← Back to exam page

SPLK-3001 Splunk Enterprise Security Certified Admin Exam

Loading demo links...

Showing 1–3 of 7 questions

Question 1

Which of the following are data models used by ES? (Choose all that apply)

Select all that apply, then click Submit answer.

  • Web

  • Anomalies

  • Authentication

  • Network Traffic
Question 2

Which of the following threat intelligence types can ES download? (Choose all that apply)

Select all that apply, then click Submit answer.

  • Text

  • STIX/TAXII

  • VulnScanSPL

  • SplunkEnterpriseThreatGenerator
Question 3

Which of the following ES features would a security analyst use while investigating a network anomaly notable?

Select an option, then click Submit answer.

  • Correlation editor.

  • Key indicator search.

  • Threat download dashboard.

  • Protocol intelligence dashboard.