← Back to exam page

PCDRA – Palo Alto Networks Certified Detection and Remediation Analyst

Loading demo links...

Showing 7–9 of 9 questions

Question 7

Which of the following represents the correct relation of alerts to incidents?

Select an option, then click Submit answer.

○
Only alerts with the same host are grouped together into one Incident in a given time frame.
○
Alerts that occur within a three hour time frame are grouped together into one Incident.
○
Alerts with same causality chains that occur within a given time frame are grouped together into an Incident.
○
Every alert creates a new Incident.

Question 8

Which Type of IOC can you define in Cortex XDR?

Select an option, then click Submit answer.

○
destination port
○
e-mail address
○
full path
○
App-ID

Question 9

A file is identified as malware by the Local Analysis module whereas WildFire verdict is Benign, Assuming WildFire is accurate. Which statement is correct for the incident?

Select an option, then click Submit answer.

○
It is true positive.
○
It is false positive.
○
It is a false negative.
○
It is true negative.

← Prev 1 2 3 Next →

Page 3 of 3

Sale Ends In

2h 0m 0s