New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

CrowdStrike Falcon Certification Program CCFR-201 Full Course Free

Page: 4 / 4
Question 16

When you configure and apply an IOA exclusion, what impact does it have on the host and what you see in the console?

Options:

A.

The process specified is not sent to the Falcon Sandbox for analysis

B.

The associated detection will be suppressed and the associated process would have been allowed to run

C.

The sensor will stop sending events from the process specified in the regex pattern

D.

The associated IOA will still generate a detection but the associated process would have been allowed to run

Question 17

The function of Machine Learning Exclusions is to___________.

Options:

A.

stop all detections for a specific pattern ID

B.

stop all sensor data collection for the matching path(s)

C.

Stop all Machine Learning Preventions but a detection will still be generated and files will still be uploaded to the CrowdStrike Cloud

D.

stop all ML-based detections and preventions for the matching path(s) and/or stop files from being uploaded to the CrowdStrike Cloud

Question 18

After running an Event Search, you can select many Event Actions depending on your results. Which of the following is NOT an option for any Event Action?

Options:

A.

Draw Process Explorer

B.

Show a +/- 10-minute window of events

C.

Show a Process Timeline for the responsible process

D.

Show Associated Event Data (from TargetProcessld_decimal or ContextProcessld_decimal)

Page: 4 / 4
CCFR-201 Leak Questions, CrowdStrike CCFR-201 Actual Questions, CrowdStrike Falcon Certification Program CCFR-201 Full Course Free,
Exam Code: CCFR-201
Exam Name: CrowdStrike Certified Falcon Responder
Last Update: Dec 27, 2024
Questions: 60
CCFR-201 pdf

CCFR-201 PDF

$25.5  $84.99
CCFR-201 Engine

CCFR-201 Testing Engine

$28.5  $94.99
CCFR-201 PDF + Engine

CCFR-201 PDF + Testing Engine

$40.5  $134.99