PCDRA Palo Alto Networks Certified Detection and Remediation Analyst Questions and Answers

Questions 4

Which Type of IOC can you define in Cortex XDR?

Options:

destination port

e-mail address

full path

App-ID

Buy Now

Questions 5

Which statement is true based on the following Agent Auto Upgrade widget?

Options:

There are a total of 689 Up To Date agents.

Agent Auto Upgrade was enabled but not on all endpoints.

Agent Auto Upgrade has not been enabled.

There are more agents in Pending status than InProgress status.

Buy Now

Questions 6

Where would you goto add an exception to exclude a specific file hash from examination by the Malware profile for a Windows endpoint?

Options:

Find the Malware profile attached to the endpoint, Under Portable Executable and DLL Examination add the hash to the allow list.

Fromthe rules menu select new exception, fill out the criteria, choose the scope to apply it to, hit save.

Find the exceptions profile attached to the endpoint, under process exceptions select local analysis, paste the hash and save.

In the Action Center, choose Allow list, select new action, select add to allow list, add your hash to the list, and apply it.

Buy Now

Questions 7

Cortex XDR Analytics can alert when detecting activity matching the following MITRE ATT&CKTM techniques.

Options:

Exfiltration, Command and Control, Collection

Exfiltration, Command and Control, Privilege Escalation

Exfiltration, Command and Control, Impact

Exfiltration, Command and Control, Lateral Movement

Buy Now

Questions 8

How does Cortex XDR agent for Windows prevent ransomware attacks from compromising the file system?

Options:

by encrypting the disk first.

by utilizing decoy Files.

by retrieving the encryption key.

by patching vulnerable applications.

Buy Now

Questions 9

While working the alerts involved in a Cortex XDR incident, an analyst has found that every alert in this incident requires anexclusion. What will the Cortex XDR console automatically do to this incident if all alerts contained have exclusions?

Options:

mark the incident as Unresolved

create a BIOC rule excluding this behavior

create an exception to prevent future false positives

mark the incident as Resolved – False Positive

Buy Now

Exam Code: PCDRA

Exam Name: Palo Alto Networks Certified Detection and Remediation Analyst

Last Update: Dec 4, 2024

Questions: 91

PCDRA PDF

$29.75 ~~$84.99~~

Add to Cart

PCDRA Testing Engine

$35 ~~$99.99~~

Add to Cart

PCDRA PDF + Testing Engine

$47.25 ~~$134.99~~

Add to Cart

Winter Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: geek65

clapgeek logo

PCDRA Palo Alto Networks Certified Detection and Remediation Analyst Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

PCDRA PDF

PCDRA Testing Engine

PCDRA PDF + Testing Engine

Quick Links

Recently New Released Certification Exams

Site Secure