3 Months Free Update
3 Months Free Update
3 Months Free Update
An adversary is attempting to communicate with malware running on your network for the purpose of controlling malware activities or for ex filtrating data from your network. Which Cortex XDR Analytics alert is this activity most likely to trigger'?
Which process in the causality chain does the Cortex XDR agent identify as triggering an event sequence?
When integrating with Splunk, what will allow you to push alerts into Cortex XSOAR via the REST API?
Which two types of lOCs are available for creation in Cortex XDR? (Choose two.)
Given the exception thrown in the accompanying image by the Demisto REST API integration, which action would most likely solve the problem?
Which two playbook functionalities allow looping through a group of tasks during playbook execution? (Choose two.)
An Administrator is alerted to a Suspicious Process Creation security event from multiple users.
The users believe that these events are false positives Which two steps should the administrator take to confirm the false positives and create an exception? (Choose two )
Which Cortex XDR Agent capability prevents loading malicious files from USB-connected removable equipment?
What is the result of creating an exception from an exploit security event?
When analyzing logs for indicators, which are used for only BIOC identification'?
A customer wants to modify the retention periods of their Threat logs in Cortex Data Lake.
Where would the user configure the ratio of storage for each log type?