최신Palo Alto Networks XDR Analyst - XDR-Analyst무료샘플문제
문제1
When creating a BIOC rule, which XQL query can be used?
When creating a BIOC rule, which XQL query can be used?
정답: C
설명: (KoreaDumps 회원만 볼 수 있음)
문제2
Live Terminal uses which type of protocol to communicate with the agent on the endpoint?
Live Terminal uses which type of protocol to communicate with the agent on the endpoint?
정답: B
설명: (KoreaDumps 회원만 볼 수 있음)
문제3
To create a BIOC rule with XQL query you must at a minimum filter on which field in order for it to be a valid BIOC rule?
To create a BIOC rule with XQL query you must at a minimum filter on which field in order for it to be a valid BIOC rule?
정답: C
설명: (KoreaDumps 회원만 볼 수 있음)
문제4
Which of the following policy exceptions applies to the following description?
'An exception allowing specific PHP files'
Which of the following policy exceptions applies to the following description?
'An exception allowing specific PHP files'
정답: B
설명: (KoreaDumps 회원만 볼 수 있음)
문제5
Which search methods is supported by File Search and Destroy?
Which search methods is supported by File Search and Destroy?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)
문제6
When reaching out to TAC for additional technical support related to a Security Event; what are two critical pieces of information you need to collect from the Agent? (Choose Two)
When reaching out to TAC for additional technical support related to a Security Event; what are two critical pieces of information you need to collect from the Agent? (Choose Two)
정답: C,D
설명: (KoreaDumps 회원만 볼 수 있음)
문제7
Can you disable the ability to use the Live Terminal feature in Cortex XDR?
Can you disable the ability to use the Live Terminal feature in Cortex XDR?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)
문제8
As a Malware Analyst working with Cortex XDR you notice an alert suggesting that there was a prevented attempt to download Cobalt Strike on one of your servers. Days later, you learn about a massive ongoing supply chain attack. Using Cortex XDR you recognize that your server was compromised by the attack and that Cortex XDR prevented it. What steps can you take to ensure that the same protection is extended to all your servers?
As a Malware Analyst working with Cortex XDR you notice an alert suggesting that there was a prevented attempt to download Cobalt Strike on one of your servers. Days later, you learn about a massive ongoing supply chain attack. Using Cortex XDR you recognize that your server was compromised by the attack and that Cortex XDR prevented it. What steps can you take to ensure that the same protection is extended to all your servers?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)
문제9
The Cortex XDR console has triggered an incident, blocking a vitally important piece of software in your organization that is known to be benign. Which of the following options would prevent Cortex XDR from blocking this software in the future, for all endpoints in your organization?
The Cortex XDR console has triggered an incident, blocking a vitally important piece of software in your organization that is known to be benign. Which of the following options would prevent Cortex XDR from blocking this software in the future, for all endpoints in your organization?
정답: B
설명: (KoreaDumps 회원만 볼 수 있음)
문제10
What is the action taken out by Managed Threat Hunting team for Zero Day Exploits?
What is the action taken out by Managed Threat Hunting team for Zero Day Exploits?
정답: D
설명: (KoreaDumps 회원만 볼 수 있음)