Attivo Networks Blogs

Attivo Networks® Completes Integration with Palo Alto Networks® Next-Generation Firewall.

By Carolyn Crandall, CMO

It’s been a summer of announcements for Attivo Networks including our selection as the Best of Show at Interop Japan and the expansion of our ThreatMatrix Deception and Response Platform. We are excited to add another announcement to that list, the completion of our integration with the Palo Alto Networks® Next-Generation Firewall.

Our ThreatMatrix Deception and Response Platform is designed to detect cyber attackers regardless of whether it is a targeted attack, involves stolen credentials, man-in-the-middle attacks, ransomware, or originates from an insider threat. Not reliant on signatures or known attack patterns, our solution uses deception technology to detect threats, like zero-day attacks, that are conducting reconnaissance or are moving laterally to escalate their attack inside the network.

The Attivo BOTsink® deception decoys are set up to look identical to production assets by using real operating systems and services and can be customized with a customer’s production golden image. The Palo Alto Networks Next-Generation Firewall identifies and controls applications flowing across physical and cloud-based networks, inspecting the content for known and unknown malware. As the cornerstone of Palo Alto Networks Next-Generation Security Platform, the next-generation firewall provides the visibility and enforcement needed to safely enable applications and deliver automated prevention against cyber attacks.

The integration of Attivo BOTsink deception and the Palo Alto Networks next-generation firewall provides customers with early in-network attack detection, attack analysis and forensics, and automated blocking of attackers. Intelligence is fed from BOTsink engagement server into the next-generation firewall to automatically block infected nodes and prevent cyber breaches. As the BOTsink deception server identifies infected nodes, their IP addresses are sent to the next-generation firewall for policy enforcement via API, effectively quarantining the device, stopping any communication with the Command and Control (CNC) and preventing any data exfiltration.

As the frequency and severity of cyber attacks persist, organizations are increasingly looking for more comprehensive and efficient defense solutions. Attivo Deception Platform integration with the Palo Alto Networks® Next-Generation Firewall will provide organizations with the tools and improved incident response needed to protect their critical assets. Together, we provide a robust adaptive defense built on prevention, detection, and accelerated incident response capabilities, delivering a solution designed to derail even the most sophisticated attackers attempt to breach your network.

We will be at the upcoming 2016 Black Hat USA event in Las Vegas, NV from July 30 – August 4 at booth #1365. Stay tuned for more information on our Black Hat participation later this week.

Share on:

Free Active Directory Assessment

Get Visibility Into Privilege And Service Account Exposure

For a limited time, Attivo Networks is providing free Active Directory Security Assessments to demonstrate how ADAssessor provides unprecedented and continuous visibility to AD vulnerabilities.

Try Our Endpoint Detection Net (EDN) for Free


Free use offer of our Award-winning security solution to prevent attackers from lateral movement, credential theft, and privilege escalation, fast and easy.

ADSecure 90-Day Free Trial


  • Hide and deny access to AD objects
  • Get alerted on unauthorized queries
  • Attack details easily viewable in dashboard
  • Your data remains on-premise


Leave a Comment

Your email address will not be published.

17 + 4 =

Ready to find out what’s lurking in your network?

Scroll to Top