Shop Categories

 [email protected]
Search
View Cart
Checkout

The following PCDRA questions are part of our Paloalto Networks PCDRA real exam questions full version. There are 91 in our PCDRA full version. All of our PCDRA real exam questions can guarantee you success in the first attempt. If you fail PCDRA exam with our Paloalto Networks PCDRA real exam questions, you will get full payment fee refund. Want to practice and study full verion of PCDRA real exam questions? Go now!

 Get PCDRA Full Version

Paloalto Networks PCDRA Exam Actual Questions

The questions for PCDRA were last updated on Feb 21,2025 .

Viewing page 1 out of 4 pages.

Viewing questions 1 out of 20 questions

Question#1

Which statement best describes how Behavioral Threat Protection (BTP) works?

A. BTP injects into known vulnerable processes to detect malicious activity.
B. BTP runs on the Cortex XDR and distributes behavioral signatures to all agents.
C. BTP matches EDR data with rules provided by Cortex XD
D. BTP uses machine Learning to recognize malicious activity even if it is not known.

Explanation:
Reference: https://www.khipu-networks.com/matchmadein/wp-content/uploads/cortex-xdr- endpoint-protection-solution-guide.pdf

Question#2

When using the “File Search and Destroy” feature, which of the following search hash type is supported?

A. SHA256 hash of the file
B. AES256 hash of the file
C. MD5 hash of the file
D. SHA1 hash of the file

Explanation:
Reference: https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-pro-admin/investigation-and-response/response-actions/search-file-and-destroy.html

Question#3

When creating a scheduled report which is not an option?

A. Run weekly on a certain day and time.
B. Run quarterly on a certain day and time.
C. Run monthly on a certain day and time.
D. Run daily at a certain time (selectable hours and minutes).

Explanation:
Reference: https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-pro-admin/monitoring/cortex-xdr-dashboard/run-or-schedule-reports.html

Question#4

When creating a BIOC rule, which XQL query can be used?

A. dataset = xdr_data | filterevent_sub_type = PROCESS_START and action_process_image_name ~= ".*?\.(?:pdf|docx)\.exe"
B. dataset = xdr_data | filter event_type = PROCESS and event_sub_type = PROCESS_START and action_process_image_name ~= ".*?\.(?:pdf|docx)\.exe"
C. dataset = xdr_data | filter action_process_image_name ~= ".*?\.(?:pdf|docx)\.exe" | fields action_process_image
D. dataset = xdr_data | filter event_behavior = true event_sub_type = PROCESS_START and action_process_image_name ~=".*?\.(?:pdf|docx)\.exe"

Explanation:
Reference: https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-pro-admin/investigation-and-response/cortex-xdr-indicators/working-with-biocs/create-a-bioc-rule.html

Question#5

Phishing belongs which of the following MITRE ATT&CK tactics?

A. Initial Access, Persistence
B. Persistence, Command and Control
C. Reconnaissance, Persistence
D. Reconnaissance, Initial Access

Exam Code: PCDRAQ & A: 91 Q&AsUpdated:  Feb 21,2025

 Get PCDRA Full Version
 About PCDRA Questions

TOP Exams