Free PSE-Cortex Exam Braindumps (page: 5)

Page 4 of 16

What are process exceptions used for?

  1. whitelist programs from WildFire analysis
  2. permit processes to load specific DLLs
  3. change the WildFire verdict for a given executable
  4. disable an EPM for a particular process

Answer(s): A



When a Demisto Engine is part of a Load-Balancing group it?

  1. Must be in a Load-Balancing group with at least another 3 members
  2. It must have port 443 open to allow the Demisto Server to establish a connection
  3. Can be used separately as an engine, only if connected to the Demisto Server directly
  4. Cannot be used separately and does not appear in the in the engines drop-down menu when configuring an integration instance

Answer(s): A



Which process in the causality chain does the Cortex XDR agent identify as triggering an event sequence?

  1. the relevant shell
  2. The causality group owner
  3. the adversary's remote process
  4. the chain's alert initiator

Answer(s): B



Which three Demisto incident type features can be customized under Settings > Advanced > Incident Types?
(Choose three.)

  1. Define whether a playbook runs automatically when an incident type is encountered
  2. Set reminders for an incident SLA
  3. Add new fields to an incident type
  4. Define the way that incidents of a specific type are displayed in the system
  5. Drop new incidents of the same type that contain similar information

Answer(s): A,D,E






Post your Comments and Discuss Palo Alto Networks PSE-Cortex exam with other Community members: