ExamGecko
Login
Home / Palo Alto Networks / PCDRA / List of questions
Ask Question

Palo Alto Networks PCDRA Practice Test - Questions Answers, Page 8

List of questions

Question 71

Report Export Collapse

While working the alerts involved in a Cortex XDR incident, an analyst has found that every alert in this incident requires an exclusion. What will the Cortex XDR console automatically do to this incident if all alerts contained have exclusions?

Become a Premium Member for full access
  Unlock Premium Member

Question 72

Report Export Collapse

Network attacks follow predictable patterns. If you interfere with any portion of this pattern, the attack will be neutralized. Which of the following statements is correct?

Become a Premium Member for full access
  Unlock Premium Member

Question 73

Report Export Collapse

After scan, how does file quarantine function work on an endpoint?

Become a Premium Member for full access
  Unlock Premium Member

Question 74

Report Export Collapse

Which two types of exception profiles you can create in Cortex XDR? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 75

Report Export Collapse

To stop a network-based attack, any interference with a portion of the attack pattern is enough to prevent it from succeeding. Which statement is correct regarding the Cortex XDR Analytics module?

Become a Premium Member for full access
  Unlock Premium Member

Question 76

Report Export Collapse

Cortex XDR is deployed in the enterprise and you notice a cobalt strike attack via an ongoing supply chain compromise was prevented on 1 server. What steps can you take to ensure the same protection is extended to all your servers?

Become a Premium Member for full access
  Unlock Premium Member

Question 77

Report Export Collapse

What is the difference between presets and datasets in XQL?

Become a Premium Member for full access
  Unlock Premium Member

Question 78

Report Export Collapse

What should you do to automatically convert leads into alerts after investigating a lead?

Become a Premium Member for full access
  Unlock Premium Member

Question 79

Report Export Collapse

Which type of IOC can you define in Cortex XDR?

Become a Premium Member for full access
  Unlock Premium Member

Question 80

Report Export Collapse

Under which conditions is Local Analysis evoked to evaluate a file before the file is allowed to run?

Become a Premium Member for full access
  Unlock Premium Member
Total 91 questions
Go to page: of 10
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following protection modules is checked first in the Cortex XDR Windows agent malware protection flow?
You can star security events in which two ways? (Choose two.)
When reaching out to TAC for additional technical support related to a Security Event; what are two critical pieces of information you need to collect from the Agent? (Choose Two)
Cortex XDR is deployed in the enterprise and you notice a cobalt strike attack via an ongoing supply chain compromise was prevented on 1 server. What steps can you take to ensure the same protection is extended to all your servers?
Which statement best describes how Behavioral Threat Protection (BTP) works?
When is the wss (WebSocket Secure) protocol used?
Why would one threaten to encrypt a hypervisor or, potentially, a multiple number of virtual machines running on a server?
The Cortex XDR console has triggered an incident, blocking a vitally important piece of software in your organization that is known to be benign. Which of the following options would prevent Cortex XDR from blocking this software in the future, for all endpoints in your organization?
What is the purpose of the Cortex Data Lake?
Under which conditions is Local Analysis evoked to evaluate a file before the file is allowed to run?