A customer has 2700 endpoints. There is currently concern about recent attacks in their industry and threat intelligence from a third-party subscription. In an attempt to be proactive, phishing simulations have been prioritized, but the customer wants to gain more visibility and remediation capabilities specific to their network traffic.
Which Cortex product provides these capabilities?

• A.XDR Pro Per GB
• B.B
• C.XDR Forensics Module
• D.XDR Pro Per Endpoint
• E.XDR Phishing Response Playbook

Comment: *

Name: *

Email: *

Verification: *

What is the primary mechanism for the attribution of attack surface data in Cortex Xpanse?

• A.Active scanning with network-installed agents
• B.Dark web monitoring
• C.Customer-provided asset inventory lists
• D.Scanning from public internet data sources

Comment: *

Name: *

Email: *

Verification: *

How does the integration between Cortex Xpanse and Cortex XSOAR benefit security teams?

• A.By enhancing firewall rule management
• B.By enabling automatic incident response actions for internet-based incidents
• C.By providing real-time threat intelligence feeds
• D.By automating endpoint detection and response (EDR) processes

Comment: *

Name: *

Email: *

Verification: *

How can the required log ingestion license be determined when sizing a Cortex XSIAM deployment?

• A.Ask the customer for average log ingestion estimates from their existing SIEM.
• B.Use the Cortex Data Lake Calculator to estimate the volume of third-party logs.
• C.Ask the customer to provide average daily alert volume.
• D.Count the number of correlation sources and multiply by desired retention days.

Comment: *

Name: *

Email: *

Verification: *

Which process in the causality chain does the Cortex XDR agent identify as triggering an event sequence?

• A.the adversary's remote process
• B.the chain's alert initiator
• C.The causality group owner
• D.the relevant shell

Comment: *

Name: *

Email: *

Verification: *