the simplicity of managing and ease of scalability.
- Its cost is competitive with similar/like products available.
- Although it supports third party NGFW's I haven't tried and heard mixed reviews. I'd stay within the Palo Alto family of device.
- Support could become cumbersome if not identified from the beginning. Even though it's purchased through a vendor which could offer support ultimately having support from Palo Alto would be ideal.
We are using the WildFire cloud services across the organization to detect and block malware discovered by others for near-zero-day protection, as well as to upload files that haven't been seen in the wild for examination in case a new or unique threat enters our organization.
- Quick definition downloads and updates. Version 7.1 can do one every 5 minutes. Zero day protection within 5 minutes is a huge plus.
- Quick manual or automatic examination of files. Palo Alto's wildfire site supports API uploads or manual uploads that provide more detailed information than a Virustotal, for example.
- Would be helpful if they supported more file types.
- Would be helpful if they supported uploads of larger files.