Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Palo Alto Networks PCDRA

Palo Alto Networks PCDRA Exam Practice Questions (P. 1)

  • Full Access (96 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #1
Phishing belongs which of the following MITRE ATT&CK tactics?
  1. A
    Initial Access, Persistence
  2. B
    Persistence, Command and Control
  3. C
    Reconnaissance, Persistence
  4. D
    Reconnaissance, Initial Access

Correct Answer:
D

Question #2
When creating a BIOC rule, which XQL query can be used?
  1. A
    dataset = xdr_data
    | filter event_sub_type = PROCESS_START and
    action_process_image_name ~= ".*?\.(?:pdf|docx)\.exe"
  2. B
    dataset = xdr_data
    | filter event_type = PROCESS and
    event_sub_type = PROCESS_START and
    action_process_image_name ~= ".*?\.(?:pdf|docx)\.exe"
  3. C
    dataset = xdr_data
    | filter action_process_image_name ~= ".*?\.(?:pdf|docx)\.exe"
    | fields action_process_image
  4. D
    dataset = xdr_data
    | filter event_behavior = true
    event_sub_type = PROCESS_START and
    action_process_image_name ~= ".*?\.(?:pdf|docx)\.exe"

Correct Answer:
B

Question #3
Which built-in dashboard would be the best option for an executive, if they were looking for the Mean Time to Resolution (MTTR) metric?
  1. A
    Security Manager Dashboard
  2. B
    Data Ingestion Dashboard
  3. C
    Security Admin Dashboard
  4. D
    Incident Management Dashboard

Correct Answer:
A

Question #4
What are two purposes of “Respond to Malicious Causality Chains” in a Cortex XDR Windows Malware profile? (Choose two.)
  1. A
    Automatically close the connections involved in malicious traffic.
  2. B
    Automatically kill the processes involved in malicious activity.
  3. C
    Automatically terminate the threads involved in malicious activity.
  4. D
    Automatically block the IP addresses involved in malicious traffic.

Correct Answer:
AD

Question #5
When creating a custom XQL query in a dashboard, how would a user save that XQL query to the Widget Library?
  1. A
    Click the three dots on the widget and then choose “Save” and this will link the query to the Widget Library.
  2. B
    This isn’t supported, you have to exit the dashboard and go into the Widget Library first to create it.
  3. C
    Click on “Save to Action Center” in the dashboard and you will be prompted to give the query a name and description.
  4. D
    Click on “Save to Widget Library” in the dashboard and you will be prompted to give the query a name and description.

Correct Answer:
D

Next Questions

All Pages