ADVANCED
WildFire Advanced File Type Support
—In addition to PEs, forward advanced file types for WildFire analysis, including APKs, Flash files, PDFs, Microsoft Office files, Java Applets, Java files (.jar and .class), and HTTP/HTTPS email links contained in SMTP and POP3 email messages. (WildFire private cloud analysis does not support APK, Mac OS X, Linux (ELF), archive (RAR/7-Zip), and script (JS, BAT, VBS, Shell Script, PS1, and HTA) files).
Correct answers A, B, C.
https://docs.paloaltonetworks.com/wildfire/8-0/wildfire-admin/wildfire-overview/wildfire-subscription#
First lines are the basic files supported, and middle lines the files supported with a paid subscription
A B C are correct, as stated "The basic WildFire service is included as part of the Palo Alto Networks next generation firewall and does not require a WildFire subscription. With the basic WildFire service, the firewall can forward portable executable (PE) files for WildFire analysis"
A B C
Palo Alto Networks firewalls with a WildFire license are entitled to the standard subscription features and additional features. More file types may be submitted by a firewall for analysis. Additional file types are Microsoft Office files, PDF files, Java JAR and CLASS files, Adobe Flash SWF and SWC files, RAR, 7-Zip, Linux ELF, and Android APK files. The macOS Mach-O, DMG, and PKG files also are supported. WildFire also can analyze JS, VBS, and PS1 files.
DEF:
Android application package apk, ETC.
Adobe Flash .swf, ETC.
Java Archive jar, ETC.
Microsoft Office docx, xlsx, pptx, ooxml, ETC.
Portable executable pe, exe, ETC.
Portable Document Format pdf, ETC.
Mac OS X dmg, pkg, ETC.
Archive rar, 7z, ETC.
Linux elf, ETC.
Script bat, js, vbs, ps1, ETC.
Answer will be A & B & C
Beacuse the Question ask for " basic WildFire service " find PaloAlto Docs talk about PAN WildFire Subscription
https://docs.paloaltonetworks.com/wildfire/9-1/wildfire-admin/wildfire-overview/wildfire-subscription#idb6afc7db-1bcf-43e8-bdd3-7afffa9aadda
it mention the basic WildFire service, the firewall can forward portable executable (PE) files for WildFire, and see Below Docs
https://docs.paloaltonetworks.com/wildfire/9-1/wildfire-admin/wildfire-overview/wildfire-concepts/file-analysis
says that PEs Filetype include executable files, object code, DLLs, FON (fonts), and LNK files so A & B & C will be correct
According to WildFire documentation, the correct answer is: D, E, F
https://docs.paloaltonetworks.com/wildfire/9-1/wildfire-admin/wildfire-overview/wildfire-concepts/file-analysis
https://docs.paloaltonetworks.com/wildfire/10-1/wildfire-admin/wildfire-overview/wildfire-subscription
The basic WildFire service is included as part of the Palo Alto Networks next generation firewall and does not require a WildFire subscription. With the basic WildFire service, the firewall can forward portable executable (PE) files for WildFire analysis
https://docs.paloaltonetworks.com/wildfire/10-1/wildfire-admin/wildfire-overview/wildfire-concepts/file-analysis
PEs include executable files, object code, DLLs, FON (fonts), and LNK files
From Beacon:
The standard service enables firewalls to automatically submit unknown Windows Portable Executable (or PE) files for analysis. Windows PE file types include EXE, DLL, SCR, and FON.
D,E and F are correct! WildFire Advanced File Type Support—In addition to PEs, forward advanced file types for WildFire analysis, including APKs, Flash files, PDFs, Microsoft Office files, Java Applets, Java files (.jar and .class), and HTTP/HTTPS email links contained in SMTP and POP3 email messages. (WildFire private cloud analysis does not support APK, Mac OS X, Linux (ELF), archive (RAR/7-Zip), and script (JS, BAT, VBS, Shell Script, PS1, and HTA) files). https://docs.paloaltonetworks.com/wildfire/8-1/wildfire-admin/wildfire-overview/wildfire-subscription.html
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Mello
Highly Voted 5 years, 5 months agoLevis
4 years, 2 months agoGabriel2022
2 years, 2 months agoEdu147
Highly Voted 5 years, 3 months agojohn_bosco_champion
4 years, 4 months agojohn_bosco_champion
4 years, 4 months agoshinichi_88
2 years, 9 months ago123XYZT
Most Recent 5 months, 3 weeks agoMarshpillowz
9 months, 2 weeks agoGrace_Shu
1 year, 2 months agoRedrum702
1 year, 4 months agoWaheedeladawy
1 year, 6 months agoa_kto_to
1 year, 6 months agoDenskyDen
1 year, 9 months agoPretorian
2 years, 2 months agoUFanat
2 years, 4 months agoJheax
2 years, 6 months agoramasamymuthiah
2 years, 6 months agoAbu_Muhammad
2 years, 7 months agoBryan1151
2 years, 10 months agoFS68
3 years agojoaoherbert
3 years, 1 month ago