PSE Cortex Palo Alto Networks Updated Dumps

Text Material Preview

PSE Cortex
Exam Name: Palo Alto Networks System Engineer -
Cortex Professional
Full version: 80 Q&As
Full version of PSE Cortex Dumps
Share some PSE Cortex exam dumps below.
1. Which Linux OS command will manually load Docker images onto the Cortex XSOAR server
in an air-gapped environment?
A. sudo demistoserver-x.x-xxxxx.sh C -tools=load
B. sudo docker ps load
 1 / 4
https://www.certqueen.com/PSE-Cortex.html
C. sudo docker load -i YOUR_DOCKER_FILE.tar
D. sudo repoquery -a Cinstalled
Answer: C
2. Cortex XDR external data ingestion processes ingest data from which sources?
a. Windows event logs only
b. Windows event logs, syslogs, and custom external sources
c. Windows event logs and syslogs only
d. Syslogs only
Answer: B
3. How do sub-playbooks affect the incident Context Data?
a. When set to global, sub-playbook tasks do not have access to the root context
b. When set to private, task outputs do not automatically get written to the root context
c. When set to global, parallel task execution is allowed
d. When set to private, task outputs are automatically written to the root context
Answer: B
4. An adversary attempts to communicate with malware running on a network in order to control
malware activities or to exfiltrate data from the network.
What Cortex XDR Analytics alert will this activity most likely trigger?
a. Uncommon local scheduled task creation
b. Malware
c. New administrative behavior
d. DNS Tunneling
Answer: D
5. What does the Cortex XSOAR “Saved by Dbot” widget calculate?
a. Amount saved in Dollars by using Cortex XSOAR instead of other products
b. Amount of time saved by each playbook task within an incident
c. Amount of time saved by Dbot’s machine learning (ML) capabilities
d. Amount saved in Dollars according to actions carried out by all users in Cortex XSOAR
across all incidents
Answer: D
6. A customer agrees to do a 30-day proof of concept (POC) and wants to integrate with a
 2 / 4
product with which Cortex XSOAR is not currently integrated.
What is the appropriate response to the customer?
a. Extend the POC window to allow the solution architects to build it
b. Explain that custom integrations are not included in the POC
c. Explain that it can be built by Professional Services, but it will take an additional 30 days
d. Agree to build the integration as part of the POC
Answer: B
7. Which step is required to prepare the virtual desktop infrastructure (VDI) golden image?
a. Run the VDI conversion tool
b. Ensure the latest content updates are installed
c. Set the memory dumps to manual setting
d. Review any portable executable (PE) files WildFire determined to be malicious
Answer: D
8. Which two methods does the Cortex XDR agent use to identify malware during a scheduled
scan? (Choose two)
a. WildFire hash comparison
b. Signature comparison
c. Dynamic analysis
d. Heuristic analysis
Answer: A.C
9. Which service helps uncover attackers wherever they hide by combining world-class threat
hunters with Cortex XDR technology that runs on integrated endpoint, network, and cloud data
sources?
a. Cloud Identity Engine (CIE)
b. Threat Intelligence Platform (TIP)
c. Virtual desktop infrastructure (VDI)
d. Managed Threat Hunting (MTH)
Answer: D
10. Which deployment type supports installation of an engine on Windows, Mac OS. and Linux?
A. RPM
B. SH
C. DEB
 3 / 4
D. ZIP
Answer: D
11. Which type of log is ingested natively in Cortex XDR Pro per TB?
a. Docker
b. Microsoft Office 365
c. Demisto
d. Google Kubernetes Engine
Answer: B
 
More Hot Exams are available.
350-401 ENCOR Exam Dumps
350-801 CLCOR Exam Dumps
200-301 CCNA Exam Dumps
Powered by TCPDF (www.tcpdf.org)
 4 / 4
https://www.certqueen.com/promotion.asp
https://www.certqueen.com/350-401.html
https://www.certqueen.com/350-801.html
https://www.certqueen.com/200-301.html
http://www.tcpdf.org