New Year Sale Special - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: sntaclus

examout.co

What does the outgoing mapper support?

A.

Mirroring

B.

Classification

C.

Dynamic fields

D.

Pre-processing

Match the operations with the appropriate context.

What is the correct expression to use when filtering only PDF files?

A.

Use File.Extension that does not equal (string comparison) PDF

B.

Use File.Name contains PDF

C.

Use File.Extension contains (general) PDF

D.

Use File.Extension equals (string comparison) PDF

In which two ways can data be transferred between playbooks and sub-playbooks? (Choose two.)

A.

Inputs and outputs

B.

Through integration context

C.

Automatically extracted by sub-playbooks

D.

From context data, if context is shared globally

What is an example of a generic reputation command?

A.

!ip

B.

!getReputation

C.

!reputation

D.

!enrichIndicator

To avoid exceeding API quotas for third-party services, indicators are only updated after the indicator cache expiration period. What is the default cache expiration period for indicators in XSOAR (minutes/days)?

A.

10,080 minutes (7 days)

B.

20,160 minutes (14 days)

C.

21,600 minutes (15 days)

D.

4,320 minutes (3 days)

Which two options may be added when a content pack is being installed? (Choose two.)

A.

Lists

B.

Roles

C.

Other content packs

D.

Indicator layouts

An incident field is created having the display name as Source_IP. How can the field be accessed?

A.

${incident.sourceip}

B.

${incident.Source_IP}

C.

${incident.srcip}

D.

${incident.Source IP}

Which of the following is a feature of XSOAR automations?

A.

can run on multiple docker containers

B.

can be set to run on a scheduled basis in the automation settings

C.

can be password protected

D.

can be written in C++

Which of these would be the most operationally efficient repository for moving XSOAR custom content from a development server to a production environment?

A.

A content repository specified in the Marketplace

B.

Remote git repository specified in the dev-prod configuration parameters

C.

The development server's default repository

D.

Cortex XSOAR public content repository