Black Friday Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

Free Access CrowdStrike CCFH-202 New Release

Previous
Page: 2 / 2
Question 8

Which threat framework allows a threat hunter to explore and model specific adversary tactics and techniques, with links to intelligence and case studies?

Options:

A.

MITRE ATT&CK

B.

Lockheed Martin Cyber Kill Chain

C.

Director of National Intelligence Cyber Threat Framework

D.

NIST 800-171 Cyber Threat Framework

Question 9

The Events Data Dictionary found in the Falcon documentation is useful for writing hunting queries because:

Options:

A.

It provides pre-defined queries you can customize to meet your specific threat hunting needs

B.

It provides a list of all the detect names and descriptions found in the Falcon Cloud

C.

It provides a reference of information about the events found in the Investigate > Event Search page of the Falcon Console

D.

It provides a list of compatible splunk commands used to query event data

Previous
Page: 2 / 2
Free Access CrowdStrike CCFH-202 New Release,
Exam Code: CCFH-202
Exam Name: CrowdStrike Certified Falcon Hunter
Last Update: Nov 23, 2024
Questions: 60
CCFH-202 pdf

CCFH-202 PDF

$25.5  $84.99
 Add to Cart
CCFH-202 Engine

CCFH-202 Testing Engine

$28.5  $94.99
 Add to Cart
CCFH-202 PDF + Engine

CCFH-202 PDF + Testing Engine

$40.5  $134.99
 Add to Cart