Download Latest PSE-Cortex Questions

The administrator should attach a copy of the weapomzed flash file to an email, send the email to a selected group of employees, and monitor the Events tab on the Cortex XDR console

The administrator should use the Cortex XDR tray icon to confirm his corporate laptop is fully protected then open the weaponized flash file on his machine, and monitor the Events tab on the Cortex XDR console.

The administrator should create a non-production Cortex XDR test environment that accurately represents the production environment, introduce the weaponized flash file, and monitor the Events tab on the Cortex XDR console.

The administrator should place a copy of the weaponized flash file on several USB drives, scatter them around the office and monitor the Events tab on the Cortex XDR console

Live sensors

Live terminal

Log forwarding

Log stitching

Which cybersecurity framework to implement for Secure Operations Center (SOC) operations

Whether communication with internal or external applications is required

How to configure network firewalls for optimal performance

Which endpoint protection software to integrate with Cortex XSOAR

whitelist programs from WildFire analysis

permit processes to load specific DLLs

change the WildFire verdict for a given executable

disable an EPM for a particular process