WildFire South Korea Cloud
Table of Contents
Expand all | Collapse all
-
- Mach-O Support for WildFire Inline ML
- Advanced WildFire Public Sector Cloud
- Advanced WildFire Government Cloud
- WildFire Spain Cloud
- WildFire Saudi Arabia Cloud
- WildFire Israel Cloud
- WildFire South Korea Cloud
- WildFire Qatar Cloud
- WildFire France Cloud
- WildFire Taiwan Cloud
- WildFire Indonesia Cloud
- WildFire Poland Cloud
- WildFire Switzerland Cloud
- Advanced WildFire Support for Intelligent Run-time Memory Analysis
- Shell Script Analysis Support for Wildfire Inline ML
- Standalone WildFire API Subscription
- WildFire India Cloud
- MSI, IQY, and SLK File Analysis
- MS Office Analysis Support for Wildfire Inline ML
- WildFire Germany Cloud
- WildFire Australia Cloud
- Executable and Linked Format (ELF) Analysis Support for WildFire Inline ML
- Global URL Analysis
- WildFire Canada Cloud
- WildFire UK Cloud
- HTML Application and Link File Analysis
- Recursive Analysis
- Perl Script Analysis
- WildFire U.S. Government Cloud
- Real Time WildFire Verdicts and Signatures for PDF and APK Files
- Batch File Analysis
- Real Time WildFire Verdicts and Signatures for PE and ELF Files
- Real Time WildFire Verdicts and Signatures for Documents
- Script Sample Analysis
- ELF Malware Test File
- Email Link Analysis Enhancements
- Sample Removal Request
- Updated WildFire Cloud Data Retention Period
- DEX File Analysis
- Network Traffic Profiling
- Additional Malware Test Files
- Dynamic Unpacking
- Windows 10 Analysis Environment
- Archive (RAR/7z) and ELF File Analysis
- WildFire Analysis of Blocked Files
- WildFire Phishing Verdict
WildFire South Korea Cloud
Palo Alto Networks now provides access to a WildFire regional cloud in South
Korea.
A new WildFire regional cloud is now available in South Korea. The WildFire South
Korea cloud provides the best of both worlds for Palo Alto Networks customers
located in South Korea — customers can now utilize the WildFire cloud-based threat
analysis and prevention engine, while ensuring that files submitted for analysis
stay in the country to address data location concerns. Note that certain metadata
connected to submitted samples, as described in the WildFire Privacy Datasheet, are shared
with our other regionals clouds. While submissions stay within the borders of South
Korea, customers still benefit from the global security intelligence and updates
based on the network effect of Palo Alto Networks 42,000+ WildFire customers.
Sensitive data and submissions are restricted from leaving South Korea when using
the WildFire cloud threat analysis service. Samples submitted to the WildFire South
Korea cloud and the resulting malware analysis, signature generation and delivery
occur and remain within the borders of South Korea.
Any firewall with basic WildFire service enabled can forward
PE (portable executables) samples to the WildFire South Korea cloud for analysis,
while users with an active Advanced WildFire or standard WildFire subscription can
forward all supported file types. You can access the
WildFire South Korea portal using your support account credentials to manually
upload files for analysis and view WildFire analysis reports.
You can submit samples to the WildFire South Korea cloud from the WildFire appliance,
WildFire South Korea portal, through the WildFire API, and all Palo Alto Networks
platforms that support the WildFire security subscription integration.
- Submit samples to the WildFire South Korea cloud from the firewall.
- Log in to the firewall and select Device > Setup > WildFire and edit General Settings.
- Enter the URL for the WildFire South Korea cloud: kr.wildfire.paloaltonetworks.com
- Click OK to save your settings.
- Submit locally-discovered malware or sample reports to the WildFire South Korea
cloud for additional analysis.Enable a WildFire appliance to submit locally-discovered malware or sample reports to the WildFire South Korea cloud for additional analysis and signature distribution:
-
Connect the WildFire appliance to the WildFire South Korea cloud by entering the following command from the WildFire appliance CLI:
admin@WF-500# set deviceconfig setting cloud-server kr.wildfire.paloaltonetworks.com -
Enter the following command to submit malware to the WildFire South Korea cloud:
admin@WF-500# set deviceconfig setting wildfire cloud-intelligence submit-sample yes
-
- Manually submit samples to the WildFire South Korea cloud using the WildFire
South Korea portal.You can manually submit samples to the WildFire South Korea cloud using the WildFire South Korea portal: https://kr.wildfire.paloaltonetworks.com.After uploading files or URLs to the WildFire South Korea portal, you can also view the WildFire analysis verdict and report for the sample.
- Submit samples through the WildFire APIUse the following resources to submit samples through the WildFire API to the WildFire South Korea cloud:
-
Submit a file: https://kr.wildfire.paloaltonetworks.com/publicapi/submit/file
-
Submit a file through a URL: https://kr.wildfire.paloaltonetworks.com/publicapi/submit/url
-
Submit a URL: https://kr.wildfire.paloaltonetworks.com/publicapi/submit/link
-
Submit multiple URLs: https://kr.wildfire.paloaltonetworks.com/publicapi/submit/links
To get information about your file submissions to the WildFire South Korea cloud, you must also use the base URI that corresponds to the WildFire South Korea cloud. Example:https://kr.wildfire.paloaltonetworks.com/publicapi/get/verdict -