Which of the following is returned from the IP Search tool?
Which of the following is returned from the IP Search tool?
A . IP Summary information from Falcon events containing the given IP
B . Threat Graph Data for the given IP from Falcon sensors
C . Unmanaged host data from system ARP tables for the given IP
D . IP Detection Summary information for detection events containing the given IP
Answer: A
Explanation:
According to the CrowdStrike Falcon Devices Add-on for Splunk Installation and Configuration Guide v3.1.5+, the IP Search tool allows you to search for an IP address and view a summary of information from Falcon events that contain that IP address1. The summary includes the hostname, sensor ID, OS, country, city, ISP, ASN, and geolocation of the host that communicated with that IP address1.
Latest CCFR-201 Dumps Valid Version with 60 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund