PCDRA無料問題集「Palo Alto Networks Certified Detection and Remediation Analyst」

質問 1

When is the wss (WebSocket Secure) protocol used?

（A）when the Cortex XDR agent connects to WildFire to upload files for analysis

（B）when the Cortex XDR agent uploads alert data

（C）when the Cortex XDR agent establishes a bidirectional communication channel

（D）when the Cortex XDR agent downloads new security content

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

A Linux endpoint with a Cortex XDR Pro per Endpoint license and Enhanced Endpoint Data enabled has reported malicious activity, resulting in the creation of a file that you wish to delete. Which action could you take to delete the file?

（A）Open an NFS connection from the Cortex XDR console and delete the file.

（B）Open X2go from the Cortex XDR console and delete the file via X2go.

（C）Manually remediate the problem on the endpoint in question.

（D）Initiate Remediate Suggestions to automatically delete the file.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

What is the action taken out by Managed Threat Hunting team for Zero Day Exploits?

（A）MTH runs queries and investigative actions and no further action is taken.

（B）MTH researches for threats in the logs and reports to engineering.

（C）MTH pushes content updates to prevent against thezero-dayexploits.

（D）MTH researches for threats in the tenant and generates a report with the findings.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

What is the Wildfire analysis file size limit for Windows PE files?

（A）100MB

（B）500MB

（C）1GB

（D）No Limit

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

When viewing the incident directly, what is the "assigned to" field value of a new Incident that was just reported to Cortex?

（A）Pending

（B）It is blank

（C）New

（D）Unassigned

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

What is the purpose of the Unit 42 team?

（A）Unit 42 is responsible for threat research, malware analysis and threat hunting

（B）Unit 42 is responsible for automation and orchestration of products

（C）Unit 42 is responsible for the rapid deployment of Cortex XDR agents

（D）Unit 42 is responsible for the configuration optimization of the Cortex XDR server

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

How can you pivot within a row to Causality view and Timeline views for further investigate?

（A）Using the Open Card and Open Timeline actions respectively

（B）You can't pivot within a row to Causality view and Timeline views

（C）Using the Open Card Only

（D）Using Open Timeline Actions Only

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Where would you view the WildFire report in an incident?

（A）on the HUB page at apps.paloaltonetworks.com

（B）next to relevant Key Artifacts in the incidents details page

（C）under the gear icon --> Agent Audit Logs

（D）under Response --> Action Center

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

What motivation do ransomware attackers have for returning access to systems once their victims have paid?

（A）Failure to restore access to systems undermines the scheme because others will not believe their valuables would be returned.

（B）There is organized crime governance among attackers that requires the return of access to remain in good standing.

（C）The ransomware attackers hope to trace the financial trail back and steal more from traditional banking institutions. -

（D）Nation-states enforce the return of system access through the use of laws and regulation.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

PCDRA 無料問題集「Palo Alto Networks Certified Detection and Remediation Analyst」

弊社を連絡する

関連リンク

トップ試験