Summer Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: exc65

examout.co

What are the three ways to add/mark entries as evidence inside the Evidence Board? (Choose three.)

A.

Manually directly from the War Room with the Actions drop-down

B.

From the Notes section (mark as entry icon)

C.

Manually from the playbook task (mark as entry icon)

D.

Automatically from playbook tasks when the option is selected on the Advanced tab

E.

By running the command !MarkAsEvidence

When creating an incident layout section, it is best to place long field values within which of the following?

A.

Section headers

B.

Rows

C.

Canvas

D.

Cards

An XSOAR Engineer has developed a playbook and would like to contribute it to the XSOAR Marketplace to share with other users.

Which two options are available to the Engineer for contributing to the Marketplace? (Choose two.)

A.

Open a ticket with the XSOAR support team

B.

Create a pull request directly on Github

C.

Contribute through the XSOAR UI

D.

Send an email to contributions@xsoar.com

At what stage during the incident lifecycle is an incident type assigned?

A.

Pre-processing

B.

Incident creation

C.

Classification

D.

Playbook execution

An engineer deployed two different instances of Active Directory for each organization site. As part of account enrichment use case, the engineer would like to delete a user from one specific site.

Which command will accomplish this?

A.

run ‘ad-delete-user’ command with ‘user-dn’ arg and using-brand=“Active Directory Query v2”

B.

run ‘ad-delete-user’ command with ‘user-dn’ arg and raw-response=true

C.

run ‘ad-delete-user’ command with ‘user-dn’ arg and ignore-outputs=true

D.

run ‘ad-delete-user’ command with ‘user-dn’ arg and using=“Active Directory

Query v2_instance_1”

Which three support types are included in the Marketplace Content Packs? (Choose three.)

A.

Customer supported

B.

Contex XSOAR supported

C.

Community supported

D.

Partner supported

E.

Prisma Cloud supported

What does Script helper contain?

A.

Available commands

B.

Permission settings

C.

Automation version history

D.

Automation timeout configuration

What are two primary uses of standard tasks? (Choose two.)

A.

To highlight different paths in a playbook

B.

To generate new widgets for a dashboard

C.

To create an incident or escalate an existing incident

D.

To automate tasks such as parsing a file or enriching indicators

Which three options can be defined in the layout settings? (Choose three.)

A.

Set of fields to present

B.

Permission to view the tab based on ‘Users’

C.

Permission to view the tab based on ‘Roles’

D.

Delete built-in tabs including the war room

E.

Dynamic sections

An administrator wants to run an automation in the War Room to set the incident field "Description" to "Confirmed Phishing". Which command should they enter in the War Room CLI?

A.

!incidentSet description="Confirmed Phishing"

B.

/incidentSet description=Confirmed Phishing

C.

!setIncident description="Confirmed Phishing"

D.

/setIncident description=Confirmed Phishing