- All Exams Instant Download
Which is the correct order for manually installing a Falcon Package on a macOS system?
Which is the correct order for manually installing a Falcon Package on a macOS system?A . Install the Falcon package, then register the Falcon Sensor via the registration package B. Install the Falcon package, then register the Falcon Sensor via command line C. Register the Falcon Sensor via command line,...
Which option allows you to exclude behavioral detections from the detections page?
Which option allows you to exclude behavioral detections from the detections page?A . Machine Learning Exclusion B. IOA Exclusion C. IOC Exclusion D. Sensor Visibility ExclusionView AnswerAnswer: A
Which of the following Machine Learning (ML) sliders will only detect or prevent high confidence malicious items?
Which of the following Machine Learning (ML) sliders will only detect or prevent high confidence malicious items?A . Aggressive B. Cautious C. Minimal D. ModerateView AnswerAnswer: C
Where can you modify settings to permit certain traffic during a containment period?
Where can you modify settings to permit certain traffic during a containment period?A . Prevention Policy B. Host Settings C. Containment Policy D. Firewall SettingsView AnswerAnswer: C
Which other operating system(s) will this policy manage?
You have created a Sensor Update Policy for the Mac platform. Which other operating system(s) will this policy manage?A . *nix B. Windows C. Both Windows and *nix D. Only MacView AnswerAnswer: C Explanation: Reference: https://www.crowdstrike.com/blog/tech-center/how-to-manage-policies-in-falcon/
When creating new IOCs in IOC management, which of the following fields must be configured?
When creating new IOCs in IOC management, which of the following fields must be configured?A . Hash, Description, Filename B. Hash, Action and Expiry Date C. Filename, Severity and Expiry Date D. Hash, Platform and ActionView AnswerAnswer: D
When a host is placed in Network Containment, which of the following is TRUE?
When a host is placed in Network Containment, which of the following is TRUE?A . The host machine is unable to send or receive network traffic outside of the local network B. The host machine is unable to send or receive network traffic except to/from the Falcon Cloud and traffic...
Which role allows a user to connect to hosts using Real-Time Response?
Which role allows a user to connect to hosts using Real-Time Response?A . Endpoint Manager B. Falcon Administrator C. Real Time Responder C Active Responder D. Prevention Hashes ManagerView AnswerAnswer: C
Where should you first check for potential failures?
An analyst has reported they are not receiving workflow triggered notifications in the past few days. Where should you first check for potential failures?A . Custom Alert History B. Workflow Execution log C. Workflow Audit log D. Falcon UI Audit TrailView AnswerAnswer: B
When creating a Host Group for all Workstations in an environment, what is the best method to ensure all workstation hosts are added to the group?
When creating a Host Group for all Workstations in an environment, what is the best method to ensure all workstation hosts are added to the group?A . Create a Dynamic Group with Type=Workstation Assignment B. Create a Dynamic Group and Import All Workstations C. Create a Static Group and Import...
