A. reinstall the root CA certificate

B. enable SSL decryption

C. add paloaltonetworks com to the SSL Decryption Exclusion list

D. disable SSL decryption

A. It enables customers to prepare for audits so they can demonstrate compliance.

B. It helps in assigning additional technical tasks to the customer

C. It allows implementation teams to bypass initial scoping exercises

D. It enables post-sales teams to tailor their support and training appropriately

A. Which endpoint protection software to integrate with Cortex XSOAR

B. How to configure network firewalls for optimal performance

C. Whether communication with internal or external applications is required

D. Which cybersecurity framework to implement for Secure Operations Center (SOC) operations

A. Identifying office network vulnerabilities, monitoring remote workforce, and encrypting data

B. Gathering endpoint data, conducting internal scans, and automating network configurations

C. Monitoring endpoint activity, managing firewall rules, and mitigating cybersecurity threats

D. Analyzing global scan data, identifying risky issues on remote networks, and providing internal insights

A. amount saved in Dollars according to actions carried out by all users in Cortex XSOAR across all incidents

B. amount saved in Dollars by using Cortex XSOAR instead of other products

C. amount of time saved by Dbot's machine learning (ML) capabilities

D. amount of time saved by each playbook task within an incident

A. Disable automatic memory dumps.

B. Scan the image using the imagepreptool.

C. Launch the VDI conversion tool.

D. Enable the VDI license timeout.

A. It can automatically email staff to warn them about the phishing attack and show them a copy of the email.

B. It can automatically identify every mailbox that received the phish and create corresponding cases for them.

C. It can automatically respond to the phishing email to unsubscribe from future emails.

D. It can automatically purge the email from user mailboxes in which it has not yet opened.

A. 4 TB

B. 2 TB

C. 16 TB

D. 8 TB

A. Cortex XDR allows just logging into the console and out of the box the events were blocked as a proactive approach.

B. SIEM has been entirely designed and built as cloud-native, with the ability to stitch together cloud logs, on-premises logs, third-party logs, and endpoint logs.

C. SIEM has access to raw logs from agents, where Cortex XDR traditionally only gets alerts.

D. Cortex XDR requires a large and diverse team of analysts and up to several weeks for simple actions like creating an alert.

A. All connectivity is initiated from the Cortex XSOAR server on the first site via a managed cloud proxy.

B. The Cortex XSOAR engine at the first site must be able to initiate a connection to the Cortex XSOAR server at the second site.

C. Dedicated site-to-site virtual private network (VPN) is required for the Cortex XSOAR server at the first site to initiate a connection to the Cortex XSOAR engine at the second site.

D. The Cortex XSOAR server at the first site must be able to initiate a connection to the Cortex XSOAR engine at the second site.

A. LIVE community

B. Administrator Guide

C. Release Notes

D. Compatibility Matrix

A. DNS Tunneling

B. uncommon local scheduled task creation

C. malware

D. new administrative behavior

A. process

B. data

C. event alert

D. network

A. Must be in a Load-Balancing group with at least another 3 members

B. Cannot be used separately and does not appear in the in the engines drop-down menu when configuring an integration instance

C. Can be used separately as an engine, only if connected to the Demisto Server directly

D. It must have port 443 open to allow the Demisto Server to establish a connection