PCDRA無料問題集「Palo Alto Networks Certified Detection and Remediation Analyst」

質問 1

Live Terminal uses which type of protocol to communicate with the agent on the endpoint?

（A）UDP and a random port

（B）TCP, over port 80

（C）NetBIOS over TCP

（D）WebSocket

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

Where can SHA256 hash values be used in Cortex XDR Malware Protection Profiles?

（A）in the Linux Malware Protection Profile to indicate allowed Java libraries

（B）in the Windows Malware Protection Profile to indicate allowed executables

（C）SHA256 hashes cannot be used in Cortex XDR Malware Protection Profiles

（D）in the macOS Malware Protection Profile to indicate allowed signers

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

If you have an isolated network that is prevented from connecting to the Cortex Data Lake, which type of Broker VM setup can you use to facilitate the communication?

（A）Broker VM Syslog Collector

（B）Local Agent Proxy

（C）Local Agent Installer and Content Caching

（D）Broker VM Pathfinder

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

When reaching out to TAC for additional technical support related to a Security Event; what are two critical pieces of information you need to collect from the Agent? (Choose Two)

（A）The agent technical support file.

（B）A list of all the current exceptions applied to the agent.

（C）The prevention archive from the alert.

（D）The unique agent id.

（E）The distribution id of the agent.

正解：A、C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Which type of IOC can you define in Cortex XDR?

（A）Source IP Address

（B）Destination IP Address

（C）Source port

（D）Destination IPAddress: Destination

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

What is the maximum number of agents one Broker VM local agent applet can support?

（A）5,000

（B）15,000

（C）10,000

（D）20,000

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

What functionality of the Broker VM would you use to ingest third-party firewall logs to the Cortex Data Lake?

（A）DB Collector

（B）Syslog Collector

（C）Pathfinder

（D）Netflow Collector

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

What is the purpose of targeting software vendors in a supply-chain attack?

（A）to access source code.

（B）to report Zero-day vulnerabilities.

（C）to take advantage of a trusted software delivery method.

（D）to steal users' login credentials.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

What is by far the most common tactic used by ransomware to shut down a victim's operation?

（A）denying traffic out of the victims network until payment is received

（B）preventing the victim from being able to access APIs to cripple infrastructure

（C）encrypting certain files to prevent access by the victim

（D）restricting access to administrative accounts to the victim

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

PCDRA 無料問題集「Palo Alto Networks Certified Detection and Remediation Analyst」

弊社を連絡する

関連リンク

トップ試験