- All Exams Instant Download
On a Windows host, what is the best command to determine if the sensor is currently running?
On a Windows host, what is the best command to determine if the sensor is currently running?A . sc query csagentB . netstat -aC . This cannot be accomplished with a commandD . ping falcon.crowdstrike.comView AnswerAnswer: A
Which is a filter within the Host setup and management > Host management page?
Which is a filter within the Host setup and management > Host management page?A . User nameB . OUC . BIOS VersionD . LocalityView AnswerAnswer: B
Which role do you need added to your user account to have this capability?
Even though you are a Falcon Administrator, you discover you are unable to use the "Connect to Host" feature to gather additional information which is only available on the host. Which role do you need added to your user account to have this capability?A . Real Time ResponderB . Endpoint...
Why is it critical to have separate sensor update policies for Windows/Mac/*nix?
Why is it critical to have separate sensor update policies for Windows/Mac/*nix?A . There may be special considerations for each OSB . To assist with testing and tracking sensor rolloutsC . The network protocols are different for each host OSD . It is an auditing requirementView AnswerAnswer: A
In order to quarantine files on the host, what prevention policy settings must be enabled?
In order to quarantine files on the host, what prevention policy settings must be enabled?A . Malware Protection and Custom Execution Blocking must be enabledB . Next-Gen Antivirus Prevention sliders and "Quarantine & Security Center Registration" must be enabledC . Malware Protection and Windows Anti-Malware Execution Blocking must be enabledD...
How many "Auto" sensor version update options are available for Windows Sensor Update Policies?
How many "Auto" sensor version update options are available for Windows Sensor Update Policies?A . 1B . 2C . 0D . 3View AnswerAnswer: D
Under which scenario can Sensor Tags be assigned?
Under which scenario can Sensor Tags be assigned?A . While triaging a detectionB . While managing hosts in the Falcon consoleC . While updating a sensor in the Falcon consoleD . While installing a sensorView AnswerAnswer: D
What type of information is found in the Linux Sensors Dashboard?
What type of information is found in the Linux Sensors Dashboard?A . Hosts by Kernel Version, Shells spawned by Root, Wget/Curl UsageB . Hidden File execution, Execution of file from the trash, Versions Running with ComputerNamesC . Versions running, Directory Made Invisible to Spotlight, Logging/Auditing Referenced, Viewed, or ModifiedD ....
What is the most common cause of a Windows Sensor entering Reduced Functionality Mode (RFM)?
What is the most common cause of a Windows Sensor entering Reduced Functionality Mode (RFM)?A . Falcon console updates are pendingB . Falcon sensors installing an updateC . Notifications have been disabled on that host sensorD . Microsoft updatesView AnswerAnswer: D
How long are detection events kept in Falcon?
How long are detection events kept in Falcon?A . Detection events are kept for 90 daysB . Detections events are kept for your subscribed data retention periodC . Detection events are kept for 7 daysD . Detection events are kept for 30 daysView AnswerAnswer: B
