- All Exams Instant Download
Which three options can be defined in the layout settings? (Choose three.)
Which three options can be defined in the layout settings? (Choose three.)A . Set of fields to presentB . Permission to view the tab based on ‘Users’C . Permission to view the tab based on ‘Roles’D . Delete built-in tabs including the war roomE . Dynamic sectionsView AnswerAnswer: A,C,E Explanation:...
Which method accesses a field called ‘User Mail’ in a playbook?
Which method accesses a field called ‘User Mail’ in a playbook?A . ${incident.usermail}B . ${incident.User Mail}C . ${incident.UserMail}D . ${usermail}View AnswerAnswer: A
Which two methods are used to add new content to the XSOAR Content Repository? (Choose two.)
Which two methods are used to add new content to the XSOAR Content Repository? (Choose two.)A . Create content and add it to the standard content by contributing through the MarketplaceB . Use the XSOAR GitHub Contribution Guide to add the contribution to the standard contentC . Create a support...
Which two components have their own context data? (Choose two.)
Which two components have their own context data? (Choose two.)A . Sub-playbookB . TaskC . FieldD . IncidentView AnswerAnswer: A,D
How would context data be filtered to receive only malicious indicator values with DBotScore?
How would context data be filtered to receive only malicious indicator values with DBotScore?A . Get DBotScore.value where DBotScore.Score (Larger or equals) 4B . Get DBotScore.value where DBotScore.Score (equals (int)) 3C . Get DBotScore where DBotScore.Score (Larger than) 1D . Get DBotScore where DBotScore.Score (Larger or equals) 2View AnswerAnswer: B...
Which built-in automation/command cab be used to change an incident’s type?
Which built-in automation/command cab be used to change an incident’s type?A . setIncidentB . SetC . GetFieldsByIncidentTypeD . modifyIncidentFieldsView AnswerAnswer: A Explanation: Reference: https://docs.paloaltonetworks.com/cortex/cortex-xsoar/5-5/cortex-xsoar-admin/incidents/incidents- management/incident-fields/field-trigger-scripts.html
Which of the following out of the box methods would be used for that?
An administrator wants to send an email via the Mail Sender integration. Which of the following out of the box methods would be used for that?A . XSOAR D2 agentB . external integration commandC . XSOAR shared agentD . common automation scriptView AnswerAnswer: B
Which two functions in XSOAR are incident types used for? (Choose two.)
Which two functions in XSOAR are incident types used for? (Choose two.)A . To run dedicated playbooks for different event typesB . To classify events ingested from various sources into the relevant typesC . To classify indicators extracted in XSOAR incidents to their respective typesD . To facilitate role based...
Which tag must be applied to an Automation Script in order for it to be available when configuring an Indicator Type?
Which tag must be applied to an Automation Script in order for it to be available when configuring an Indicator Type?A . reputation-scriptB . enrichC . reputationScriptD . reputationView AnswerAnswer: D
Inside the Incidents table view, which actions can be performed on the selected incidents? (Choose two.)
Inside the Incidents table view, which actions can be performed on the selected incidents? (Choose two.)A . Run Command, Export, and Close and Delete for all selected incidents regardless of their statusB . Assign, Edit, and Mark as Duplicate for all selected incidents regardless of their statusC . Run Command...
